IETF Logo Mail Archive

[sipcore] No WebSocket level authentication scenario [was RE: I-D Action: draft-ietf-sipcore-sip-websocket-09.txt]

"Parthasarathi R" <partha@parthasarathi.co.in> Tue, 18 June 2013 18:03 UTC

Return-Path: <partha@parthasarathi.co.in>
X-Original-To: sipcore@ietfa.amsl.com
Delivered-To: sipcore@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1149421F9ABC for <sipcore@ietfa.amsl.com>; Tue, 18 Jun 2013 11:03:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.125
X-Spam-Level:
X-Spam-Status: No, score=-2.125 tagged_above=-999 required=5 tests=[AWL=-0.160, BAYES_00=-2.599, IP_NOT_FRIENDLY=0.334, MIME_8BIT_HEADER=0.3]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZMuVT+suS6pI for <sipcore@ietfa.amsl.com>; Tue, 18 Jun 2013 11:03:43 -0700 (PDT)
Received: from smtp.mailhostbox.com (outbound-us1.mailhostbox.com [69.93.141.231]) by ietfa.amsl.com (Postfix) with ESMTP id BC5B721F961F for <sipcore@ietf.org>; Tue, 18 Jun 2013 11:03:43 -0700 (PDT)
Received: from userPC (unknown [122.179.88.201]) (Authenticated sender: partha@parthasarathi.co.in) by smtp.mailhostbox.com (Postfix) with ESMTPA id 681A61908254; Tue, 18 Jun 2013 18:03:40 +0000 (GMT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=parthasarathi.co.in; s=20120823; t=1371578622; bh=J0djkYgQko8qJ6bnf8uZQEFjF1bl5xJ6zofXOmzHR7U=; h=From:To:References:In-Reply-To:Subject:Date:Message-ID: MIME-Version:Content-Type:Content-Transfer-Encoding; b=DvcFA1/3xaDVeq0hNaHhecMDh3a7cJAY7QwmXstYtYCY15Ug5kAHENFhUf+qeX8xL WOT21ou3pRiwj28P4Ojdke02/44cMm7R30qgSb7EMmShR4v+MsG443teUeQgZBg2Ej kteBC9/msDypx7++p/ULNTdKViRgHzU0mkKs04/k=
From: Parthasarathi R <partha@parthasarathi.co.in>
To: 'Iñaki Baz Castillo' <ibc@aliax.net>, "'SIPCORE (Session Initiation Protocol Core) WG'" <sipcore@ietf.org>
References: <20130613011708.18316.28106.idtracker@ietfa.amsl.com> <CALiegfkg-KU1bB01eLXuksZV1ehBY92uf+0+F3fQuha-WnOS1A@mail.gmail.com>
In-Reply-To: <CALiegfkg-KU1bB01eLXuksZV1ehBY92uf+0+F3fQuha-WnOS1A@mail.gmail.com>
Date: Tue, 18 Jun 2013 23:33:35 +0530
Message-ID: <013c01ce6c4e$29e33c90$7da9b5b0$@co.in>
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Office Outlook 12.0
Content-Language: en-us
Thread-Index: Ac5n1JRaWWULoyU7RS28nTY76xxLbAEeQnbg
X-CTCH-RefID: str=0001.0A0C0209.51C0A0FE.0133, ss=1, re=0.000, recu=0.000, reip=0.000, cl=1, cld=1, fgs=0
X-CTCH-VOD: Unknown
X-CTCH-Spam: Unknown
X-CTCH-Score: 0.000
X-CTCH-Rules:
X-CTCH-Flags: 0
X-CTCH-ScoreCust: 0.000
X-CTCH-SenderID: partha@parthasarathi.co.in
X-CTCH-SenderID-TotalMessages: 1
X-CTCH-SenderID-TotalSpam: 0
X-CTCH-SenderID-TotalSuspected: 0
X-CTCH-SenderID-TotalBulk: 0
X-CTCH-SenderID-TotalConfirmed: 0
X-CTCH-SenderID-TotalRecipients: 0
X-CTCH-SenderID-TotalVirus: 0
X-CTCH-SenderID-BlueWhiteFlag: 0
X-Scanned-By: MIMEDefang 2.72 on 70.87.28.138
Subject: [sipcore] No WebSocket level authentication scenario [was RE: I-D Action: draft-ietf-sipcore-sip-websocket-09.txt]
X-BeenThere: sipcore@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: SIP Core Working Group <sipcore.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sipcore>, <mailto:sipcore-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sipcore>
List-Post: <mailto:sipcore@ietf.org>
List-Help: <mailto:sipcore-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sipcore>, <mailto:sipcore-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 18 Jun 2013 18:03:48 -0000

Hi Inaki & all,

IIUC, The below text in Sec 7 of the draft:

"If no authentication is done at WebSocket level then SIP Digest
   authentication is required for every SIP request coming over the
   WebSocket connection."

has to be changed as Normative statement as follows:

"If no authentication is done at WebSocket level then SIP Digest
   authentication MUST be done for every SIP request coming over the
   WebSocket connection."

Please let me know in case I'm missing something.

Thanks
Partha

> -----Original Message-----
> From: sipcore-bounces@ietf.org [mailto:sipcore-bounces@ietf.org] On
> Behalf Of Iñaki Baz Castillo
> Sent: Thursday, June 13, 2013 6:53 AM
> To: SIPCORE (Session Initiation Protocol Core) WG
> Subject: Re: [sipcore] I-D Action: draft-ietf-sipcore-sip-websocket-
> 09.txt
> 
> Hi all,
> 
> This new revision addresses all the issues reported in the WG since
> previous 08 revision. The changelog in revision 09 is the following:
> 
> 
> - Improved section "Handshake" (under "The WebSocket SIP
> Sub-Protocol") by mentioning the error handling when establishing a
> WebSocket connection (thanks to Suresh Krishnan).
> 
> - Mention to RFC 4168 (SIP SCTP) removed from the "SIP URI Transport
> Parameter" section (reported by Suresh Krishnan).
> 
> - "SIP Transport Implementation Requirements" section clarified by
> removing the "MAY" keyword (reported by Suresh Krishnan), and text
> from RFC 3261 section 18 amended (thanks to Barry Leiba).
> 
> - Text about certificate validation in secure WebSocket clarified in
> section "Secure WebSocket Connection" within "Security Considerations"
> (thanks to  Richard Barnes).
> 
> - Section "Authentication" made normative and text about SIP/Web
> authentication requirement improved.
> 
> - New appendix "Authentication Use Cases".
> 
> 
> Really thanks a lot for your help and comments.
> 
> 
> 
> 
> 2013/6/13  <internet-drafts@ietf.org>:
> >
> > A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> >  This draft is a work item of the Session Initiation Protocol Core
> Working Group of the IETF.
> >
> >         Title           : The WebSocket Protocol as a Transport for
> the Session Initiation Protocol (SIP)
> >         Author(s)       : Inaki Baz Castillo
> >                           Jose Luis Millan Villegas
> >                           Victor Pascual
> >         Filename        : draft-ietf-sipcore-sip-websocket-09.txt
> >         Pages           : 25
> >         Date            : 2013-06-12
> >
> > Abstract:
> >    The WebSocket protocol enables two-way realtime communication
> between
> >    clients and servers in web-based applications.  This document
> >    specifies a WebSocket sub-protocol as a reliable transport
> mechanism
> >    between SIP (Session Initiation Protocol) entities to enable usage
> of
> >    SIP in web-oriented deployments.  This document normatively
> updates
> >    RFC 3261.
> >
> >
> > The IETF datatracker status page for this draft is:
> > https://datatracker.ietf.org/doc/draft-ietf-sipcore-sip-websocket
> >
> > There's also a htmlized version available at:
> > http://tools.ietf.org/html/draft-ietf-sipcore-sip-websocket-09
> >
> > A diff from the previous version is available at:
> > http://www.ietf.org/rfcdiff?url2=draft-ietf-sipcore-sip-websocket-09
> >
> >
> > Internet-Drafts are also available by anonymous FTP at:
> > ftp://ftp.ietf.org/internet-drafts/
> >
> > _______________________________________________
> > sipcore mailing list
> > sipcore@ietf.org
> > https://www.ietf.org/mailman/listinfo/sipcore
> 
> 
> 
> --
> Iñaki Baz Castillo
> <ibc@aliax.net>
> _______________________________________________
> sipcore mailing list
> sipcore@ietf.org
> https://www.ietf.org/mailman/listinfo/sipcore

v2.23.0 | Report a Bug | By Email