IETF Logo Mail Archive

Re: [sipcore] New Version Notification for draft-ibc-sipcore-sip-websocket-00 (previously draft-ibc-rtcweb-sip-websocket-00)

Iñaki Baz Castillo <ibc@aliax.net> Fri, 02 December 2011 16:40 UTC

Return-Path: <ibc@aliax.net>
X-Original-To: sipcore@ietfa.amsl.com
Delivered-To: sipcore@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 66A6D21F8B5B for <sipcore@ietfa.amsl.com>; Fri, 2 Dec 2011 08:40:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.077
X-Spam-Level:
X-Spam-Status: No, score=-2.077 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, J_CHICKENPOX_24=0.6, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dzqG+DYPaeWm for <sipcore@ietfa.amsl.com>; Fri, 2 Dec 2011 08:40:35 -0800 (PST)
Received: from mail-vx0-f172.google.com (mail-vx0-f172.google.com [209.85.220.172]) by ietfa.amsl.com (Postfix) with ESMTP id B942521F8B51 for <sipcore@ietf.org>; Fri, 2 Dec 2011 08:40:34 -0800 (PST)
Received: by vcbfy13 with SMTP id fy13so2779488vcb.31 for <sipcore@ietf.org>; Fri, 02 Dec 2011 08:40:34 -0800 (PST)
Received: by 10.220.108.10 with SMTP id d10mr1063661vcp.138.1322844034169; Fri, 02 Dec 2011 08:40:34 -0800 (PST)
MIME-Version: 1.0
Received: by 10.220.1.82 with HTTP; Fri, 2 Dec 2011 08:40:13 -0800 (PST)
In-Reply-To: <5470070492D34F4EAC60E4ED91CB3841@gsmlaptop>
References: <CALiegfm8Dv8kHE1xrt59vBzLzB29mOvjH6YR2m=vm=p_BtSBTw@mail.gmail.com> <CAGTXFp82jNsCUBM=j=Tq1Xc5cOr7P1Hbp9gv5MQyeVBoOS5=ng@mail.gmail.com> <5470070492D34F4EAC60E4ED91CB3841@gsmlaptop>
From: Iñaki Baz Castillo <ibc@aliax.net>
Date: Fri, 02 Dec 2011 17:40:13 +0100
Message-ID: <CALiegfmdxJQ+fAevUCfOaJjRkja-vW2Sqh-83-J=3_E5Ba1j6A@mail.gmail.com>
To: Gilad Shaham <gilad@voxisoft.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Cc: José Luis Millán <jmillan@aliax.net>, "SIPCORE (Session Initiation Protocol Core) WG" <sipcore@ietf.org>
Subject: Re: [sipcore] New Version Notification for draft-ibc-sipcore-sip-websocket-00 (previously draft-ibc-rtcweb-sip-websocket-00)
X-BeenThere: sipcore@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: SIP Core Working Group <sipcore.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sipcore>, <mailto:sipcore-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sipcore>
List-Post: <mailto:sipcore@ietf.org>
List-Help: <mailto:sipcore-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sipcore>, <mailto:sipcore-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 02 Dec 2011 16:40:35 -0000

2011/12/2 Gilad Shaham <gilad@voxisoft.com>:
> I followed the previous draft and read this one. I know that from the last
> draft you would like to refrain from sips issues, but I would expect it to
> be mentioned at the very least in the security section (13.1). If I'm
> reading the examples correctly they mean - use TLS for WebSocket, but from
> there forward use any transport, even unencrypted. I'm not sure everyone
> would realize that and personally, I don't see a problem sending sips to
> indicate it should be secure end-to-end as defined by RFC 5630.

Hi Gilad. Indeed we have avoided mentioning sips stuff in the draft.
We consider that adding it won't help understanding the sips theory,
nor it will help understanding the SIP WebSocket transport proposed in
the draft. Personally I consider that the sips stuff should be
reworked.

Said that, what do you exactly miss (related to sips) in the draft?
maybe an example flow? or perhaps a consideration that "in presence of
a sips URI the WebSocket transport must be secure which means "wss"
URI in the WebSocket connection"?


> I'm also not so sure why the 'anonymous.invalid' strings are shown in this
> RFC for the Via and Contact headers. This usage is neither defined nor
> referenced anywhere other than the examples. If this specification doesn't
> mandate/recommend it I don't think it should be there, and if it does, it
> should be clearly defined (or reference another RFC that does).

As explained in the draft, the JavaScript stack in WebSocket capable
web browsers has no way to determine the source IP:port from which a
WebSocket connection has been established, this is, the SIP UA running
within a JavaScript application in a web does not know its local
address. Therefore we've chosen 'anonymous.invalid' for Via
sentby-host value and for Contact in the initial REGISTER (once the
registration is done, the SIP UA would know its GRUU addresses).
Regardless GRUU is implemented in the registrar, the usage of Outbound
(RFC 5626) makes unnecessary for the SIP UA to know its local address.

Of course, in case there is a hostname more appropriate than
'anonymous.invalid' then we could propose it. Is there?


Thanks a lot for your comments.




-- 
Iñaki Baz Castillo
<ibc@aliax.net>

v2.23.0 | Report a Bug | By Email