Re: [Sipping] Re: Question regarding draft-ietf-sipping-consent-format
Hannes Tschofenig <Hannes.Tschofenig@gmx.net> Fri, 13 July 2007 07:21 UTC
Return-path: <sipping-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1I9FTP-0002iE-M6; Fri, 13 Jul 2007 03:21:55 -0400
Received: from sipping by megatron.ietf.org with local (Exim 4.43) id 1I9FTO-0002fV-2u for sipping-confirm+ok@megatron.ietf.org; Fri, 13 Jul 2007 03:21:54 -0400
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1I9FTN-0002dS-Mt for sipping@ietf.org; Fri, 13 Jul 2007 03:21:53 -0400
Received: from mail.gmx.net ([213.165.64.20]) by chiedprmail1.ietf.org with smtp (Exim 4.43) id 1I9FTN-0007J7-6Z for sipping@ietf.org; Fri, 13 Jul 2007 03:21:53 -0400
Received: (qmail invoked by alias); 13 Jul 2007 07:21:35 -0000
Received: from p54984A98.dip.t-dialin.net (EHLO [192.168.1.4]) [84.152.74.152] by mail.gmx.net (mp053) with SMTP; 13 Jul 2007 09:21:35 +0200
X-Authenticated: #29516787
X-Provags-ID: V01U2FsdGVkX1/FIF0sKrPFmDxp0dI9eDUZ0CcPQU/CVE0q3s7BB+ 2NnR9ueZZcxb+u
Message-ID: <469727FD.6070202@gmx.net>
Date: Fri, 13 Jul 2007 09:21:33 +0200
From: Hannes Tschofenig <Hannes.Tschofenig@gmx.net>
User-Agent: Thunderbird 2.0.0.4 (Windows/20070604)
MIME-Version: 1.0
To: Gonzalo Camarillo <Gonzalo.Camarillo@ericsson.com>
Subject: Re: [Sipping] Re: Question regarding draft-ietf-sipping-consent-format
References: <46938677.8050906@gmx.net> <46971BCB.2050903@ericsson.com> <46972164.2090405@gmx.net>
In-Reply-To: <46972164.2090405@gmx.net>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-Y-GMX-Trusted: 0
X-Spam-Score: 0.0 (/)
X-Scan-Signature: b132cb3ed2d4be2017585bf6859e1ede
Cc: SIPPING LIST <sipping@ietf.org>
X-BeenThere: sipping@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "SIPPING Working Group \(applications of SIP\)" <sipping.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/sipping>, <mailto:sipping-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:sipping@ietf.org>
List-Help: <mailto:sipping-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/sipping>, <mailto:sipping-request@ietf.org?subject=subscribe>
Errors-To: sipping-bounces@ietf.org
I minor follow-up question:
What is the meaning of
"
<cp:actions>
<trans-handling
perm-uri="sip:foo@example.com">grant</trans-handling>
<trans-handling
perm-uri="sip:bar@example.com">deny</trans-handling>
</cp:actions>
"
in the example of Section 4 of
http://www.ietf.org/internet-drafts/draft-ietf-sipping-consent-format-03.txt?
How can a single rule carry both a grant and a deny?
How can a relay make restrictions regarding the sender's identity other
than putting the identity of the sender into a field who has just send a
request?
Wouldn't this typically be the job of the final recipient to figure out
which identities are allowed to make the translation step.
In this particular case you cannot just provide a URI for permit and
deny, which has the semantic of "YES, I want to add this policy (or "NO,
I don't want it", respectively.)
Ciao
Hannes
Hannes Tschofenig wrote:
> Hi Gonzalo,
>
> Gonzalo Camarillo wrote:
>> Hi Hannes,
>>
>> thanks for your comments. Answers inline:
>>
>> Hannes Tschofenig wrote:
>>> Hi Gonzalo,
>>> Hi all,
>>>
>>> I read through draft-ietf-sipping-consent-format. Maybe I
>>> misunderstand something but there is potentially a bug in the spec.
>>>
>>> Here is my understanding reading through the framework draft. The
>>> permission document is used in the following way:
>>>
>>> The relay sends the permission document to the Recipient with the
>>> semantic.
>>> "This is the policy I am going to add to your rule set. Are you OK
>>> with it?"
>>> URIs are attached to the message to allow the Recipient to quickly
>>> grant or deny the permission.
>>>
>>> In Section 5.4 of
>>> http://tools.ietf.org/html/draft-ietf-sip-consent-framework-02#section-5.4
>>> I see that a permission document must contain
>>> * Identity of the Sender
>>> * Identity of the Original Recipient
>>> * Identity of the Final Recipient
>>> * URIs to Grant Permission
>>> * URIs to Deny Permission
>>>
>>> I see that you addressed the first three items in your document. You
>>> put the identity of the sender in the <sender> element, the identity
>>> of the original recipient is stored in the <target> element and the
>>> final recipient is put into the <identity> element.
>>
>> Yes, that's correct.
>>
>>> I believe that there is a bug in the sense that the Common Policy
>>> <identity> condition is used in a wrong way in this document.
>>> The semantic of the <identity> element corresponds to the identity
>>> of the sender.
>>
>> There is a need to store the three elements you pointed out above
>> (sender, target URI, and recipient URI). We chose to use the already
>> existing <identity> element for one of them and to define two new
>> elements for the other two.
> The problem is that you have chosen a field that has a different
> semantic.
>
>>
>> We chose to use the <identity> element to store the recipient URI,
>> and you suggest that we use a newly defined <recipient> element
>> instead. We chose to store the recipient URI in the <identity>
>> element because it will be the entity receiving traffic from the
>> relay hosting the translation, the same way as a watcher (also stored
>> in an <identity> element in presence-rules) receives traffic from the
>> presence server.
> Right. But for the presence authorization document the <identity>
> element has the semantic of the sending host -- not the receiving host.
>
>>
>> As long as what to store in each element is clearly specified, I
>> believe we are OK whether we use the exiting <identity> element or a
>> newly defined one.
> I am not sure about that given that you then introduce a new element
> <sender> that has exactly the semantic of the <identity> element.
> To me this may lead to a lot of confusion given that Common Policy is
> already used quite widely.
>
> I am asking for a small fix. I will send the proposed text today.
>
> Ciao
> Hannes
>
>>
>> Cheers,
>>
>> Gonzalo
>
>
>
> _______________________________________________
> Sipping mailing list https://www1.ietf.org/mailman/listinfo/sipping
> This list is for NEW development of the application of SIP
> Use sip-implementors@cs.columbia.edu for questions on current sip
> Use sip@ietf.org for new developments of core SIP
_______________________________________________
Sipping mailing list https://www1.ietf.org/mailman/listinfo/sipping
This list is for NEW development of the application of SIP
Use sip-implementors@cs.columbia.edu for questions on current sip
Use sip@ietf.org for new developments of core SIP
- [Sipping] Question regarding draft-ietf-sipping-c… Hannes Tschofenig
- [Sipping] Re: Question regarding draft-ietf-sippi… Gonzalo Camarillo
- [Sipping] Re: Question regarding draft-ietf-sippi… Hannes Tschofenig
- Re: [Sipping] Re: Question regarding draft-ietf-s… Hannes Tschofenig
- Re: [Sipping] Re: Question regarding draft-ietf-s… Gonzalo Camarillo