IETF Logo Mail Archive

[Sip] Event List Changes

Adam Roach <adam@nostrum.com> Thu, 25 November 2004 03:18 UTC

Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id WAA02640 for <sip-web-archive@ietf.org>; Wed, 24 Nov 2004 22:18:58 -0500 (EST)
Received: from megatron.ietf.org ([132.151.6.71]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CXADs-0005wm-U0 for sip-web-archive@ietf.org; Wed, 24 Nov 2004 22:23:09 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CXA6A-0006DQ-VX; Wed, 24 Nov 2004 22:15:10 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1CX9zY-0004j9-Uq for sip@megatron.ietf.org; Wed, 24 Nov 2004 22:08:20 -0500
Received: from ietf-mx.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id WAA01956 for <sip@ietf.org>; Wed, 24 Nov 2004 22:08:18 -0500 (EST)
Received: from magus.nostrum.com ([69.5.195.2] ident=root) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1CXA3Y-0005k0-6Y for sip@ietf.org; Wed, 24 Nov 2004 22:12:28 -0500
Received: from [192.168.0.108] (adsl-209-30-33-13.dsl.rcsntx.swbell.net [209.30.33.13]) (authenticated bits=0) by magus.nostrum.com (8.12.11/8.12.11) with ESMTP id iAP38EcT094522 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <sip@ietf.org>; Wed, 24 Nov 2004 21:08:15 -0600 (CST) (envelope-from adam@nostrum.com)
Message-ID: <41A54C97.9000807@nostrum.com>
Date: Wed, 24 Nov 2004 21:08:07 -0600
From: Adam Roach <adam@nostrum.com>
User-Agent: Mozilla Thunderbird 0.9 (Windows/20041103)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: sip@ietf.org
X-Enigmail-Version: 0.86.1.0
X-Enigmail-Supports: pgp-inline, pgp-mime
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Spam-Score: 0.0 (/)
X-Scan-Signature: d185fa790257f526fedfd5d01ed9c976
Content-Transfer-Encoding: 7bit
Subject: [Sip] Event List Changes
X-BeenThere: sip@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Session Initiation Protocol <sip.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:sip@ietf.org>
List-Help: <mailto:sip-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
Sender: sip-bounces@ietf.org
Errors-To: sip-bounces@ietf.org
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 73734d43604d52d23b3eba644a169745
Content-Transfer-Encoding: 7bit

I'm revising the event list draft currently. In DC, we discussed at 
length the authentication model for situations in which the RLS and 
subscriber are in the same domain; I believe I've captured this pretty 
well (but encourage interested parties to double check my interpretation 
of consensus).

When I went to update the document, however, I found that there was 
still something of a hole for the other case -- the one we described as 
a corner case. I know that we agreed that (1) additional mechanism could 
be developed to solve this case, and (2) we didn't want to wait for 
these mechanisms before publishing the event list document. However, I 
don't remember discussing what RLS implementors can do when they receive 
a request for a list resource from a user outside their domain.

So, I came up with what seemed like the most logical solution, given the 
other discussions we had. Before I submit -07 of the document, I'd like 
to have a few people look over my proposed text; if you think this is 
the wrong direction to take it, speak up now. If I get no comments 
before the end of next week, I'll submit the draft with the following 
language.

> 7.1 Authentication
>
>    If back-end subscriptions are required to retrieve resource state
>    information, the end user is no longer the direct subscriber to the
>    state of the resource.  This means that direct authentication of the
>    user is no longer possible.
>
> 7.1.1 RLS and Subscriber in the Same Domain
>
>    It is expected that the most common deployment of RLSes entails the
>    subscribers to the RLS being in the same domain as the RLS.  When
>    this is the case, the RLS then has the ability to act as an
>    authenication service.  The role of authentication service is defined
>    in "Enhancements for Authenticated Identity Management in the Session
>    Initiation Protocol (SIP)" [7].
>
>    At a high level, under this system, the RLS authenticates the
>    subscriber, and then includes an "Identity" header field in all of
>    the back-end subscriptions performed on behalf of that authenticated
>    user; this "Identity" header field cryptographically asserts that the
>    request has been authorized to be made on behalf of the user
>    indicated in the "From" header field.
>
>    Because the ability to authenticate requests is central to the proper
>    functioning of the network, any RLS which uses SIP back-end
>    subscriptions to acquire information about the resources in a
>    resource list MUST be able to act as an authentication service as
>    defined in [7].
>
> 7.1.2 RLS and Subscriber in Different Domains
>
>    In the general case, the SIP Authenticated Identity extensions do not
>    provide a means for the RLS to securely assert that subscriptions are
>    being performed on the end user's behalf.  Specifically, when the
>    subscriber and the RLS are in different domains, the RLS will have no
>    means by which it can vouch for the user's identity.  Mechanisms by
>    which back-end subscriptions in such circumstances can be
>    authenticated are left for future study.
>
>    Until such general solutions are developed, RLSes which are in a
>    different domain than the subscriber on whose behalf they are
>    creating back-end susbcriptions SHOULD subscribe to the resources
>    using their own identity.  By doing so, the RLS will generally obtain
>    only the resource information which is made publicly available.
>
>    Absent such general solutions, implemenations of subscriber user
>    agents MAY attempt direct subscriptions to resources in the resouce
>    list when subscribing to an RLS outside of their domain (either
>    directly or by way of another resource list subscription).  The
>    resouces to be subscribed to will be those indicated in the the "uri"
>    attribute of the <resource> elements present in the RLMI document
>    returned by the RLS.  Directly subscribing to the resources allows
>    proper authentication of the user to take place, which will generally
>    authorize them to receive more complete state information.
>    Implementations which choose to perform such direct subscriptions
>    SHOULD use the data retrieved directly to the exclusion of any
>    information about the resource obtained via the list subscription.


/a

_______________________________________________
Sip mailing list  https://www1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors@cs.columbia.edu for questions on current sip
Use sipping@ietf.org for new developments on the application of sip

v2.23.0 | Report a Bug | By Email