IETF Logo Mail Archive

Re: [sipcore] ***CAUTION_Invalid_Signature*** Re: AD Evaluation of draft-ietf-sipcore-reason-q850-loc-04

<R.Jesske@telekom.de> Mon, 04 February 2019 11:37 UTC

Return-Path: <R.Jesske@telekom.de>
X-Original-To: sipcore@ietfa.amsl.com
Delivered-To: sipcore@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6DB2B12DF71; Mon, 4 Feb 2019 03:37:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.552
X-Spam-Level:
X-Spam-Status: No, score=-6.552 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-4.553, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=telekom.de
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HBfV2f86nzfD; Mon, 4 Feb 2019 03:37:25 -0800 (PST)
Received: from mailout31.telekom.de (MAILOUT31.telekom.de [194.25.225.143]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3734E1294D0; Mon, 4 Feb 2019 03:37:24 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telekom.de; i=@telekom.de; q=dns/txt; s=dtag1; t=1549280245; x=1580816245; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=bB+1lYjw5bEB7Bqs8eSljarQKZ4gRv43s03Vo7RHYaw=; b=JGHonREgmxQpIntYD7avpPNVRolxYkZc1jgJxOllB0H1zE2Cmx/tvKLh iLN/4eIBnJdHbqj80v0nxS2Et2RWYIsltHJYobH2eUqa1TTsU4FzjyG/J ReV6SZdVRIsAnH7kwP7Gu6DqEqnHgXwTwBDnsRVy6QP4/3sl1rkPvxGbi exmPjiAwVDQeCAsewQPL7yfDhK3vN/d8mo+r0iK0b0I9rNQuwr9iKFAI9 DUr8lWdr5as7KBhb11/Bk3V+dpLt3jUR/fuazA/9RbC6lqFz5ZvR1d+/f dgUAJGe7+xy/emdJWj6IOJnSO0OUyicnVWEnKkERTrYAnhsKnEJELQRre w==;
Received: from qdec94.de.t-internal.com ([10.171.255.41]) by MAILOUT31.dmznet.de.t-internal.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 04 Feb 2019 12:15:14 +0100
Received: from he105870.emea1.cds.t-internal.com ([10.169.118.67]) by QDEC97.de.t-internal.com with ESMTP/TLS/AES256-SHA; 04 Feb 2019 12:11:32 +0100
Received: from HE105716.EMEA1.cds.t-internal.com (10.169.118.52) by HE105870.emea1.cds.t-internal.com (10.169.118.67) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Mon, 4 Feb 2019 12:11:32 +0100
Received: from HE106564.emea1.cds.t-internal.com (10.171.40.16) by HE105716.EMEA1.cds.t-internal.com (10.169.118.52) with Microsoft SMTP Server (TLS) id 15.0.1395.4 via Frontend Transport; Mon, 4 Feb 2019 12:11:32 +0100
Received: from GER01-FRA-obe.outbound.protection.outlook.de (51.4.80.19) by O365mail01.telekom.de (172.30.0.234) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Mon, 4 Feb 2019 12:11:29 +0100
Received: from FRXPR01MB0135.DEUPRD01.PROD.OUTLOOK.DE (10.158.150.149) by FRXPR01MB0134.DEUPRD01.PROD.OUTLOOK.DE (10.158.150.148) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1580.20; Mon, 4 Feb 2019 11:11:31 +0000
Received: from FRXPR01MB0135.DEUPRD01.PROD.OUTLOOK.DE ([fe80::9cab:4e81:bea:6ef2]) by FRXPR01MB0135.DEUPRD01.PROD.OUTLOOK.DE ([fe80::9cab:4e81:bea:6ef2%6]) with mapi id 15.20.1580.019; Mon, 4 Feb 2019 11:11:31 +0000
From: R.Jesske@telekom.de
To: ben@nostrum.com
CC: sipcore-chairs@ietf.org, sipcore@ietf.org, draft-ietf-sipcore-reason-q850-loc.all@ietf.org
Thread-Topic: ***CAUTION_Invalid_Signature*** Re: [sipcore] AD Evaluation of draft-ietf-sipcore-reason-q850-loc-04
Thread-Index: AQHUiGl6gBlRwacDpES2okDrjUbTFKVn9CTggEe9HQCAGR2tgIAAAXSAgAcSneA=
Date: Mon, 04 Feb 2019 11:11:31 +0000
Message-ID: <FRXPR01MB0135099A4C4DFBEE011EB261F96D0@FRXPR01MB0135.DEUPRD01.PROD.OUTLOOK.DE>
References: <34AC90DD-12D6-4F34-B2A0-A1BB4D66A701@nostrum.com> <FRXPR01MB01355ED302E1EBC466EA8EE9F9D30@FRXPR01MB0135.DEUPRD01.PROD.OUTLOOK.DE> <39984F53-5EA4-475C-B060-C2E16CF37FB3@nostrum.com> <B25E5FC2-948A-4138-B111-CFA8F13CF1F2@nostrum.com> <2080089546.803769.1548889613397@HE102090.emea1.cds.t-internal.com>
In-Reply-To: <2080089546.803769.1548889613397@HE102090.emea1.cds.t-internal.com>
Accept-Language: de-DE, en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=R.Jesske@telekom.de;
x-originating-ip: [164.19.3.123]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; FRXPR01MB0134; 6:dPcGTKmyFb+RM3Pn7OBsb2jFZRS3GtIMOoXLlpgMBBmdPfLpAIN1lZNAMkyK7HZExbhDf70Y8NItlHDYIbnw3R5j9W3ktvixKQxnvTe58SFqRQP372bzuMRY18rpr6eL7+Ir/PnX183CdYgMeBR8LYATgDeSJOS3pNzOj5EnGxdgsk3RnynCiAsm1qlh9wemMd6wlXSXjmBfl04Sco2aoJfvTsF2u/Bdv+67coEf+21PaLcktHO2PaoXx2pwi2TvanCXi+6CDORPacJwq51Jeh/3bdS0ldmsz9wT8p/B8Uy22QXxmC5aQPOvLfJWvnWpORCSjHJCEDPS5OB+DaRu6Fx9QWzhWr/3OsNRni5TuPbpSTJCQbR1gajgevYJdMYZgFwvWRoqk1YX4RJkHnlWJlWL2pnSIoHlM1K9SCjFREIVgZTLFzsvijIXQySOIhKJF/2Y06Fb9stA4ldOh+kMIg==; 5:L5o+IwcqKQVfM9c3TBqDfOUKVRTD75wYmZJMhrdkZvbmPzaZy/6H++10UywhnzAXdQo6eDIlhhgPFqoM8DudI2WrJ9Zg56Aj6WkQ8vQIMvLrzO3WSQsdkN41e7Rl/S7d+423tcu+iEcnIGl4JV+SSGF3T0/myktwnodBOZTE8f+eb97XS3aeuKF8owGxEWHsvbrhxmkOyRSBDSqGUTEMQA==; 7:BqyjphIcfrS718MEkvCTmxQjEDLYIG8BKcYLYrvL4l6KYBDaR2vs1oAYmMDj4Gc4oXaNj+eOz7CNioVDMqM2+Z0cOylwx+bOvGcVYmpM9U4WfZkhPYDjg1feafTm/Yc4Reh/nJKonDPrOa5ivYm+cw==
x-ms-office365-filtering-correlation-id: 1586538c-bda8-4ee8-3b2a-08d68a91846d
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600110)(711020)(4605077)(2017052603328)(7153060)(7193020); SRVR:FRXPR01MB0134;
x-ms-traffictypediagnostic: FRXPR01MB0134:
x-microsoft-antispam-prvs: <FRXPR01MB0134EC3F962D87A59DB47E8DF96D0@FRXPR01MB0134.DEUPRD01.PROD.OUTLOOK.DE>
x-forefront-prvs: 0938781D02
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(979002)(346002)(136003)(366004)(39860400002)(396003)(376002)(189003)(199004)(345774005)(14454004)(55016002)(105586002)(72206003)(478600001)(74482002)(6916009)(8936002)(71190400001)(66066001)(71200400001)(93886005)(7736002)(8676002)(106356001)(81166006)(81156014)(33656002)(186003)(68736007)(19627235002)(86362001)(76176011)(102836004)(486006)(97736004)(53936002)(236005)(9686003)(6306002)(54896002)(6116002)(3846002)(256004)(14444005)(790700001)(53546011)(446003)(26005)(11346002)(4326008)(75402003)(54906003)(316002)(476003)(2906002)(52396003)(7696005)(969003)(989001)(999001)(1009001)(1019001); DIR:OUT; SFP:1101; SCL:1; SRVR:FRXPR01MB0134; H:FRXPR01MB0135.DEUPRD01.PROD.OUTLOOK.DE; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: telekom.de does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: jEi1Gcf/VJmyCBo4/IeCSMBTCkU5q4Uw0lOJMxpE1DK2ZNhTnxtFHED0pknDG3R+hkotBVLXcXVPl85iKFsyguuHN0HyGZLtc0JKX0fjKUXdX9IRGzPFKe1PEY3IO4fK0SkOb8N0/4IeOOsQ+JwfW9/bhzJtfilIK2iQVsUOnx57Uum+nAKrSMsZJz02yLN2jqf57jbM7VzYKqESH/ZxJgjcbuD31AYcCdSwAyD1rKDkS1uTtvSgDrkjiLOHuC9e3y41/Z4Xpb5dlHYWWRx04l8/eJXNbomLPBpgweDWS7lFl1qwrLG3F96srBFWKq05LqAnvg0AXq+f7JK+PtYjlI/Ps/PJjxu7H+JE2jf7hWoqmIg+HnrMz2M+BHGeKStvqBf/3A7YgQ5JVzZP+t2exw6jqWZvtrJdiaJuTZYJL6E=
Content-Type: multipart/alternative; boundary="_000_FRXPR01MB0135099A4C4DFBEE011EB261F96D0FRXPR01MB0135DEUP_"
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 1586538c-bda8-4ee8-3b2a-08d68a91846d
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Feb 2019 11:11:31.4974 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bde4dffc-4b60-4cf6-8b04-a5eeb25f5c4f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: FRXPR01MB0134
X-OriginatorOrg: telekom.de
Archived-At: <https://mailarchive.ietf.org/arch/msg/sipcore/sWh2qXOnoSelyYvcrF1-m25aLZA>
Subject: Re: [sipcore] ***CAUTION_Invalid_Signature*** Re: AD Evaluation of draft-ietf-sipcore-reason-q850-loc-04
X-BeenThere: sipcore@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SIP Core Working Group <sipcore.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sipcore>, <mailto:sipcore-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sipcore/>
List-Post: <mailto:sipcore@ietf.org>
List-Help: <mailto:sipcore-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sipcore>, <mailto:sipcore-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 04 Feb 2019 11:37:28 -0000

Hi Ben,
Thank you for your comments. I have them incorporated and as you proposed I let the draft open to implement further comments coming from the IETF LC feedback.

Best Regards

Roland

Von: Ben Campbell <ben@nostrum.com>
Gesendet: Donnerstag, 31. Januar 2019 00:08
An: Jesske, Roland <R.Jesske@telekom.de>
Cc: sipcore-chairs@ietf.org; sipcore@ietf.org; draft-ietf-sipcore-reason-q850-loc.all@ietf.org
Betreff: ***CAUTION_Invalid_Signature*** Re: [sipcore] AD Evaluation of draft-ietf-sipcore-reason-q850-loc-04

Oops, I forgot two more minor editorial comments. This does not change the last call status.

- Abstract: The abstract should not contain citations. It’s okay to mention an RFC number, but don’t put it in brackets like a citation would be in the body.

- It needs a normative reverence to RFC 8174.

Thanks!

Ben.


On Jan 30, 2019, at 5:02 PM, Ben Campbell <ben@nostrum.com<mailto:ben@nostrum.com>> wrote:

Hi Roland,

I think this version is ready for IETF Last Call. I will request that shortly.

I still have some minor editorial comments below. These can be addressed along with any IETF LC feedback.

Thanks!

Ben.


On Jan 14, 2019, at 5:29 PM, Ben Campbell <ben@nostrum.com<mailto:ben@nostrum.com>> wrote:

Signed PGP part
Apologies for the late response. I somehow missed seeing your response until now. Comments inline. I removed sections that seem resolved.

Please submit a new revision as soon as you are ready.

Thanks!

Ben.


On Nov 30, 2018, at 4:38 AM, R.Jesske@telekom.de<mailto:R.Jesske@telekom.de> wrote:




[...]


*** Substantive Comments ***

§3: “open to be used by any other network”
That would really mean “any other network that includes ISUP interworking
gateways and uses Q.850 reason codes”, right?
[RJ] Yes

I think it would be worth mentioning that in the draft.

[…]





§6 and §7:

Unfortunately, RFC 3326 contains no privacy considerations at all, so we really
can’t say that this doesn’t change them. The expectation for privacy
considerations has changed since that RFC was published. I think this
document does need to describe any privacy considerations that  the
combination of a Q.850 reason code and location might have.

[RJ] I would propose to delete then the first sentence.
Thus the considerations would state:
While the addition of the location parameter
 does provide an indicator of the entity that added the location in
 the signaling path this provides little more exposure than the
 [Q.850] cause itself.

I could add:
When applying privacy according to RFC 3323 the location value will not give any hint to the identity originating or terminating party of the call. It shows only the location of the release of the call which maybe the end device itself (location user) or any other network part.
The location is even not showing from which city or town the call is coming from.

Would this be enough?

If the call was released by the end device, does that not let people infer information about the original callee, if that device can be associated with the callee?

I think we’ve resolved that part, but looking at the new language:

"When applying privacy according to [RFC3323] the location value will not give any hint to the identity originating or terminating party of the call. It shows only the location of the release of the call which maybe the end device itself (location user) or any other network part. The location is even not showing from which city or town the call is coming from."

I think readers will still get confused by the use of “location” to describe something that’s not a “physical” location. I think it would help in this sentence to clarify that we are talking about “ISUP location”. Also, the is the use of RFC 3323 really relevant? That is, I don’t think the ISUP location reveals the identity one way or another, right? It’s not up to this draft to worry about whether some other part of the SIP message does.

Finally, there are some minor grammar issues. I propose the following simplification:

“The ISUP location value itself will not reveal the identity of the originating or terminating party of the call.  It shows only the ISUP network location of the device that released the call. The ISUP location does not show show the physical location of the caller or callee.”

(Nit) §7, new text: I propose the following edit:

OLD:
"[RFC3398] does an extensive security consideration due to
  interworking between ISUP and SIP.”
NEW:
"[RFC3398] describes detailed security consideration due to
  interworking between ISUP and SIP."

v2.23.0 | Report a Bug | By Email