RE: [Sip] Reviewers for the sec-agree draft
"James Undery" <jundery@ubiquity.net> Tue, 21 May 2002 14:50 UTC
Received: from optimus.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA12916 for <sip-archive@odin.ietf.org>; Tue, 21 May 2002 10:50:24 -0400 (EDT)
Received: (from daemon@localhost) by optimus.ietf.org (8.9.1a/8.9.1) id KAA22667 for sip-archive@odin.ietf.org; Tue, 21 May 2002 10:50:43 -0400 (EDT)
Received: from optimus.ietf.org (localhost [127.0.0.1]) by optimus.ietf.org (8.9.1a/8.9.1) with ESMTP id KAA21871; Tue, 21 May 2002 10:38:53 -0400 (EDT)
Received: from ietf.org (odin [132.151.1.176]) by optimus.ietf.org (8.9.1a/8.9.1) with ESMTP id KAA21843 for <sip@optimus.ietf.org>; Tue, 21 May 2002 10:38:50 -0400 (EDT)
Received: from gbnewp0915s1.eu.ubiquity.net (news.ubiquity.net [194.202.146.92]) by ietf.org (8.9.1a/8.9.1a) with SMTP id KAA12377 for <sip@ietf.org>; Tue, 21 May 2002 10:38:31 -0400 (EDT)
Received: from mailhost.eu.ubiquity.net by gbnewp0915s1.eu.ubiquity.net via smtpd (for odin.ietf.org [132.151.1.176]) with SMTP; 21 May 2002 14:39:12 UT
X-MimeOLE: Produced By Microsoft Exchange V6.0.4417.0
content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Subject: RE: [Sip] Reviewers for the sec-agree draft
Date: Tue, 21 May 2002 15:41:22 +0100
Message-ID: <45730E094814E44488F789C1CDED27AEC552F5@GBNEWP0758M.eu.ubiquity.net>
Thread-Topic: [Sip] Reviewers for the sec-agree draft
Thread-Index: AcIA084N4VvsSfiFTL+cFr+3/OA/9wAAGoVQ
From: James Undery <jundery@ubiquity.net>
To: "Vesa Torvinen (LMF)" <Vesa.Torvinen@lmf.ericsson.se>
Cc: "Jari Arkko (LMF)" <Jari.Arkko@lmf.ericsson.se>, "Gonzalo Camarillo Gonzalez (LMF)" <Gonzalo.Camarillo@lmf.ericsson.se>, sip <sip@ietf.org>
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by optimus.ietf.org id KAA21844
Sender: sip-admin@ietf.org
Errors-To: sip-admin@ietf.org
X-Mailman-Version: 1.0
Precedence: bulk
List-Id: Session Initiation Protocol <sip.ietf.org>
X-BeenThere: sip@ietf.org
Content-Transfer-Encoding: 8bit
> -----Original Message----- > From: Vesa Torvinen (LMF) [mailto:Vesa.Torvinen@lmf.ericsson.se] > Sent: 21 May 2002 15:26 > To: James Undery > Cc: Jari Arkko (LMF); Gonzalo Camarillo Gonzalez (LMF); sip > Subject: RE: [Sip] Reviewers for the sec-agree draft > > > Text in section 3.5 is supposed to address this issue: > > "If digest-integrity is chosen, the 494 (Security Agreement Required) > response will contain an HTTP authentication challenge. The client > MUST use the qos parameter possibly together with some variant of The word possibly above worries me, it'd also be nice to make the mechanism explicit e.g. 'sipfrags' as Sanjoy suggested. > MIME tunneling so that the Security-Verify header field in the > request is integrity protected in the MIME body. Note that digest > alone would not fulfill the minimum security requirements of this > specification." > > We didn't want to specify how to use 'digest-integrity' exactly > because this draft is related to negotiation - not individual > mechanisms. Neither did we want to drop the mechanism from the > list because someone can implement it using existing standards > (e.g. MIME, B2BUA, etc). I think a small amount of usage is required e.g. S/MIME protection MUST include any Security-* headers present. (This is mainly implicit at the moment.) James _______________________________________________ Sip mailing list https://www1.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use sip-implementors@cs.columbia.edu for questions on current sip Use sipping@ietf.org for new developments on the application of sip
- [Sip] Reviewers for the sec-agree draft Gonzalo Camarillo
- RE: [Sip] Reviewers for the sec-agree draft James Undery
- RE: [Sip] Reviewers for the sec-agree draft Sanjoy Sen
- RE: [Sip] Reviewers for the sec-agree draft Vesa Torvinen (LMF)
- RE: [Sip] Reviewers for the sec-agree draft James Undery