[stir] Re: Call for adoption: draft-barnes-stir-8588bis-01 (Ends 2025-11-26)
Chris Wendt <chris@appliedbits.com> Thu, 06 November 2025 19:42 UTC
Return-Path: <chris@appliedbits.com>
X-Original-To: stir@mail2.ietf.org
Delivered-To: stir@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 50D7084AA17A; Thu, 6 Nov 2025 11:42:42 -0800 (PST)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=appliedbits.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ONYM3FtsHJ73; Thu, 6 Nov 2025 11:42:41 -0800 (PST)
Received: from siberian.tulip.relay.mailchannels.net (siberian.tulip.relay.mailchannels.net [23.83.218.246]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 5CE8F84AA0E4; Thu, 6 Nov 2025 11:42:33 -0800 (PST)
X-Sender-Id: dreamhost|x-authsender|chris@appliedbits.com
Received: from relay.mailchannels.net (localhost [127.0.0.1]) by relay.mailchannels.net (Postfix) with ESMTP id 855347E178A; Thu, 06 Nov 2025 19:42:26 +0000 (UTC)
Received: from pdx1-sub0-mail-a439.dreamhost.com (100-125-88-56.trex-nlb.outbound.svc.cluster.local [100.125.88.56]) (Authenticated sender: dreamhost) by relay.mailchannels.net (Postfix) with ESMTPA id D32317E1572; Thu, 06 Nov 2025 19:42:25 +0000 (UTC)
ARC-Seal: i=1; s=arc-2022; d=mailchannels.net; t=1762458146; a=rsa-sha256; cv=none; b=N5nQUeVXtuopSAue+8XBf3WkYkSINcDPWSnSJPpKjJcx4s6HA13jXYhkaMwTfgxYgZ34fA aQ+K9hLDYK0igjSqYmRbQpGeAEu3XetLBqJ+S8k9xs6mBnxrLXnTJPKdcwBX0pV9miUG55 Eld9CMzQTMELM/8VG0h+374vsuWI8g8JDywVgu8+GaRLlSeM3gMUN7g/y1WwaEErsWHDAT fBHpDKu7RfnbJ1Z8g9Tj+LeL61IWTXRCCxl6162EeRHAFfwi3SvQMxB0ZMBZaJZk/X8JTe R3JYro3A5T4Yfbp/CMl1TOGonTjzXW7tQ2Y2z5475boiwgGhJiax7kXB5KkR+w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=mailchannels.net; s=arc-2022; t=1762458146; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:dkim-signature; bh=8woJu1mAZRcIDBb6ysqqVXUWH0f8E4Xq1VgxOYGhO1s=; b=7UjpcO0EreC8SLziJ8KzSLX46SMTOeFpjCYWFmPpo131M8VP5gSqwcDqtjK8zc8bx+jr0r b9mhMJiXSJAfdUEg8e7sMVLT5stdDffnWkiB3qPvnicnokz7Au1HG7nRAFAIiFQpX74/31 HmdNW73ydMbvpPAPlOaDAGdBj/Saq932LSZLoj2d7aEhzALd3N7kTSopaqGtyEQ711c8v6 5DwJ7EypgHW1tlEKTtYKrKjO3BrkKIGqgaqP+nkdI4QCPj/mRxuvVTx4wCVK/HjkeM4z92 XoYrGA7DoJgIRM+bt2sGJklizM4Hck5LH7MAdaqalYbUHkhbZDvIiCzGc+2nBw==
ARC-Authentication-Results: i=1; rspamd-768b565cdb-zkp77; auth=pass smtp.auth=dreamhost smtp.mailfrom=chris@appliedbits.com
X-Sender-Id: dreamhost|x-authsender|chris@appliedbits.com
X-MC-Relay: Neutral
X-MailChannels-SenderId: dreamhost|x-authsender|chris@appliedbits.com
X-MailChannels-Auth-Id: dreamhost
X-Skirt-Arithmetic: 544f5d50424c99b6_1762458146229_194164712
X-MC-Loop-Signature: 1762458146229:3697471656
X-MC-Ingress-Time: 1762458146229
Received: from pdx1-sub0-mail-a439.dreamhost.com (pop.dreamhost.com [64.90.62.162]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384) by 100.125.88.56 (trex/7.1.3); Thu, 06 Nov 2025 19:42:26 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=appliedbits.com; s=dreamhost; t=1762458145; bh=8woJu1mAZRcIDBb6ysqqVXUWH0f8E4Xq1VgxOYGhO1s=; h=Content-Type:Content-Transfer-Encoding:From:Subject:Date:Cc:To; b=fJ80V2MSl8POV3ulIemZP3qC80BOJmA/W032fMsGU5d/AMahwtx7qC/YzYnyF7WAg QA+d2mmLsPZBxe/wX/w5BMQVNBP/rfDpcDSxzvciPmau6wDkfrgJU1Nq6hrBeqCMs+ 27zjuqpnkPS6wV5BgODiZKDBlRWGiFEspH1vKtKx05vZuNzEHlxBMN5VboQJb8f6Od xKN5Qo4wtr9PVzX3gXseoMTE42lm0ZTdkIHBF/wNKS+LirrTrOc2T1vvx8+ZZrAet2 NsGW4tvkexxZPKkFiKHyzZcrQla1OYH2Pwul4kGlBElciD44GW3BPgnEMyOjjRcMcb rOBm2t0S4bL9Q==
Received: from smtpclient.apple (unknown [91.196.220.196]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) (Authenticated sender: chris@appliedbits.com) by pdx1-sub0-mail-a439.dreamhost.com (Postfix) with ESMTPSA id 4d2Xdr4p1sz1wdP; Thu, 6 Nov 2025 11:42:24 -0800 (PST)
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
From: Chris Wendt <chris@appliedbits.com>
Mime-Version: 1.0 (1.0)
Date: Thu, 06 Nov 2025 14:42:12 -0500
Message-Id: <0FDA1B53-B373-4930-8529-702439D24F5C@appliedbits.com>
References: <CH3PR13MB6747E8AA5A02D71E5369676CE1C2A@CH3PR13MB6747.namprd13.prod.outlook.com>
In-Reply-To: <CH3PR13MB6747E8AA5A02D71E5369676CE1C2A@CH3PR13MB6747.namprd13.prod.outlook.com>
To: Pierce Gorman <Pierce.Gorman@numeracle.com>
X-Mailer: iPhone Mail (23B85)
Message-ID-Hash: WXJJAN3IE55IE533JS4A6OO2G6XT7FA2
X-Message-ID-Hash: WXJJAN3IE55IE533JS4A6OO2G6XT7FA2
X-MailFrom: chris@appliedbits.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-stir.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: housley@vigilsec.com, stir@ietf.org, draft-barnes-stir-8588bis@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [stir] Re: Call for adoption: draft-barnes-stir-8588bis-01 (Ends 2025-11-26)
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/TMWUnafkQ9soTIxufySRke6ZXEE>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Owner: <mailto:stir-owner@ietf.org>
List-Post: <mailto:stir@ietf.org>
List-Subscribe: <mailto:stir-join@ietf.org>
List-Unsubscribe: <mailto:stir-leave@ietf.org>
Hi Pierce, The UUID issue was brought up in the meeting by Mary but thanks for confirming. The biggest reason we did the bis document was actually making sure we were referencing a stable URL to the 1000074.v003 document and validated this version as consistent to this draft. The old spec references an outdated broken link to the original 074 spec that needed to be fixed and made permanent, which now links to SIP forum URL that we know will be persistent even if the ATIS document is revised in the future. So fixed/updated both issues, new version of document and persistent URL. -Chris > On Nov 6, 2025, at 1:02 PM, Pierce Gorman <Pierce.Gorman@numeracle.com> wrote: > > I reviewed (browsed) earlier this morning. I noticed it says UUID is required for origid claim. There was a big argument one day in one of the IP-NNI meetings where this point was debated because not every implementation was using UUID, and the IP-NNI came down squarely on the side of not requiring UUID. FWIW, I was in the camp that said it should be UUID but we were over-ruled. > > The only point I'm trying to make is differences in the (interpretation of?) ATIS standards and IETF standards on the same claim are likely to be unhelpful. And, does this imply Service Providers should now start failing verification of calls that formerly were ok with strings in origid like "This is the origid"? > > Beyond that, I didn't see what was different in the bis versus 8588. Is there a simple "this is what is different in the bis" description I'm overlooking? > > Thanks in advance for help. > > Pierce > > CONFIDENTIAL > -----Original Message----- > From: housley@vigilsec.com <housley@vigilsec.com> > Sent: Wednesday, November 5, 2025 5:24 PM > To: stir@ietf.org > Cc: draft-barnes-stir-8588bis@ietf.org > Subject: [stir] Re: Call for adoption: draft-barnes-stir-8588bis-01 (Ends 2025-11-26) > > As discussed in the STIR session earlier today, please read this document as you would for WG Last Call. We want to do the call for adoption and the WG Last Call concurrently. > > For the STIR WG Chairs, > Russ > > >> On 05.11.2025 17:59, Russ Housley via Datatracker wrote: >> Subject: Call for adoption: draft-barnes-stir-8588bis-01 (Ends >> 2025-11-26) >> >> This message starts a 3-week Call for Adoption for this document. >> >> Abstract: >> This document extends the Personal Assertion Token (PASSporT), which >> is a token object that conveys cryptographically signed information >> about the participants involved in communications. The extension is >> defined based on the "Signature-based Handling of Asserted >> information using toKENs (SHAKEN)" specification by the ATIS/SIP >> Forum IP-NNI Task Group. It provides both (1) a specific set of >> levels of confidence in the correctness of the originating identity >> of a call originated in a SIP-based telephone network as well as (2) >> an identifier that allows the Service Provider (SP) to uniquely >> identify the origin of the call within its network. This document >> obsoletes RFC8588. >> >> File can be retrieved from: >> https://datatracker.ietf.org/doc/draft-barnes-stir-8588bis/ >> >> Please reply to this message keeping stir@ietf.org in copy by >> indicating whether you support or not the adoption of this draft as a >> WG document. >> Comments to motivate your preference are highly appreciated. >> >> Authors, and WG participants in general, are reminded of the >> Intellectual Property Rights (IPR) disclosure obligations described in >> BCP 79 [2]. >> Appropriate IPR disclosures required for full conformance with the >> provisions of BCP 78 [1] and BCP 79 [2] must be filed, if you are >> aware of any. >> Sanctions available for application to violators of IETF IPR Policy >> can be found at [3]. >> >> Thank you. >> [1] https://datatracker.ietf.org/doc/bcp78/ >> [2] https://datatracker.ietf.org/doc/bcp79/ >> [3] https://datatracker.ietf.org/doc/rfc6701/ >> >> >> >> _______________________________________________ >> stir mailing list -- stir@ietf.org >> To unsubscribe send an email to stir-leave@ietf.org > > _______________________________________________ > stir mailing list -- stir@ietf.org > To unsubscribe send an email to stir-leave@ietf.org
- [stir] Call for adoption: draft-barnes-stir-8588b… Russ Housley via Datatracker
- [stir] Re: Call for adoption: draft-barnes-stir-8… housley
- [stir] Re: Call for adoption: draft-barnes-stir-8… Pierce Gorman
- [stir] Re: Call for adoption: draft-barnes-stir-8… Chris Wendt
- [stir] Re: Call for adoption: draft-barnes-stir-8… Pierce Gorman
- [stir] Re: Call for adoption: draft-barnes-stir-8… Russ Housley