Re: [sipcore] Draft new: draft-holmberg-sipcore-auth-id-00
worley@ariadne.com (Dale R. Worley) Tue, 28 October 2014 15:20 UTC
Return-Path: <worley@ariadne.com>
X-Original-To: sipcore@ietfa.amsl.com
Delivered-To: sipcore@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A14181A8AB8 for <sipcore@ietfa.amsl.com>; Tue, 28 Oct 2014 08:20:07 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nwglKVlk0JT6 for <sipcore@ietfa.amsl.com>; Tue, 28 Oct 2014 08:20:05 -0700 (PDT)
Received: from resqmta-po-04v.sys.comcast.net (resqmta-po-04v.sys.comcast.net [IPv6:2001:558:fe16:19:96:114:154:163]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 30EA01A8AAD for <sipcore@ietf.org>; Tue, 28 Oct 2014 08:20:05 -0700 (PDT)
Received: from resomta-po-19v.sys.comcast.net ([96.114.154.243]) by resqmta-po-04v.sys.comcast.net with comcast id 8fKj1p0055FMDhs01fL4Yu; Tue, 28 Oct 2014 15:20:04 +0000
Received: from hobgoblin.ariadne.com ([24.34.72.61]) by resomta-po-19v.sys.comcast.net with comcast id 8fL31p00Q1KKtkw01fL4b6; Tue, 28 Oct 2014 15:20:04 +0000
Received: from hobgoblin.ariadne.com (hobgoblin.ariadne.com [127.0.0.1]) by hobgoblin.ariadne.com (8.14.7/8.14.7) with ESMTP id s9SFK3dY007234; Tue, 28 Oct 2014 11:20:03 -0400
Received: (from worley@localhost) by hobgoblin.ariadne.com (8.14.7/8.14.7/Submit) id s9SFK2gC007233; Tue, 28 Oct 2014 11:20:02 -0400
Date: Tue, 28 Oct 2014 11:20:02 -0400
Message-Id: <201410281520.s9SFK2gC007233@hobgoblin.ariadne.com>
From: worley@ariadne.com
Sender: worley@ariadne.com
To: Christer Holmberg <christer.holmberg@ericsson.com>
In-reply-to: <7594FB04B1934943A5C02806D1A2204B1D4CF47D@ESESSMB209.ericsson.se> (christer.holmberg@ericsson.com)
References: <7594FB04B1934943A5C02806D1A2204B1D4CC977@ESESSMB209.ericsson.se> <201410272115.s9RLFV0j004631@hobgoblin.ariadne.com> <7594FB04B1934943A5C02806D1A2204B1D4CF47D@ESESSMB209.ericsson.se>
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20140121; t=1414509604; bh=PIhgabzERcLNtjKowZWVrvcYKR/BF/l8RYTyiewgXg4=; h=Received:Received:Received:Received:Date:Message-Id:From:To: Subject; b=QZLWLyWS5rwRlnvf6Ca7i42UFEBzn6S98IMi7x9ixZebuLhztuFnB3zaHtwfLr9ew 81a5DoX8dIEKFnIagFt6HhfnlNkQe+M0N+AvwPkfX01mHjhL7/5FlqPBeBXhDe018D kuuPkwsLb7fA7NIYQt6heOIImTJ3nOcQGn0EmO0LpWZWeYbVjFjOmXczxdZoFiIw0E R2gXV7LXBPM69wlo81ERpZoUuZLl/oghF+axQA3cYIbYAXqPnaJIo+DHhNC/T7Byj7 HfbrvWCWpJMhxsXFbBjSXkiTjHoNKBKi91Xwdz5USZQ+cap4jni8wtpG3HQz7ev53F up7vymxy13J+w==
Archived-At: http://mailarchive.ietf.org/arch/msg/sipcore/sp9aEpmaZIi_I-dlCkkH_OJ2Ndw
Cc: sipcore@ietf.org
Subject: Re: [sipcore] Draft new: draft-holmberg-sipcore-auth-id-00
X-BeenThere: sipcore@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: SIP Core Working Group <sipcore.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sipcore>, <mailto:sipcore-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sipcore/>
List-Post: <mailto:sipcore@ietf.org>
List-Help: <mailto:sipcore-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sipcore>, <mailto:sipcore-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Oct 2014 15:20:07 -0000
> From: Christer Holmberg <christer.holmberg@ericsson.com> > >> The draft defines a new Authorization header field parameter, which > >> can carry a string value identifying an authorization server, based on > >> a requirement from 3GPP (the mechanism is general, though). > > > > The text says that the "authorization-entity" parameter carries "a > > string value which represents the identity of an authorization > > server". You might want to expand on that. I'm guessing it means > > that any entity that wants to verify the authorization of the > > REGISTER request should present the request contents to the > > specified authorization server. > > I am not sure I understand what you mean by "present the request > contents to the specified authorization server". The identity is > obtained from the authorization server (or, the eP-CSCF knows it by > configuration). The identity is then provided to the S-CSCF (SIP > registrar), which can use the information for policy decisions. The general idea is this: Suppose the reader has no idea how IMS does things. Within the SIP authorization model(s) presented in the RFCs, what is the function of "authorization-entity"? I assume that you intend to extend the set of SIP authorization models; it's necessary to describe, at least in outline, what the new authorization model is and how "authorization-entity" is used in it so people can tell whether they want to use it in their SIP implementations and how they would do so. As this draft is currently written, it seems to be "IMS needs this, so we'll write that down and call it an RFC". It needs considerable clarification. Dale
- [sipcore] Draft new: draft-holmberg-sipcore-auth-… Christer Holmberg
- Re: [sipcore] Draft new: draft-holmberg-sipcore-a… Dale R. Worley
- Re: [sipcore] Draft new: draft-holmberg-sipcore-a… Christer Holmberg
- Re: [sipcore] Draft new: draft-holmberg-sipcore-a… Dale R. Worley
- Re: [sipcore] Draft new: draft-holmberg-sipcore-a… Christer Holmberg
- Re: [sipcore] Draft new: draft-holmberg-sipcore-a… Dale R. Worley