IETF Logo Mail Archive

Re: [Sip] New I-D - TOTE - "INFO" on the media path

Ted Hardie <hardie@qualcomm.com> Wed, 20 February 2008 06:28 UTC

Return-Path: <sip-bounces@ietf.org>
X-Original-To: ietfarch-sip-archive@core3.amsl.com
Delivered-To: ietfarch-sip-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 748A83A6E18; Tue, 19 Feb 2008 22:28:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.115
X-Spam-Level:
X-Spam-Status: No, score=-1.115 tagged_above=-999 required=5 tests=[AWL=-0.678, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_ORG=0.611, RDNS_NONE=0.1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TYHcZcYixPhr; Tue, 19 Feb 2008 22:28:28 -0800 (PST)
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 3DCBE3A67AC; Tue, 19 Feb 2008 22:28:28 -0800 (PST)
X-Original-To: sip@core3.amsl.com
Delivered-To: sip@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5CD2F3A67AC for <sip@core3.amsl.com>; Tue, 19 Feb 2008 22:28:26 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WcdZo5GQqtkp for <sip@core3.amsl.com>; Tue, 19 Feb 2008 22:28:24 -0800 (PST)
Received: from wolverine01.qualcomm.com (wolverine01.qualcomm.com [199.106.114.254]) by core3.amsl.com (Postfix) with ESMTP id C9E193A67A9 for <sip@ietf.org>; Tue, 19 Feb 2008 22:28:24 -0800 (PST)
X-IronPort-AV: E=McAfee;i="5200,2160,5233"; a="808588"
Received: from pdmz-ns-mip.qualcomm.com (HELO numenor.qualcomm.com) ([199.106.114.10]) by wolverine01.qualcomm.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 19 Feb 2008 22:28:21 -0800
Received: from totoro.qualcomm.com (totoro.qualcomm.com [129.46.61.158]) by numenor.qualcomm.com (8.14.2/8.14.2/1.0) with ESMTP id m1K6SKXx000359 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=FAIL); Tue, 19 Feb 2008 22:28:21 -0800
Received: from [24.4.239.115] (vpn-10-50-0-112.qualcomm.com [10.50.0.112]) by totoro.qualcomm.com (8.14.2/8.14.2/1.0) with ESMTP id m1K6S5QG001375 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Tue, 19 Feb 2008 22:28:11 -0800 (PST)
Mime-Version: 1.0
Message-Id: <p06240602c3e173da4d57@[24.4.239.115]>
In-Reply-To: <8F90CB13-F83A-4D95-82E4-63794937E8A9@softarmor.com>
References: <47B6345B.4030807@cisco.com> <p06240601c3e0e71e3fef@[129.46.226.27]> <8F90CB13-F83A-4D95-82E4-63794937E8A9@softarmor.com>
Date: Tue, 19 Feb 2008 22:28:03 -0800
To: Dean Willis <dean.willis@softarmor.com>
From: Ted Hardie <hardie@qualcomm.com>
Cc: IETF SIP List <sip@ietf.org>
Subject: Re: [Sip] New I-D - TOTE - "INFO" on the media path
X-BeenThere: sip@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Session Initiation Protocol <sip.ietf.org>
List-Unsubscribe: <http://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:sip@ietf.org>
List-Help: <mailto:sip-request@ietf.org?subject=help>
List-Subscribe: <http://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: sip-bounces@ietf.org
Errors-To: sip-bounces@ietf.org

> >     Semantics:  Each purpose MUST clearly define what its used for.
>> T he
>>      definition must be sufficiently clear to allow an implementation
>>      to decide whether to render the object, what kind of UI to apply,
>>      how and where to store the object, how to process it, and so on.
>
>Well then, none of the way we use MIME in any of the "considered good"
>uses in SIP must make any sense.
>
>For example, with NOTIFY, the body is some sort of MIME object that
>may well have many different possible uses. It's the event type that
>tells us what that specific mime type means in the context of this
>NOTIFY.
>
>Otherwise said, an event package that defines a NOTIFY contain an
>application/octet-stream has to explain what to do with the octet-
>stream.

But event packages are fairly fully specified, compared to what this
draft seems to propose.  If you have an extremely generic statement
like "pic" and expect to extract semantics beyond that of the top
level image/ mime type, I think you're going to get pretty disappointed.
Now that I am re-reading after having gotten "home" (wink-wink),
maybe I did miss the idea.  If the idea is that the specification of
"pic"  or "name" is at the level of the specification of an event package,
then we are dealing with something else entirely and the draft can
be re-written to express that.  But I would expect, in that case, for each
of the registered purposes to be very carefully specified as to what the
acting application would do with them.  And I suspect pretty much
everything like "name" would have to go.

>What does it mean if we get a NOTIFY containing an image/jpeg? Should
>we display it? File it? Turn it into an mjpeg movie? Run a fingerprint
>recognizer on it? Apply steganogarphic analysis to extract the
>watermark? Here, the handling is driven by the event type, not the
>MIME type.
>
>That's the same as a "purpose" in TOTE. Each TOTE purpose would need
>to be documented, and that documentation would need to explain what
>MIME types can be sent for that purpose, and what it means to receive
>such a type in the context of a given purpose.

Again, if the level of specification that is expected is equivalent to event
packages, this has some hope of working.  Look at the IANA considerations
section again, though, and I think you'll see that does not appear to
be required by the current draft.

> >
>>
>> That's going to break how a lot of other things handle MIME object
>> transport, and incidentally call into question a very basic mechanism
>> for minting new application protocols currently in favor (that is,
>> using specialty
>> MIME types to trigger the handling).  I'm not saying it's not a
>> valid design choice,
>> but it does run counter to the current set of trends.  I also am
>> concerned that in using
>> the purpose, the design opens things up  to crafted payload attacks.
>
>The whole argument against INFO is that the MIME type itself is
>inadequate to trigger the handling. If it were adequate, we wouldn't
>have had this big fight about INFO for the last n-many years.
>
>Or are you now saying INFO is good and sip-events are BAD?

I'm saying that what the draft appears to be replacing INFO with is as bad
as INFO, as the "purpose" looks to be a mighty low-quality signal for
disposition.  There are some existing, common MIME types which
are bad, no question.  "pic", however, doesn't seem to tell you any better than
image/jpeg whether to display, it file, transform it, examine it for watermarks,
or print out the coupon it contains for a free helicopter ride to
CityWest.    Neither image/jpeg or "pic" is likely to do as you as much
good as one of the application-protocol specific MIME types created with
a disposition in mind, like application/atom+xml .

> >
>
>Did I just wake up in a different quantum universe again? Dang it,
>that always confuses me.

Permit me to suggest a dram or two of a well-tempered liquid, preferably
after it has been aged in a wood barrel of some kind.  It might not result
in clarity, but that won't bother you nearly as much.

				Ted
_______________________________________________
Sip mailing list  http://www.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors@cs.columbia.edu for questions on current sip
Use sipping@ietf.org for new developments on the application of sip

v2.23.0 | Report a Bug | By Email