[Sipping] Re: E2M security and location conveyance
"James M. Polk" <jmpolk@cisco.com> Wed, 25 February 2004 16:31 UTC
Received: from optimus.ietf.org (optimus.ietf.org [132.151.1.19]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA26915 for <sipping-archive@odin.ietf.org>; Wed, 25 Feb 2004 11:31:12 -0500 (EST)
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1Aw1vm-0007E2-DI for sipping-archive@odin.ietf.org; Wed, 25 Feb 2004 11:30:44 -0500
Received: (from exim@localhost) by www1.ietf.org (8.12.8/8.12.8/Submit) id i1PGUgda027768 for sipping-archive@odin.ietf.org; Wed, 25 Feb 2004 11:30:42 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1Aw1vm-0007Dn-8y for sipping-web-archive@optimus.ietf.org; Wed, 25 Feb 2004 11:30:42 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA26712 for <sipping-web-archive@ietf.org>; Wed, 25 Feb 2004 11:30:39 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1Aw1vl-0004Xc-00 for sipping-web-archive@ietf.org; Wed, 25 Feb 2004 11:30:41 -0500
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1Aw1sJ-0003og-00 for sipping-web-archive@ietf.org; Wed, 25 Feb 2004 11:27:07 -0500
Received: from [65.246.255.50] (helo=mx2.foretec.com) by ietf-mx with esmtp (Exim 4.12) id 1Aw1qy-0003Xj-00 for sipping-web-archive@ietf.org; Wed, 25 Feb 2004 11:25:44 -0500
Received: from optimus.ietf.org ([132.151.1.19]) by mx2.foretec.com with esmtp (Exim 4.24) id 1Aw1fk-0001Fe-3z for sipping-web-archive@ietf.org; Wed, 25 Feb 2004 11:14:08 -0500
Received: from localhost.localdomain ([127.0.0.1] helo=www1.ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1Aw1fc-0005RU-Tf; Wed, 25 Feb 2004 11:14:00 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by optimus.ietf.org with esmtp (Exim 4.20) id 1Aw1f2-0005Ny-6s for sipping@optimus.ietf.org; Wed, 25 Feb 2004 11:13:24 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id LAA25640 for <sipping@ietf.org>; Wed, 25 Feb 2004 11:13:21 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1Aw1f1-0002CF-00 for sipping@ietf.org; Wed, 25 Feb 2004 11:13:23 -0500
Received: from exim by ietf-mx with spam-scanned (Exim 4.12) id 1Aw1eB-00022K-00 for sipping@ietf.org; Wed, 25 Feb 2004 11:12:32 -0500
Received: from sj-iport-1-in.cisco.com ([171.71.176.70] helo=sj-iport-1.cisco.com) by ietf-mx with esmtp (Exim 4.12) id 1Aw1cw-0001er-00 for sipping@ietf.org; Wed, 25 Feb 2004 11:11:15 -0500
Received: from wells.cisco.com (wells.cisco.com [171.71.177.223]) by sj-core-5.cisco.com (8.12.10/8.12.6) with ESMTP id i1PGAguA017918; Wed, 25 Feb 2004 08:10:42 -0800 (PST)
Received: from jmpolk-w2k01.diablo.cisco.com (ssh-sjc-1.cisco.com [171.68.225.134]) by wells.cisco.com (8.8.6 (PHNE_14041)/CISCO.SERVER.1.2) with ESMTP id IAA19299; Wed, 25 Feb 2004 08:10:40 -0800 (PST)
Message-Id: <4.3.2.7.2.20040225100120.02583860@localhost>
X-Sender: jmpolk@localhost
X-Mailer: QUALCOMM Windows Eudora Version 4.3.2
Date: Wed, 25 Feb 2004 10:10:43 -0600
To: Gonzalo Camarillo <Gonzalo.Camarillo@ericsson.com>, sipping <sipping@ietf.org>
From: "James M. Polk" <jmpolk@cisco.com>
Cc: Brian.rosen@marconi.com, ono.kumiko@lab.ntt.co.jp, tachimoto.shinya@lab.ntt.co.jp
In-Reply-To: <403C61C1.80102@ericsson.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format="flowed"
Subject: [Sipping] Re: E2M security and location conveyance
Sender: sipping-admin@ietf.org
Errors-To: sipping-admin@ietf.org
X-BeenThere: sipping@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/sipping>, <mailto:sipping-request@ietf.org?subject=unsubscribe>
List-Id: SIPPING Working Group (applications of SIP) <sipping.ietf.org>
List-Post: <mailto:sipping@ietf.org>
List-Help: <mailto:sipping-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/sipping>, <mailto:sipping-request@ietf.org?subject=subscribe>
X-Spam-Checker-Version: SpamAssassin 2.60 (1.212-2003-09-23-exp) on ietf-mx.ietf.org
X-Spam-Status: No, hits=0.0 required=5.0 tests=AWL autolearn=no version=2.60
At 10:50 AM 2/25/2004 +0200, Gonzalo Camarillo wrote:
>Hello,
>
>in case the authors of the folloing drafts are not in touch yet, I believe
>you should have a look at each other's work to make sure that the e2m
>security stuff is taking into account the location conveyance
>requirements. Specifically, Section 2 of the location conveyance draft
>directly talks about e2m security.
yep - it appears that if the e2m security allows the hiding of the location
information (LI) from a proxy that needs that information in order to
properly route the call (to the ERC) - then this is a problem (and
inconsistency between the goals of the 2 IDs/efforts).
I can imagine a case in which the proxy inserts LI into the message body
thinking it knows where the UA is - leaving two LIs in the body (perhaps
not labelled with who inserted each) for the ERC to figure out which to
trust for that call
Do we suggests a special case where the UA trust all proxies in a scenario
that the UA understands the new INVITE is to an ERC (via the sos@
indication or some other emergency number dialed on the (hard or soft) phone)?
We did have this special case written into the Geopriv Requirements doc
(RFC 3693, Section 8.3) with Location Conveyance in mind.
comments
>http://www.ietf.org/internet-drafts/draft-ietf-sipping-e2m-sec-reqs-01.txt
>
>http://www.ietf.org/internet-drafts/draft-ietf-sipping-location-requirements-00.txt
>
>Thanks,
>
>Gonzalo
>
>
>This communication is confidential and intended solely for the
>addressee(s). Any unauthorized review, use, disclosure or distribution is
>prohibited. If you believe this message has been sent to you in error,
>please notify the sender by replying to this transmission and delete the
>message without disclosing it. Thank you.
>
>E-mail including attachments is susceptible to data corruption,
>interruption, unauthorized amendment, tampering and viruses, and we only
>send and receive e-mails on the basis that we are not liable for any such
>corruption, interception, amendment, tampering or viruses or any
>consequences thereof.
>
cheers,
James
*******************
Truth is not to be argued... it is to be presented
_______________________________________________
Sipping mailing list https://www1.ietf.org/mailman/listinfo/sipping
This list is for NEW development of the application of SIP
Use sip-implementors@cs.columbia.edu for questions on current sip
Use sip@ietf.org for new developments of core SIP
- [Sipping] E2M security and location conveyance Gonzalo Camarillo
- [Sipping] Re: E2M security and location conveyance James M. Polk