[stir] Draft minutes from the 2019-Sep-20 Stir Virtual Interim
Robert Sparks <rjsparks@nostrum.com> Tue, 24 September 2019 14:06 UTC
Return-Path: <rjsparks@nostrum.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1244E120103 for <stir@ietfa.amsl.com>; Tue, 24 Sep 2019 07:06:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.978
X-Spam-Level:
X-Spam-Status: No, score=-1.978 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, T_SPF_HELO_PERMERROR=0.01, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nostrum.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id C6rKhl-Nhvyo for <stir@ietfa.amsl.com>; Tue, 24 Sep 2019 07:06:15 -0700 (PDT)
Received: from nostrum.com (raven-v6.nostrum.com [IPv6:2001:470:d:1130::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B7B811200B3 for <stir@ietf.org>; Tue, 24 Sep 2019 07:06:15 -0700 (PDT)
Received: from unescapeable.local ([47.186.30.41]) (authenticated bits=0) by nostrum.com (8.15.2/8.15.2) with ESMTPSA id x8OE6Ela083796 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO) for <stir@ietf.org>; Tue, 24 Sep 2019 09:06:15 -0500 (CDT) (envelope-from rjsparks@nostrum.com)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=nostrum.com; s=default; t=1569333975; bh=6f8F7tgI1M1EMgedjidOhKN+4suQtdvB1qYhxgs6gUE=; h=To:From:Subject:Date; b=U5pxMoaMfpoPThz+CtOjUXTJbOL3bXJ3lW/odMyJUY6OxBHWQgRhO5v8PvA/DXdVD AXty89y6yRCbKxyl/2LNGJUKUPDZ4LKGYoxpo9Ghyaj+sEZH9R/5Fa6qNFExnw1+at YBpwRKgGPsfjkdgyv02MHvsZvJX1WBGwbEoOmRUI=
X-Authentication-Warning: raven.nostrum.com: Host [47.186.30.41] claimed to be unescapeable.local
To: stir@ietf.org
From: Robert Sparks <rjsparks@nostrum.com>
Message-ID: <db4402be-a6a4-3390-a6a1-139a1857c8c9@nostrum.com>
Date: Tue, 24 Sep 2019 09:06:14 -0500
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:60.0) Gecko/20100101 Thunderbird/60.9.0
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="------------50403C041633268154259E47"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/D7W87ShclPbh2U8e5zCoDIq9trk>
Subject: [stir] Draft minutes from the 2019-Sep-20 Stir Virtual Interim
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 Sep 2019 14:06:18 -0000
The draft minutes are available at
<https://datatracker.ietf.org/meeting/interim-2019-stir-01/materials/minutes-interim-2019-stir-01-201909201000>
(and copied below for your convenience).
Please send any necessary corrections to the list or the chairs.
The recording is at
<https://ietf.webex.com/recordingservice/sites/ietf/recording/playback/9bfb52eeb4334ea2b5226811474ff8a4>
RjS
----
Minutes: STIR Virtual Interim September 20, 2019
== Attendees ==
Adam Roach, Andrew Gallant, Arleen Elliot, Ben Campbell, Bopsi Chandramouli,
Chris Wendt, Eric Burger, Hala Mowafy, Jon Peterson, Kevin Cassidy, Martin
Dolly, Mary Barnes, Michael Richardson, Mike Hamilton, Rich Salz, Rifaat
Shekh-Yusef, Robert Sparks, Russ Housley, Sathvik Prasad, Vijay Gurbani
== Agenda ==
Close open issues on:
draft-ietf-stir-passport-rcd-04
draft-ietf-stir-cert-delegation-00
== draft-ietf-stir-passport-rcd-04 ==
Chris presented updates in version 04.
Question: Should call-info/RCD be used together for the two main cases?
1: Post-validation: Extract out identity headers towards UE (e.g. eCNAM)
2: compact-form (canonicalization from display-name and call-info) - needs
further definition
Conclusions: Align the RCD with call-info. Use call-inf as a mechanism to
define compact-form. Future extensions to call-info may need to align with RCD.
Need to make sure this really works—may need a separate “stub” draft.
Discussion: issues related to URL nesting in RCD. Issues include the
possibility of intentional abuse, the need for any vetting authority to verify
nested URIs, and the need to put reasonable limits on nesting.
Conclusions: The draft should guidance for the use of referenced content in
RCD, including the use of nested references. There are a number of
considerations here; the group needs some proposed text to discuss.
Discussion: Should the use of the “rcdi” mechanism should be normatively
required?
Conclusions: “MUST” use rcdi if the RCD includes referenced content (i.e.
Links). “MAY” use otherwise.
Discussion: Do we need 3 digest algorithms? Current algorithms align with existing passport signature algorithms.
Conclusions: Keep as is (i.e. keep the 3 algorithms)
Discussion: “icn” key vs using “logo” in a jcard.
Conclusions: Favor the jCard usage. jCard is more expressive than the “icn”
key about the originator’s intent. jCard gives a better chance of having both
the sender and recipient interpret the content in the same context. We should
align with jCard as main mechanism for both RCD and call-info, but need to have
discussion in both areas to come to consensus.
Discussion: Is third-party RCS evil?
Conclusions: Not necessarily. There are reasonable use cases for third part
RCD. These may provide migration paths since not all call originators will be
able to sign their own RCD passports on day 1.
Discussion: Privacy Considerations.
Conclusions: The privacy considerations for RCD are mostly similar to those for
SIP headers. The same privacy mechanism should apply to RCD as the rest of the
SIP message. The main difference is the use of referenced content. The draft
should include privacy considerations related to referenced content.
== draft-ietf-stir-cert-delegation ==
Discussion: Should this work continue, given the controversy in other industry
groups about the best way to handle enterprise caller use cases?
Conclusions: Continue to progress the work. Industry likely to use multiple
solutions in parallel. Treat this as a tool in the toolbox that other groups
can use (or not) as they wish.
Discussion: How do OCN and tn blocks interact?
Conclusions: Typically parent cert contains the OCN and the child cert has TN
blocks, in which case the parent OCN constrains the childTN blocks. If a single
cert has both OCN and TN blocks, they are additive, that is, the OCN does not
constrains the TNs. This may need further discussion/clarification, as people
not involved in the discussion may have different interpretations.
- [stir] Draft minutes from the 2019-Sep-20 Stir Vi… Robert Sparks
- Re: [stir] Draft minutes from the 2019-Sep-20 Sti… Ben Campbell