[stir] RFC 7375 on Secure Telephone Identity Threat Model
rfc-editor@rfc-editor.org Thu, 23 October 2014 21:39 UTC
Return-Path: <wwwrun@rfc-editor.org>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5E7A01A1B37; Thu, 23 Oct 2014 14:39:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.912
X-Spam-Level:
X-Spam-Status: No, score=-106.912 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_WHITELIST=-100] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jlDyHECWPyAg; Thu, 23 Oct 2014 14:39:06 -0700 (PDT)
Received: from rfc-editor.org (rfc-editor.org [4.31.198.49]) by ietfa.amsl.com (Postfix) with ESMTP id AD5271A0262; Thu, 23 Oct 2014 14:39:06 -0700 (PDT)
Received: by rfc-editor.org (Postfix, from userid 30) id 6700C181D18; Thu, 23 Oct 2014 14:38:39 -0700 (PDT)
To: ietf-announce@ietf.org, rfc-dist@rfc-editor.org
X-PHP-Originating-Script: 6000:ams_util_lib.php
From: rfc-editor@rfc-editor.org
Message-Id: <20141023213839.6700C181D18@rfc-editor.org>
Date: Thu, 23 Oct 2014 14:38:39 -0700
Archived-At: http://mailarchive.ietf.org/arch/msg/stir/Xf9UT3ChHMQgN1QRabBo_URuJF0
X-Mailman-Approved-At: Mon, 27 Oct 2014 07:56:17 -0700
Cc: drafts-update-ref@iana.org, stir@ietf.org, rfc-editor@rfc-editor.org
Subject: [stir] RFC 7375 on Secure Telephone Identity Threat Model
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Oct 2014 21:39:08 -0000
A new Request for Comments is now available in online RFC libraries. RFC 7375 Title: Secure Telephone Identity Threat Model Author: J. Peterson Status: Informational Stream: IETF Date: October 2014 Mailbox: jon.peterson@neustar.biz Pages: 13 Characters: 31067 Updates/Obsoletes/SeeAlso: None I-D Tag: draft-ietf-stir-threats-04.txt URL: https://www.rfc-editor.org/rfc/rfc7375.txt As the Internet and the telephone network have become increasingly interconnected and interdependent, attackers can impersonate or obscure calling party numbers when orchestrating bulk commercial calling schemes, hacking voicemail boxes, or even circumventing multi-factor authentication systems trusted by banks. This document analyzes threats in the resulting system, enumerating actors, reviewing the capabilities available to and used by attackers, and describing scenarios in which attacks are launched. This document is a product of the Secure Telephone Identity Revisited Working Group of the IETF. INFORMATIONAL: This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited. This announcement is sent to the IETF-Announce and rfc-dist lists. To subscribe or unsubscribe, see https://www.ietf.org/mailman/listinfo/ietf-announce https://mailman.rfc-editor.org/mailman/listinfo/rfc-dist For searching the RFC series, see https://www.rfc-editor.org/search For downloading RFCs, see https://www.rfc-editor.org/rfc.html Requests for special distribution should be addressed to either the author of the RFC in question, or to rfc-editor@rfc-editor.org. Unless specifically noted otherwise on the RFC itself, all RFCs are for unlimited distribution. The RFC Editor Team Association Management Solutions, LLC