IETF Logo Mail Archive

Re: [splices] SIP INVOKE method

"Shekh-Yusef, Rifaat (Rifaat)" <rifatyu@avaya.com> Wed, 18 May 2011 15:02 UTC

Return-Path: <rifatyu@avaya.com>
X-Original-To: splices@ietfa.amsl.com
Delivered-To: splices@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 33008E076B for <splices@ietfa.amsl.com>; Wed, 18 May 2011 08:02:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.956
X-Spam-Level:
X-Spam-Status: No, score=-2.956 tagged_above=-999 required=5 tests=[AWL=-0.357, BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YvpR5YIXa-CP for <splices@ietfa.amsl.com>; Wed, 18 May 2011 08:02:24 -0700 (PDT)
Received: from p-us1-iereast-outbound.us1.avaya.com (p-us1-iereast-outbound.us1.avaya.com [135.11.29.13]) by ietfa.amsl.com (Postfix) with ESMTP id EED06E0741 for <splices@ietf.org>; Wed, 18 May 2011 08:02:23 -0700 (PDT)
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AnUBAJHe002HCzI1/2dsb2JhbACCZZRng0CKImp3iHCjBwKbUIYZBJRdg3+GRg
X-IronPort-AV: E=Sophos; i="4.65,231,1304308800"; d="scan'208,217"; a="188935868"
Received: from unknown (HELO p-us1-erheast.us1.avaya.com) ([135.11.50.53]) by p-us1-iereast-outbound.us1.avaya.com with ESMTP; 18 May 2011 11:02:22 -0400
X-IronPort-AV: E=Sophos; i="4.65,231,1304308800"; d="scan'208,217"; a="653381783"
Received: from dc-us1hcex2.us1.avaya.com (HELO DC-US1HCEX2.global.avaya.com) ([135.11.52.21]) by p-us1-erheast-out.us1.avaya.com with ESMTP; 18 May 2011 11:02:02 -0400
Received: from DC-US1MBEX4.global.avaya.com ([169.254.2.201]) by DC-US1HCEX2.global.avaya.com ([::1]) with mapi; Wed, 18 May 2011 11:02:02 -0400
From: "Shekh-Yusef, Rifaat (Rifaat)" <rifatyu@avaya.com>
To: Peter Musgrave <musgravepj@gmail.com>
Date: Wed, 18 May 2011 11:02:01 -0400
Thread-Topic: [splices] SIP INVOKE method
Thread-Index: AcwVYUmfYMosWeuyS6OWDjqUl/SR6QACtHEg
Message-ID: <6369CB70BFD88942B9705AC1E639A33822CBE5C63F@DC-US1MBEX4.global.avaya.com>
References: <6369CB70BFD88942B9705AC1E639A33822CBDA8EBF@DC-US1MBEX4.global.avaya.com> <BANLkTinLjrS3DocT=_MbnDrHdoTLs7RuhQ@mail.gmail.com> <6369CB70BFD88942B9705AC1E639A33822CBDA9548@DC-US1MBEX4.global.avaya.com> <4DD2C7BF.1030000@cisco.com> <6369CB70BFD88942B9705AC1E639A33822CBE5C339@DC-US1MBEX4.global.avaya.com> <4DD3C26A.9050705@cisco.com> <6369CB70BFD88942B9705AC1E639A33822CBE5C465@DC-US1MBEX4.global.avaya.com> <BANLkTi=RrRrJEqrqVoWkS428y4-=TPZ16A@mail.gmail.com>
In-Reply-To: <BANLkTi=RrRrJEqrqVoWkS428y4-=TPZ16A@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
acceptlanguage: en-US
Content-Type: multipart/alternative; boundary="_000_6369CB70BFD88942B9705AC1E639A33822CBE5C63FDCUS1MBEX4glo_"
MIME-Version: 1.0
Cc: "splices@ietf.org" <splices@ietf.org>
Subject: Re: [splices] SIP INVOKE method
X-BeenThere: splices@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Loosely-coupled SIP Devices \(splices\) working group discussion list" <splices.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/splices>, <mailto:splices-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/splices>
List-Post: <mailto:splices@ietf.org>
List-Help: <mailto:splices-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/splices>, <mailto:splices-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 May 2011 15:02:25 -0000

Hi Peter,

Yes, I expect others to try to define new category of actions, but these must be registered with IANA.
I am not clear on how this strengthens the case for using a body.

Regards,
Rifaat


From: Peter Musgrave [mailto:musgravepj@gmail.com]
Sent: Wednesday, May 18, 2011 9:32 AM
To: Shekh-Yusef, Rifaat (Rifaat)
Cc: Paul Kyzivat; splices@ietf.org
Subject: Re: [splices] SIP INVOKE method

Rifaat,

I agree with Paul - a body may make sense.

If we are going as far as defining a new SIP METHOD - does it make sense to have separate problem domains for the URNs? Do we think in the future others might want a different "package" of actions for some other purpose? If so, I think this strengthens the case for using a body.

Peter
On Wed, May 18, 2011 at 9:25 AM, Shekh-Yusef, Rifaat (Rifaat) <rifatyu@avaya.com<mailto:rifatyu@avaya.com>> wrote:
Paul,

I am not talking about any intermediary, but about application servers on the call path in an enterprise.
Some application servers might be interested in a specific action to push application to the phone.
I agree that strong security is required and we are asking the client to only allow authorized users to invoke an action by challenging the INVOKE-Issuer.

Regards,
 Rifaat

> -----Original Message-----
> From: Paul Kyzivat [mailto:pkyzivat@cisco.com<mailto:pkyzivat@cisco.com>]
> Sent: Wednesday, May 18, 2011 8:58 AM
> To: Shekh-Yusef, Rifaat (Rifaat)
> Cc: splices@ietf.org<mailto:splices@ietf.org>
> Subject: Re: [splices] SIP INVOKE method
>
>
>
> On 5/18/2011 7:29 AM, Shekh-Yusef, Rifaat (Rifaat) wrote:
> > Hi Paul,
> >
> > I think that the main reason for using Headers for actions and parameters is
> to allow for proxy applications on the call path to recognize the requested
> action, as some UAs might encrypt the body part.
>
> Hmm. That seems to me to be more reason to use a body part!
>
> What possible reason would an intermediary have for snooping into these
> actions?
>
> Note that this functionality is *very* sensitive - in the wrong hands
> this stuff can do great damage. I predict that there will be a lot of
> demand for very strong security considerations. Putting the action in a
> body and encrypting it might be a good approach.
>
>       Thanks,
>       Paul
>
> > Regards,
> >   Rifaat
> >
> >
> >> -----Original Message-----
> >> From: splices-bounces@ietf.org<mailto:splices-bounces@ietf.org> [mailto:splices-bounces@ietf.org<mailto:splices-bounces@ietf.org>] On Behalf
> Of
> >> Paul Kyzivat
> >> Sent: Tuesday, May 17, 2011 3:09 PM
> >> To: splices@ietf.org<mailto:splices@ietf.org>
> >> Subject: Re: [splices] SIP INVOKE method
> >>
> >>
> >>
> >> On 5/17/2011 2:20 PM, Shekh-Yusef, Rifaat (Rifaat) wrote:
> >>
> >>> Yes, and I have the following open question about these parameters:
> >>> Should a separate header be defined for action parameters?
> >>
> >> I can be convinced otherwise (by a good justification), but I'm inclined
> >> toward describing the action and any parameters in a body part.
> >>
> >>    Thanks,
> >>    Paul
> >> _______________________________________________
> >> splices mailing list
> >> splices@ietf.org<mailto:splices@ietf.org>
> >> https://www.ietf.org/mailman/listinfo/splices
> >
_______________________________________________
splices mailing list
splices@ietf.org<mailto:splices@ietf.org>
https://www.ietf.org/mailman/listinfo/splices

v2.23.0 | Report a Bug | By Email