Re: [Sip] New I-D on RFC4474 and phone numbers
"Henry Sinnreich" <hsinnrei@adobe.com> Mon, 18 February 2008 23:27 UTC
Return-Path: <sip-bounces@ietf.org>
X-Original-To: ietfarch-sip-archive@core3.amsl.com
Delivered-To: ietfarch-sip-archive@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 000A928C32B; Mon, 18 Feb 2008 15:27:50 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.676
X-Spam-Level:
X-Spam-Status: No, score=-1.676 tagged_above=-999 required=5 tests=[AWL=-1.239, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_ORG=0.611, RDNS_NONE=0.1]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id K-nfRVoHNlGe; Mon, 18 Feb 2008 15:27:49 -0800 (PST)
Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id D71C03A6897; Mon, 18 Feb 2008 15:27:49 -0800 (PST)
X-Original-To: sip@core3.amsl.com
Delivered-To: sip@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 9298B3A6785 for <sip@core3.amsl.com>; Mon, 18 Feb 2008 15:27:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id u0Td8rjQUnd4 for <sip@core3.amsl.com>; Mon, 18 Feb 2008 15:27:47 -0800 (PST)
Received: from exprod6og104.obsmtp.com (exprod6og104.obsmtp.com [64.18.1.187]) by core3.amsl.com (Postfix) with ESMTP id D052A3A68F4 for <sip@ietf.org>; Mon, 18 Feb 2008 15:27:43 -0800 (PST)
Received: from source ([192.150.11.134]) by exprod6ob104.postini.com ([64.18.5.12]) with SMTP; Mon, 18 Feb 2008 15:27:40 PST
Received: from inner-relay-1.corp.adobe.com ([153.32.1.51]) by outbound-smtp-1.corp.adobe.com (8.12.10/8.12.10) with ESMTP id m1INP4in000966; Mon, 18 Feb 2008 15:25:04 -0800 (PST)
Received: from apacmail.pac.adobe.com (apacmail.pac.adobe.com [130.248.36.99]) by inner-relay-1.corp.adobe.com (8.12.10/8.12.10) with ESMTP id m1INRSRM022943; Mon, 18 Feb 2008 15:27:39 -0800 (PST)
Received: from namail5.corp.adobe.com ([10.8.192.88]) by apacmail.pac.adobe.com with Microsoft SMTPSVC(6.0.3790.1830); Tue, 19 Feb 2008 08:27:35 +0900
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Date: Mon, 18 Feb 2008 15:27:32 -0800
Message-ID: <24CCCC428EFEA2469BF046DB3C7A8D22019E0762@namail5.corp.adobe.com>
In-Reply-To: <20080218161943.DB8531C8065@smtpauth01.csee.onr.siteprotect.com>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [Sip] New I-D on RFC4474 and phone numbers
Thread-Index: AchyPaUwZNySpUlPSZ2WJ432wEU9pAADJbXAAAGO2yAADIKDIA==
References: <24CCCC428EFEA2469BF046DB3C7A8D22019E0755@namail5.corp.adobe.com> <20080218161943.DB8531C8065@smtpauth01.csee.onr.siteprotect.com>
From: Henry Sinnreich <hsinnrei@adobe.com>
To: "Frank W. Miller" <fwmiller@cornfed.com>, Paul Kyzivat <pkyzivat@cisco.com>, "Shockey, Richard" <Richard.Shockey@neustar.biz>
X-OriginalArrivalTime: 18 Feb 2008 23:27:35.0894 (UTC) FILETIME=[D7ED7760:01C87285]
Cc: IETF SIP List <sip@ietf.org>
Subject: Re: [Sip] New I-D on RFC4474 and phone numbers
X-BeenThere: sip@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Session Initiation Protocol <sip.ietf.org>
List-Unsubscribe: <http://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:sip@ietf.org>
List-Help: <mailto:sip-request@ietf.org?subject=help>
List-Subscribe: <http://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: sip-bounces@ietf.org
Errors-To: sip-bounces@ietf.org
> If the receiver of the call doesn't want to talk to whomever calls, > don't they just hang up? It takes far more time to listen than deleting an email and is far more annoying than email spam. IMO the efforts proposed here are fully justified, though it will not be easy to accomplish. One of the main reasons for giving up PSTN service may be to just get relief from telemarketing calls. Henry -----Original Message----- From: Frank W. Miller [mailto:fwmiller@cornfed.com] Sent: Monday, February 18, 2008 11:08 AM To: Henry Sinnreich; 'Paul Kyzivat'; 'Shockey, Richard' Cc: 'IETF SIP List' Subject: RE: [Sip] New I-D on RFC4474 and phone numbers I'm a little confused by the need to "sign" phone numbers. I mean, whomever uses the number makes a call to or from it right? If the receiver of the call doesn't want to talk to whomever calls, don't they just hang up? This seems like a lot of extra work for little gain. Thanks, FM -----Original Message----- From: sip-bounces@ietf.org [mailto:sip-bounces@ietf.org] On Behalf Of Henry Sinnreich Sent: Monday, February 18, 2008 9:26 AM To: Paul Kyzivat; Shockey, Richard Cc: IETF SIP List Subject: Re: [Sip] New I-D on RFC4474 and phone numbers Paul, >My thought is that we already have an algorithmic mapping from an E.164 >phone number to a domain name, defined by enum. If the sender puts an >E.164 number in From, and can sign it with a cert for the enum mapped >domain name corresponding to that number, then that ought to be valid >proof of the validity of the sender. This seems indeed to be cutting the Gordian Knot! (http://en.wikipedia.org/wiki/Gordian_Knot) Should this not be a joint I-D with the ENUM WG, or have at least have some coordination? The exact mechanism to do this is certainly of interest to the ENUM folks. Henry -----Original Message----- From: sip-bounces@ietf.org [mailto:sip-bounces@ietf.org] On Behalf Of Paul Kyzivat Sent: Monday, February 18, 2008 8:51 AM To: Jonathan Rosenberg Cc: IETF SIP List Subject: Re: [Sip] New I-D on RFC4474 and phone numbers Jonathan, I guess the time has come for this discussion, since John Ewell has also submitted a draft on this subject. I thought the problem was already well known, but perhaps not. IMO the main thing now is to figure out the *solution* to the problem! IMO a solution is to use a 4474-style approach, but where the certificate is tied to just the phone number, not to some arbitrary domain name. That of course would depend on a model where the "owner" of the phone number is the one who may obtain the certificate for that number. My thought is that we already have an algorithmic mapping from an E.164 phone number to a domain name, defined by enum. If the sender puts an E.164 number in From, and can sign it with a cert for the enum mapped domain name corresponding to that number, then that ought to be valid proof of the validity of the sender. In those places where public enum is in operation, I think there is already a legal mechanism in place to give the owner of record of a particular phone number control over the contents of the corresponding DNS entry. That should also be sufficient to allow a certificate authority to assign a cert to that same owner. Combine all that and you have a complete e2e identity model for phone numbers, based on public enum. And that can be true even if public enum isn't used to *route* the calls to that number. So it could be used for "unlisted" numbers. To use this approach the From header should contain either a TEL URI, or a sip/sips URI containing the enum-mapped domain name corresponding to the phone number. (I would rather see the TEL used for this - it is more user friendly.) Thanks, Paul Jonathan Rosenberg wrote: > I just submitted: > http://www.ietf.org/internet-drafts/draft-rosenberg-sip-rfc4474-concerns -00.txt > > This is basically a discussion on the security properties of rfc4474 > with phone numbers, and a comparison to rfc3325 in this case. Also a > discussion on what happens to dtls-srtp. > > Comments welcome. > > -Jonathan R. _______________________________________________ Sip mailing list http://www.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use sip-implementors@cs.columbia.edu for questions on current sip Use sipping@ietf.org for new developments on the application of sip _______________________________________________ Sip mailing list http://www.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use sip-implementors@cs.columbia.edu for questions on current sip Use sipping@ietf.org for new developments on the application of sip _______________________________________________ Sip mailing list http://www.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use sip-implementors@cs.columbia.edu for questions on current sip Use sipping@ietf.org for new developments on the application of sip
- [Sip] New I-D on RFC4474 and phone numbers Jonathan Rosenberg
- Re: [Sip] New I-D on RFC4474 and phone numbers Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Henry Sinnreich
- [Sip] SIP & E.164 assertions Joel M. Halpern
- Re: [Sip] New I-D on RFC4474 and phone numbers Frank W. Miller
- Re: [Sip] New I-D on RFC4474 and phone numbers Dean Willis
- Re: [Sip] New I-D on RFC4474 and phone numbers Hadriel Kaplan
- Re: [Sip] New I-D on RFC4474 and phone numbers Frank W. Miller
- Re: [Sip] New I-D on RFC4474 and phone numbers Dean Willis
- Re: [Sip] New I-D on RFC4474 and phone numbers Frank W. Miller
- Re: [Sip] New I-D on RFC4474 and phone numbers Hadriel Kaplan
- Re: [Sip] New I-D on RFC4474 and phone numbers Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Frank W. Miller
- Re: [Sip] New I-D on RFC4474 and phone numbers Frank W. Miller
- Re: [Sip] New I-D on RFC4474 and phone numbers Jonathan Rosenberg
- Re: [Sip] SIP & E.164 assertions Jonathan Rosenberg
- Re: [Sip] New I-D on RFC4474 and phone numbers Tschofenig, Hannes (NSN - FI/Espoo)
- Re: [Sip] New I-D on RFC4474 and phone numbers Hadriel Kaplan
- [Sip] New I-D on why From/To-URIs are changed at … Hadriel Kaplan
- Re: [Sip] New I-D on RFC4474 and phone numbers Paul Kyzivat
- Re: [Sip] SIP & E.164 assertions Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Richard Shockey
- Re: [Sip] New I-D on RFC4474 and phone numbers Richard Shockey
- Re: [Sip] New I-D on RFC4474 and phone numbers Hadriel Kaplan
- Re: [Sip] SIP & E.164 assertions Hadriel Kaplan
- Re: [Sip] New I-D on RFC4474 and phone numbers Richard Shockey
- Re: [Sip] New I-D on RFC4474 and phone numbers Richard Shockey
- Re: [Sip] New I-D on RFC4474 and phone numbers Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Hadriel Kaplan
- Re: [Sip] New I-D on RFC4474 and phone numbers Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Henry Sinnreich
- Re: [Sip] New I-D on RFC4474 and phone numbers Richard Shockey
- Re: [Sip] New I-D on RFC4474 and phone numbers Richard Shockey
- Re: [Sip] New I-D on RFC4474 and phone numbers Dale.Worley
- Re: [Sip] SIP & E.164 assertions Dale.Worley
- Re: [Sip] New I-D on RFC4474 and phone numbers Dean Willis
- Re: [Sip] SIP & E.164 assertions Joel M. Halpern
- Re: [Sip] SIP & E.164 assertions Hadriel Kaplan
- Re: [Sip] New I-D on RFC4474 and phone numbers Dean Willis
- Re: [Sip] New I-D on RFC4474 and phone numbers Hadriel Kaplan
- Re: [Sip] SIP & E.164 assertions Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Hannes Tschofenig
- [Sip] Oracle -- New I-D on RFC4474 and phone numb… Hannes Tschofenig
- Re: [Sip] New I-D on RFC4474 and phone numbers Dan Wing
- Re: [Sip] New I-D on RFC4474 and phone numbers Dan Wing
- Re: [Sip] New I-D on RFC4474 and phone numbers Dan Wing
- Re: [Sip] SIP & E.164 assertions Hadriel Kaplan
- Re: [Sip] New I-D on RFC4474 and phone numbers Richard Shockey
- [Sip] Infrastructure issues involving e164 numbers Richard Shockey
- Re: [Sip] Infrastructure issues involving e164 nu… Hannes Tschofenig
- Re: [Sip] Infrastructure issues involving e164 nu… Richard Shockey
- Re: [Sip] Infrastructure issues involving e164 nu… Paul Kyzivat
- Re: [Sip] Infrastructure issues involving e164 nu… Dan Wing
- Re: [Sip] Infrastructure issues involving e164 nu… Hannes Tschofenig
- Re: [Sip] New I-D on RFC4474 and phone numbers Francois Audet
- Re: [Sip] Infrastructure issues involving e164 nu… Richard Shockey
- Re: [Sip] New I-D on RFC4474 and phone numbers Alan Johnston
- Re: [Sip] New I-D on RFC4474 and phone numbers Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Francois Audet
- Re: [Sip] New I-D on RFC4474 and phone numbers Joel M. Halpern
- Re: [Sip] New I-D on RFC4474 and phone numbers Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Francois Audet
- Re: [Sip] New I-D on RFC4474 and phone numbers Paul Kyzivat
- Re: [Sip] Infrastructure issues involving e164 nu… Henry Sinnreich
- Re: [Sip] New I-D on RFC4474 and phone numbers Jonathan Rosenberg
- Re: [Sip] New I-D on RFC4474 and phone numbers Joel M. Halpern
- Re: [Sip] New I-D on RFC4474 and phone numbers Dale.Worley
- Re: [Sip] New I-D on RFC4474 and phone numbers Hadriel Kaplan
- Re: [Sip] Infrastructure issues involving e164 nu… Hannes Tschofenig
- Re: [Sip] New I-D on RFC4474 and phone numbers Elwell, John
- Re: [Sip] New I-D on RFC4474 and phone numbers Elwell, John
- Re: [Sip] Infrastructure issues involving e164 nu… Elwell, John
- Re: [Sip] Infrastructure issues involving e164 nu… Horvath, Ernst
- Re: [Sip] New I-D on why From/To-URIs are changed… Elwell, John
- Re: [Sip] Infrastructure issues involving e164 nu… Elwell, John
- Re: [Sip] [Enum] New I-D on RFC4474 and phone num… PFAUTZ, PENN L, ATTCORP
- Re: [Sip] Infrastructure issues involving e164 nu… Hannes Tschofenig
- Re: [Sip] Infrastructure issues involving e164 nu… Patrik Fältström
- Re: [Sip] New I-D on RFC4474 and phone numbers Jonathan Rosenberg
- Re: [Sip] New I-D on RFC4474 and phone numbers Michael Thomas
- Re: [Sip] Infrastructure issues involving e164 nu… Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Francois Audet
- Re: [Sip] New I-D on RFC4474 and phone numbers Dan Wing
- Re: [Sip] Infrastructure issues involving e164 nu… Francois Audet
- Re: [Sip] New I-D on why From/To-URIs are changed… Hadriel Kaplan
- Re: [Sip] Infrastructure issues involving e164 nu… Elwell, John
- Re: [Sip] New I-D on RFC4474 and phone numbers Elwell, John
- Re: [Sip] Infrastructure issues involving e164 nu… Paul Kyzivat
- Re: [Sip] Infrastructure issues involving e164 nu… Michael Thomas
- Re: [Sip] New I-D on why From/To-URIs are changed… Paul Kyzivat
- Re: [Sip] New I-D on RFC4474 and phone numbers Dan Wing
- Re: [Sip] Infrastructure issues involving e164 nu… Paul Kyzivat
- Re: [Sip] Infrastructure issues involving e164 nu… Dean Willis
- Re: [Sip] Infrastructure issues involving e164 nu… Francois Audet
- Re: [Sip] Infrastructure issues involving e164 nu… Dean Willis
- Re: [Sip] Infrastructure issues involving e164 nu… Michael Thomas
- Re: [Sip] SIP & E.164 assertions Dale.Worley
- Re: [Sip] Infrastructure issues involving e164 nu… Dean Willis
- Re: [Sip] Infrastructure issues involving e164 nu… Hadriel Kaplan
- Re: [Sip] Infrastructure issues involving e164 nu… Hadriel Kaplan
- Re: [Sip] Infrastructure issues involving e164 nu… Elwell, John
- Re: [Sip] Infrastructure issues involving e164 nu… Elwell, John
- Re: [Sip] Infrastructure issues involving e164 nu… Elwell, John
- Re: [Sip] Infrastructure issues involving e164 nu… DRAGE, Keith (Keith)
- Re: [Sip] Infrastructure issues involving e164 nu… Paul Kyzivat
- Re: [Sip] Infrastructure issues involving e164 nu… Paul Kyzivat
- Re: [Sip] Infrastructure issues involving e164 nu… Michael Thomas
- Re: [Sip] Infrastructure issues involving e164 nu… Dean Willis
- Re: [Sip] Infrastructure issues involving e164 nu… Michael Thomas
- Re: [Sip] Infrastructure issues involving e164 nu… Francois Audet
- Re: [Sip] New I-D on why From/To-URIs are changed… Jonathan Rosenberg
- Re: [Sip] New I-D on why From/To-URIs are changed… Hadriel Kaplan