IETF Logo Mail Archive

Re: [stir] Not just "called party" - Re: current draft charter

"Peterson, Jon" <jon.peterson@neustar.biz> Mon, 17 June 2013 18:45 UTC

Return-Path: <jon.peterson@neustar.biz>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F07821F92B8 for <stir@ietfa.amsl.com>; Mon, 17 Jun 2013 11:45:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.513
X-Spam-Level:
X-Spam-Status: No, score=-106.513 tagged_above=-999 required=5 tests=[AWL=0.087, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GUsuCgSXK0VS for <stir@ietfa.amsl.com>; Mon, 17 Jun 2013 11:45:48 -0700 (PDT)
Received: from neustar.com (mx2.neustar.com [156.154.25.104]) by ietfa.amsl.com (Postfix) with ESMTP id 5BCAC21F9285 for <stir@ietf.org>; Mon, 17 Jun 2013 11:45:48 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=neustar.biz; s=neustarbiz; t=1371494686; x=1686853782; q=dns/txt; h=From:Subject:Date:Message-ID:Content-Language: Content-Type:Content-ID:Content-Transfer-Encoding; bh=HKFO4abBpL iYzwdBlzBQCz9Kht3Sgr8K0FMac2b1gx4=; b=WmAxDmIg4vHsVF2j+AsVyFaPuC qtclzBBBJ7WZYzskPSQPnKCoyWvLh58Y64pdJHTytwp9tKko+RxoTcX1gPkw==
Received: from ([10.31.58.70]) by chihiron2.nc.neustar.com with ESMTP with TLS id J041123125.21072933; Mon, 17 Jun 2013 14:44:44 -0400
Received: from stntexmb12.cis.neustar.com ([169.254.2.76]) by stntexhc11.cis.neustar.com ([::1]) with mapi id 14.02.0342.003; Mon, 17 Jun 2013 14:45:32 -0400
From: "Peterson, Jon" <jon.peterson@neustar.biz>
To: Michael Hammer <michael.hammer@yaanatech.com>, "york@isoc.org" <york@isoc.org>, "hgs@cs.columbia.edu" <hgs@cs.columbia.edu>, "hadriel.kaplan@oracle.com" <hadriel.kaplan@oracle.com>
Thread-Topic: Not just "called party" - Re: [stir] current draft charter
Thread-Index: AQHOZwiVGT8OWD09JUqSfli80C7Gm5kxkloA//+WdYCAAPljAIAAcu6AgAADDoD//5sjgIAAm7yAgAAQaYCAAADrAP//j/IAABs/tYAADWnTgAAZGt+A///GjoCABI/SgIAAEO2A///sJgCAAOgKAIAAY2yAgABAOYCAABpKAIAABoAA//+W7QA=
Date: Mon, 17 Jun 2013 18:45:32 +0000
Message-ID: <CDE4A6A3.21C11%jon.peterson@neustar.biz>
In-Reply-To: <00C069FD01E0324C9FFCADF539701DB3A03DD7CA@ex2k10mb2.corp.yaanatech.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.3.4.130416
x-originating-ip: [192.168.128.73]
x-ems-proccessed: R64IxjzeHPwwd+efoj3ZcA==
x-ems-stamp: eVIIHkeMuxpfdSBlerLGhQ==
Content-Type: text/plain; charset="us-ascii"
Content-ID: <0E4A9DDDCAD82C45B3A756EF20BE0AEE@neustar.biz>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Cc: "stir@ietf.org" <stir@ietf.org>, "dcrocker@bbiw.net" <dcrocker@bbiw.net>
Subject: Re: [stir] Not just "called party" - Re: current draft charter
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/stir>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Jun 2013 18:45:52 -0000

I think it's a much harder problem, anyway, and I wouldn't want to put it
on our plate until we've understood more about source identity.

I imagine that there are alternative ways to approach the fallback
mechanism that could probably confer this property for some use cases.

Jon Peterson
Neustar, Inc.

On 6/17/13 11:01 AM, "Michael Hammer" <michael.hammer@yaanatech.com> wrote:

>By doing that you turn this from a source identity non-repudiation
>capability to 
>a routing assurance capability (receipt non-repudiation).
>
>Despite being useful, I thought that was not in scope.
>
>Mike
>
>
>-----Original Message-----
>From: Dan York [mailto:york@isoc.org]
>Sent: Monday, June 17, 2013 1:38 PM
>To: Michael Hammer; hgs@cs.columbia.edu; hadriel.kaplan@oracle.com
>Cc: stir@ietf.org; dcrocker@bbiw.net; jon.peterson@neustar.biz
>Subject: Not just "called party" - Re: [stir] current draft charter
>
>
>On 6/17/13 12:04 PM, "Michael Hammer" <michael.hammer@yaanatech.com>
>wrote:
>
>>Third point:  The called party needs to unequivocally know how to
>>validate an assertion and who to go to for the inputs to perform that
>validation.
>
>I would not necessarily restrict it to the "called party".  This is the
>dominant use case we've been discussing, I.e that I receive a call and
>want
>to be as certain as possible about the identity of the endpoint calling
>me.
>
>However, I could be calling out to my customers or clients and as the
>"calling party" would like to be as certain as possible that I am reaching
>the correct endpoint.  Consider a bank wanting to reach a customer about
>issues with the customer's account - or to verify a recent transaction.
>Or a
>doctor's office want to relay results to a patient and wanting to be sure
>they are reaching the patient's number.
>
>My understanding is that we are aiming to solve the "secure origin
>identification" challenge - and that could apply to either or both ends of
>the conversation.
>
>Dan
>

v2.23.0 | Report a Bug | By Email