Re: [secdir] secdir review of draft-ietf-sipcore-199-02 - Samuel's comments
Christer Holmberg <christer.holmberg@ericsson.com> Fri, 05 February 2010 07:10 UTC
Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: secdir@core3.amsl.com
Delivered-To: secdir@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id CBD3A3A6D02; Thu, 4 Feb 2010 23:10:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.009
X-Spam-Level:
X-Spam-Status: No, score=-3.009 tagged_above=-999 required=5 tests=[AWL=-0.410, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R6NRkvBiAEx1; Thu, 4 Feb 2010 23:10:52 -0800 (PST)
Received: from mailgw10.se.ericsson.net (mailgw10.se.ericsson.net [193.180.251.61]) by core3.amsl.com (Postfix) with ESMTP id 591393A6835; Thu, 4 Feb 2010 23:10:51 -0800 (PST)
X-AuditID: c1b4fb3d-b7b85ae00000097d-62-4b6bc4ab797f
Received: from esessmw0256.eemea.ericsson.se (Unknown_Domain [153.88.253.125]) by mailgw10.se.ericsson.net (Symantec Brightmail Gateway) with SMTP id 6D.6E.02429.BA4CB6B4; Fri, 5 Feb 2010 08:11:39 +0100 (CET)
Received: from ESESSCMS0354.eemea.ericsson.se ([169.254.1.147]) by esessmw0256.eemea.ericsson.se ([10.2.3.125]) with mapi; Fri, 5 Feb 2010 08:11:39 +0100
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: Samuel Weiler <weiler@watson.org>, "secdir@ietf.org" <secdir@ietf.org>, "iesg@ietf.org" <iesg@ietf.org>
Date: Fri, 05 Feb 2010 08:11:37 +0100
Thread-Topic: secdir review of draft-ietf-sipcore-199-02 - Samuel's comments
Thread-Index: AcqkF/sOYfNDsd6xRxuIMG9VeMtAugCGWnvw
Message-ID: <FF84A09F50A6DC48ACB6714F4666CC743F250CE700@ESESSCMS0354.eemea.ericsson.se>
References: <alpine.BSF.2.00.1002020943030.81689@fledge.watson.org>
In-Reply-To: <alpine.BSF.2.00.1002020943030.81689@fledge.watson.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: AAAAAA==
X-Mailman-Approved-At: Sun, 07 Feb 2010 23:12:25 -0800
Cc: "draft-ietf-sipcore-199@tools.ietf.org" <draft-ietf-sipcore-199@tools.ietf.org>, "sipcore-chairs@tools.ietf.org" <sipcore-chairs@tools.ietf.org>
Subject: Re: [secdir] secdir review of draft-ietf-sipcore-199-02 - Samuel's comments
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/secdir>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Feb 2010 07:10:53 -0000
Hi, Below are my replies to Samuel's comments. >This defines an intermediate "we're done" response, allowing >parties to tear down some state, while still requiring a >final response. > >The obvious risk (forging these, just like forging a TCP >reset) is documented. > >Even though the point of the 199 response is to allow early >resource release, I notice that some state is still being >maintained for these sessions. It might be worth explicitly >reminding readers of when they can timeout (is there a >timeout specified somewhere?). The 199 response only tears down a specific early dialog within a session (during the setup phase of a session there may be multiple early dialogs), but the session itself, and all other early dialog within it, are unaffected. For those normal RFC 3261 procedures apply. -------------- >I'm also a little worried about the implications of one party >or another trying to continue the dialog, perhaps >maliciously, after sending or receiving one of these. What >if one of these were used to disable a monitoring or billing >system, but the parties continued to use the open session? >(Compare to sending a weak C-tone on a wiretapped PSTN line.) That is of course possible, but in my opinion it is possible in SIP already without this, using other responses and requests which tears down a dialog or session. The protocol itself does not prevent users from continue to send media using the parameters (IP address/port, codecs etc) that thay have negotiated for the session. So, if one wants to prevent this from happening, some policy procedures need to be applied in the network. -------------- >Editorial: > >Please expand the acronyms in the abstract. (The id-nits >checklist says the abstract "Should be meaningful to someone >not versed in the technology; most abbreviations must be >expanded on first use.") Sure, I'll fix that. Regards, Christer
- [secdir] secdir review of draft-ietf-sipcore-199-… Samuel Weiler
- Re: [secdir] secdir review of draft-ietf-sipcore-… Christer Holmberg