Re: [stir] [Acme] How Do You Stop Robocalls?

"Olle E. Johansson" <> Tue, 13 July 2021 07:11 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 74B393A1ACF; Tue, 13 Jul 2021 00:11:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id vf8MjuSGc_ts; Tue, 13 Jul 2021 00:11:07 -0700 (PDT)
Received: from ( [IPv6:2a02:920:212e::205]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 761333A1ACC; Tue, 13 Jul 2021 00:11:02 -0700 (PDT)
Received: from ( []) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPSA id DD15C1900; Tue, 13 Jul 2021 09:10:59 +0200 (CEST)
From: "Olle E. Johansson" <>
Message-Id: <>
Content-Type: multipart/alternative; boundary="Apple-Mail=_A2FC50DD-500D-4F8F-93B7-E1FAA8CDE4FF"
Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.\))
Date: Tue, 13 Jul 2021 09:10:59 +0200
In-Reply-To: <>
Cc: Mary Barnes <>, "" <>, "" <>, "Salz, Rich" <>
To: Roman Shpount <>
References: <> <> <> <> <>
X-Mailer: Apple Mail (2.3654.
Archived-At: <>
Subject: Re: [stir] [Acme] How Do You Stop Robocalls?
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 13 Jul 2021 07:11:13 -0000

> On 13 Jul 2021, at 09:06, Roman Shpount <> wrote:
> On Tue, Jul 13, 2021 at 2:33 AM Olle E. Johansson < <>> wrote:
>> 13 juli 2021 kl. 06:58 skrev Roman Shpount < <>>:
>>  At the same time, SIP over TLS has many performance and reliability issues that would need to be addressed before it is ready for industry-wide deployment.
> There’s also a lack of applicable standards for TLS usage, as I’ve pointed out a few times, but the working group seems to have no energy to fix. SIP over TLS from the SIP phone side requires implementation of SIP outbound, which we never successfully tested at any SIPit. I know of a few implementations now, but haven’t tested them together.
> We have built a SIP Outbound implementation with TLS. It kind of works but helped us identify plenty of problems both from reliability and scalability points of view.
> In the meantime, I am more concerned with more and more PII being sent in SIP INVITE, especially with RCD. It might be legally required to encrypt it when sending such data over the public internet, which would require TLS or VPN connections for all service providers. Together with increased SIP INVITE size, TLS essentially becomes the requirement. At this point, I am more concerned with making service provider to service provider use cases working.

I would love to have a discussion on that - either on the sipcore list or somewhere else. I gave a lot of input to the SIPconnect update but there’s still a lot of work to do on the server2server case.