Re: [stir] OOB for Service Providers
Richard Shockey <richard@shockey.us> Sat, 14 March 2020 19:02 UTC
Return-Path: <richard@shockey.us>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5B2EC3A0A09 for <stir@ietfa.amsl.com>; Sat, 14 Mar 2020 12:02:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.118
X-Spam-Level:
X-Spam-Status: No, score=-1.118 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, SPF_NEUTRAL=0.779, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (768-bit key) header.d=shockey.us
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id X0vl8I9suBkg for <stir@ietfa.amsl.com>; Sat, 14 Mar 2020 12:02:16 -0700 (PDT)
Received: from gateway30.websitewelcome.com (gateway30.websitewelcome.com [192.185.197.25]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 63FE83A0997 for <stir@ietf.org>; Sat, 14 Mar 2020 12:02:16 -0700 (PDT)
Received: from cm13.websitewelcome.com (cm13.websitewelcome.com [100.42.49.6]) by gateway30.websitewelcome.com (Postfix) with ESMTP id EFB261DC45 for <stir@ietf.org>; Sat, 14 Mar 2020 14:02:15 -0500 (CDT)
Received: from box5527.bluehost.com ([162.241.218.19]) by cmsmtp with SMTP id DC35jUD3aRP4zDC35jpnqP; Sat, 14 Mar 2020 14:02:15 -0500
X-Authority-Reason: nr=8
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=shockey.us; s=default; h=Content-type:Mime-version:In-Reply-To:References:Message-ID:CC: To:From:Subject:Date:Sender:Reply-To:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=qbVnHisGkO5UnhT277M+29IWeaH9dsbkueMYvd1zUbk=; b=M1RNEKclw2zkLZxZSHZFV2k8Kb vgTqwAn+MjLk/H4lINSqq3mB5GZNQgmw70Lp80cvaOFh6quJXnhtsoEUuvRxCFaan08c7e9iIH8pY b/qoV7dg6/nQaHls5L8X+S51z;
Received: from pool-100-36-47-17.washdc.fios.verizon.net ([100.36.47.17]:52757 helo=[192.168.1.156]) by box5527.bluehost.com with esmtpa (Exim 4.92) (envelope-from <richard@shockey.us>) id 1jDC35-001Uk5-Ib; Sat, 14 Mar 2020 13:02:15 -0600
User-Agent: Microsoft-MacOutlook/16.35.20030802
Date: Sat, 14 Mar 2020 15:02:14 -0400
From: Richard Shockey <richard@shockey.us>
To: Jonathan Rosenberg <jdrosen@jdrosen.net>, "Peterson, Jon" <jon.peterson=40team.neustar@dmarc.ietf.org>
CC: "stir@ietf.org" <stir@ietf.org>
Message-ID: <BEB2E789-9C01-4E0D-BD8F-E9CDBA8C07F0@shockey.us>
Thread-Topic: [stir] OOB for Service Providers
References: <9B2AD795-CC46-44E4-A19D-2F708D217F2B@team.neustar> <CA+23+fGutMD9QPCnbHVqsuShYgK9GxGV0PJ_GERuoNzAXM9XuQ@mail.gmail.com>
In-Reply-To: <CA+23+fGutMD9QPCnbHVqsuShYgK9GxGV0PJ_GERuoNzAXM9XuQ@mail.gmail.com>
Mime-version: 1.0
Content-type: multipart/alternative; boundary="B_3667042935_1826137592"
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - box5527.bluehost.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - shockey.us
X-BWhitelist: no
X-Source-IP: 100.36.47.17
X-Source-L: No
X-Exim-ID: 1jDC35-001Uk5-Ib
X-Source:
X-Source-Args:
X-Source-Dir:
X-Source-Sender: pool-100-36-47-17.washdc.fios.verizon.net ([192.168.1.156]) [100.36.47.17]:52757
X-Source-Auth: richard+shockey.us
X-Email-Count: 1
X-Source-Cap: c2hvY2tleXU7c2hvY2tleXU7Ym94NTUyNy5ibHVlaG9zdC5jb20=
X-Local-Domain: yes
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/K_Pcc1SM8pW9CT6EddrsR39exdI>
Subject: Re: [stir] OOB for Service Providers
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 14 Mar 2020 19:02:18 -0000
The larger question is whether OOB is worth anyone’s time or could we better spend our efforts encouraging more or perhaps even mandating SIP/IMS Interconnection. >From a purely regulatory perspective there are lots of perverse incentives in the US and Canadian systems to discourage SIP an encourage classic TDM. The US Intercarrier Compensation regime is one example and ongoing dilemma and lack of consensus of which methodology does the industry prefer to handle number translations. Yes I know..6116 vs the NPAC. >From where I sit that question is coming up more and more. I certainly don’t object to exploring all the options here since there its clear some jurisdictions are going to have predominantly TDM networks for the foreseeable future. — Richard Shockey Shockey Consulting LLC Chairman of the Board SIP Forum www.shockey.us www.sipforum.org richard<at>shockey.us Skype-Linkedin-Facebook –Twitter rshockey101 PSTN +1 703-593-2683 From: stir <stir-bounces@ietf.org> on behalf of Jonathan Rosenberg <jdrosen@jdrosen.net> Date: Saturday, March 14, 2020 at 2:36 PM To: "Peterson, Jon" <jon.peterson=40team.neustar@dmarc.ietf.org> Cc: "stir@ietf.org" <stir@ietf.org> Subject: Re: [stir] OOB for Service Providers Thanks Jon - very interesting concept. In order for this to work, a call originator needs to figure out which carrier's CPS to send the passport to, for a given dialed number. The draft proposes that this info can be obtained from the TNAuthList in the carriers certificate used to sign the cps advertisement. This presumes that terminating carriers are willing to actually enumerate the set of TNs they own in a certificate, and make this available to enterprises, contact centers or other entities which are going to place calls to those numbers. I think the jury is still out on whether these certs will end up containing actual numbers and prefixes, as opposed to OCNs. Classic inbound STIR and OOB can work without number lists, whereas this draft requires the TN list in order to facilitate routing (i.e., identifying the terminating cps). So - I think the key question is whether this routing is going to be feasible in practice or not. Thx, Jonathan R. On Fri, Mar 13, 2020 at 5:04 PM Peterson, Jon <jon.peterson=40team.neustar@dmarc.ietf.org> wrote: So we'll all be sad not to meet in Vancouver this time, but given that we're scheduling a virtual meeting, I did want to give a pointer to a new draft: https://tools.ietf.org/html/draft-peterson-stir-servprovider-oob-00 This draft works toward a more concrete protocol implementation of out-of-band STIR, for the case where a service provider (could be a carrier, large enterprise, or an OTT service) advertises a CPS that collects PASSporTs for calls that would terminate on its network. Because it is tightly coupled to the terminating side of the call, this flavor of CPS has a different security posture than a public CPS that is necessarily decoupled from call signaling entirely. I know there is some talk out there about "OOB SHAKEN" these days, and to be clear, this is not an "OOB SHAKEN" draft - this looks at general tools that might ultimately support efforts to deliver SHAKEN out-of-band, but it does not limit its consideration of the problem space to the way that SHAKEN currently handles certification and signing. The plan is to deliver a mechanism that is applicable to a variety of potential policies in that regard. If folks here are interested in working on this, let's discuss it a bit, and maybe find some agenda time for it. Jon Peterson Neustar, Inc. _______________________________________________ stir mailing list stir@ietf.org https://www.ietf.org/mailman/listinfo/stir -- Jonathan Rosenberg, Ph.D. jdrosen@jdrosen.net http://www.jdrosen.net _______________________________________________ stir mailing list stir@ietf.org https://www.ietf.org/mailman/listinfo/stir
- [stir] OOB for Service Providers Peterson, Jon
- Re: [stir] OOB for Service Providers Jonathan Rosenberg
- Re: [stir] OOB for Service Providers Richard Shockey
- Re: [stir] OOB for Service Providers Gorman, Pierce A [CTO]
- Re: [stir] OOB for Service Providers Peterson, Jon
- Re: [stir] OOB for Service Providers Peterson, Jon