IETF Logo Mail Archive

[RAI] Expert review of draft-sinnreich-sip-tools-03

Paul Kyzivat <pkyzivat@cisco.com> Tue, 14 October 2008 13:12 UTC

Return-Path: <rai-bounces@ietf.org>
X-Original-To: rai-archive@optimus.ietf.org
Delivered-To: ietfarch-rai-archive@core3.amsl.com
Received: from [127.0.0.1] (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A4ACF3A6ABA; Tue, 14 Oct 2008 06:12:01 -0700 (PDT)
X-Original-To: rai@core3.amsl.com
Delivered-To: rai@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 307EA3A6ABA for <rai@core3.amsl.com>; Tue, 14 Oct 2008 06:12:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.489
X-Spam-Level:
X-Spam-Status: No, score=-6.489 tagged_above=-999 required=5 tests=[AWL=0.110, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HiOkl8bW9Nd5 for <rai@core3.amsl.com>; Tue, 14 Oct 2008 06:11:56 -0700 (PDT)
Received: from rtp-iport-1.cisco.com (rtp-iport-1.cisco.com [64.102.122.148]) by core3.amsl.com (Postfix) with ESMTP id E29123A69C0 for <rai@ietf.org>; Tue, 14 Oct 2008 06:11:55 -0700 (PDT)
X-IronPort-AV: E=Sophos;i="4.33,409,1220227200"; d="scan'208";a="24205873"
Received: from rtp-dkim-2.cisco.com ([64.102.121.159]) by rtp-iport-1.cisco.com with ESMTP; 14 Oct 2008 13:12:20 +0000
Received: from rtp-core-1.cisco.com (rtp-core-1.cisco.com [64.102.124.12]) by rtp-dkim-2.cisco.com (8.12.11/8.12.11) with ESMTP id m9EDCKwd017898; Tue, 14 Oct 2008 09:12:20 -0400
Received: from xbh-rtp-211.amer.cisco.com (xbh-rtp-211.cisco.com [64.102.31.102]) by rtp-core-1.cisco.com (8.13.8/8.13.8) with ESMTP id m9EDCKJQ014356; Tue, 14 Oct 2008 13:12:20 GMT
Received: from xfe-rtp-202.amer.cisco.com ([64.102.31.21]) by xbh-rtp-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Tue, 14 Oct 2008 09:12:20 -0400
Received: from [161.44.174.168] ([161.44.174.168]) by xfe-rtp-202.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.1830); Tue, 14 Oct 2008 09:12:19 -0400
Message-ID: <48F49AB3.5030704@cisco.com>
Date: Tue, 14 Oct 2008 09:12:19 -0400
From: Paul Kyzivat <pkyzivat@cisco.com>
User-Agent: Thunderbird 2.0.0.17 (Windows/20080914)
MIME-Version: 1.0
To: rai@ietf.org, draft-sinnreich-sip-tools@tools.ietf.org
References: <C5014974.891F%hsinnrei@adobe.com>
In-Reply-To: <C5014974.891F%hsinnrei@adobe.com>
X-OriginalArrivalTime: 14 Oct 2008 13:12:20.0005 (UTC) FILETIME=[7D121550:01C92DFE]
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; l=4912; t=1223989940; x=1224853940; c=relaxed/simple; s=rtpdkim2001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=pkyzivat@cisco.com; z=From:=20Paul=20Kyzivat=20<pkyzivat@cisco.com> |Subject:=20Expert=20review=20of=20draft-sinnreich-sip-tool s-03 |Sender:=20 |To:=20rai@ietf.org,=20draft-sinnreich-sip-tools@tools.ietf .org; bh=IKrmDqCsS8A2Td7NQv2Fu54nlO2+Kp2GkkGwDVGrsIs=; b=LVIjPDQ+kuuuev11DM97jDOT7VxFEK+qk39zroO1sNpdcQYnth5wOd1/t+ CEpsS5fbb3WNmjykL11K7+45CtqG0c8lzLd/FC6CQ8LrleYf35KlNmI5GeYi oa+pm+m3DJ;
Authentication-Results: rtp-dkim-2; header.From=pkyzivat@cisco.com; dkim=pass ( sig from cisco.com/rtpdkim2001 verified; );
Cc: sipping-chairs@tools.ietf.org
Subject: [RAI] Expert review of draft-sinnreich-sip-tools-03
X-BeenThere: rai@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: "Real-time Applications and Infrastructure \(RAI\)" <rai.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/rai>, <mailto:rai-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/pipermail/rai>
List-Post: <mailto:rai@ietf.org>
List-Help: <mailto:rai-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rai>, <mailto:rai-request@ietf.org?subject=subscribe>
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="us-ascii"; Format="flowed"
Sender: rai-bounces@ietf.org
Errors-To: rai-bounces@ietf.org

Draft: draft-sinnreich-sip-tools-03
Reviewer: Paul Kyzivat
Review Date:
Review Deadline:
Status: Expert Review

Review Summary:

I'll start by saying that the concept behind this draft is attractive:
that a relatively small number sip RFCs are sufficient to provide a rich
and functional communications environment.

However, I remain unconvinced by the document as written. While I'm not
convinced that the document is wrong about the sufficiency of this set
of tools, I don't find enough meat in the document to convince me it is
right.

Following are more detailed comments.

Sufficiency of these Tools:

For the document to convince me of its utility, it needs to provide an
existence proof that a "sufficient" set of basic features/services can
be constructed using this small set of "tools". There are three parts to
that:
- enumerate a set of basic features/services
- make a case that they are "sufficient"
- show that they can be constructed using this small set of tools.

The document does make a start at this. Section 3 says:

    SIP applications in the endpoints can however accomplish most
    telephony functions as well. This has been well documented in SIP
    related work in the IETF, such as:

   o "A Call Control and Multi-party usage framework for SIP" [13] ...
   o "SIP Service Examples" [14] ...

The two referenced documents do enumerate a set of features/services.
They also illustrate how to realize those using sip. But they do not
make a case that this set of services is either necessary or sufficient
for any particular environment. And not all of them can be accomplished
with the nine standards selected in this document. I didn't do an
exhaustive study, but among the additional standards needed to
accomplish all of those services are:

- RFC3857 (watcherinfo)
   (Referenced from RFC3856}

- RFC3515 (REFER), RFC3891 (Replaces)
   (referenced from service-examples [14],
    used for MoH, transfer, park, click to dial)

- RFC4235 (Dialog evt pkg)
   (referenced from service-examples,
    only used (I think) for rendering tag!)

- RFC4579 (CC)
   (referenced from service-examples,
    only for description of use of isfocus tag!)

- 3911 (Join)
   (referenced from draft-ietf-sipping-cc-framework-10 [13])

- draft-ietf-sip-answermode-07
   (referenced from draft-ietf-sipping-cc-framework-10.)

I can't decide which conclusion to draw from this:
- the list of required RFCs accidentally omitted these.
- the services that use these aren't considered essential
- the services that use these can be done some other
   way (unspecified) that doesn't require these.

I suspect that all of my concerns above could be resolved by adding some
additional text to the document and possibly by adding a few additional
required documents to the existing set of nine.

Security Concerns:

For security, this draft has called for the use of sips URIs and TLS for
sip signaling security, but with only 3261 for the definition of SIPS.

I believe there is a problem here because the use of the sips URI to
provide signaling security is underspecified in RFC 3261. There is work
in progress to improve on this situation: draft-ietf-sip-sips-08.
Without that there does not seem to be a good security solution here.

For identity, RFC 4474 is specified. However RFC 4474 requires an
Authentication Service. This draft seems to eschue the use of external
servers. The alternative seems to be for the UAC to act as its own
authentication service, which is allowed by RFC 4474. However that
requires that the UAC be able to obtain its own certificate, which in
turn requires it to have its own domain name. These may be hurdles that
are too high for many UAs to surmount. If this is intended as a
prerequisite for the use of this tool set then it would be good to spell
that out in detail.

Possible Overlap with Current or Planned Chartered Work:

I'm not sure if this is a valid concern for this kind of document, but
its worth considering. At the moment I don't think so. If there were a
conflict, I think it would most likely be with the Bliss WG, or perhaps
the Hitchhiker's Guide.

The Hitchhiker's Guide intends to point out documents of relevance to
sip implementors, but it is much more expansive. I expect one of the
motivations for this document is the daunting extent of the list
presented in the Hitchhiker's Guide. So, if the intent of this document
can be realized it won't conflict with the Hitchhiker's Guide.

Since this document currently only references other sipping documents
for examples of  feature definition, I don't think a conflict with Bliss
will occur unless Bliss does something in conflict with those examples.
This is perhaps best sorted out after this document gets more specific.
But for now I'm not concerned.

	Thanks,
	Paul Kyzivat


_______________________________________________
RAI mailing list
RAI@ietf.org
https://www.ietf.org/mailman/listinfo/rai

v2.23.0 | Report a Bug | By Email