IETF Logo Mail Archive

Re: [stir] [sipcore] draft-ietf-sipcore-callinfo-04 (call-reason)

Henning Schulzrinne <hgs@cs.columbia.edu> Fri, 18 March 2022 20:24 UTC

Return-Path: <hgs10@columbia.edu>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 032293A10DA for <stir@ietfa.amsl.com>; Fri, 18 Mar 2022 13:24:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.008
X-Spam-Level:
X-Spam-Status: No, score=-2.008 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=columbia.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nLC65EWk-CIF for <stir@ietfa.amsl.com>; Fri, 18 Mar 2022 13:24:28 -0700 (PDT)
Received: from mx0a-00364e01.pphosted.com (mx0a-00364e01.pphosted.com [148.163.135.74]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2D2D33A10D4 for <stir@ietf.org>; Fri, 18 Mar 2022 13:24:27 -0700 (PDT)
Received: from pps.filterd (m0167068.ppops.net [127.0.0.1]) by mx0a-00364e01.pphosted.com (8.16.1.2/8.16.1.2) with ESMTP id 22IK9trI020146 for <stir@ietf.org>; Fri, 18 Mar 2022 16:24:27 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=columbia.edu; h=mime-version : references : in-reply-to : from : date : message-id : subject : to : cc : content-type; s=pps01; bh=bqPwHn7tY9weLJvw1i6gw7S3KVThaZvuNHTMcvQyyFc=; b=JFk5W/s7SKx73j606/yAuF09rlqBFMb/SAXLcW4PraslWgK0m/XLS6WpgTNw3xYKfp/+ 5swbTD+5XUI28oMnhDMO3+B5Xtt4OwAUgtjvBRFBIWXPtYQdgbqYG89469Klo5i+xekm bQHgzhKI2tLuOuUpFw04f6BhpYgiVyv/9lGq0pe5+AVZYE9627JtZ+ElV3YZAXXjn29O Pq3ya7nzlNDKLQXE3p7/nw1f6DaPPuak1dG7L2+Hacb7sg+PmL1+r8RD1JNMjlLdicHT qo32kSpHCejnuJH6vIuVNldYDf0EchgpSaNGI0SWwtGgoiE8lAvXhBiE0DxPls5hE0hY AA==
Received: from sendprdmail20.cc.columbia.edu (sendprdmail20.cc.columbia.edu [128.59.72.22]) by mx0a-00364e01.pphosted.com (PPS) with ESMTPS id 3evg1bxaae-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for <stir@ietf.org>; Fri, 18 Mar 2022 16:24:26 -0400
Received: from mail-qt1-f198.google.com (mail-qt1-f198.google.com [209.85.160.198]) by sendprdmail20.cc.columbia.edu (8.14.7/8.14.4) with ESMTP id 22IKOPeR084996 (version=TLSv1/SSLv3 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for <stir@ietf.org>; Fri, 18 Mar 2022 16:24:25 -0400
Received: by mail-qt1-f198.google.com with SMTP id m21-20020ac86895000000b002e1f19fae99so3875383qtq.18 for <stir@ietf.org>; Fri, 18 Mar 2022 13:24:25 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=bqPwHn7tY9weLJvw1i6gw7S3KVThaZvuNHTMcvQyyFc=; b=nhrGtJt3f5xjST4HlRJITjDBvEDqUKQtEUpSdPVq12f4pa0+kpmvuHGCcpIY9kyH67 ZlghYtWi5XYHNCcsgLfxChPSBinEnmuN8GFOYyC4hHWSHpdwU6wpzhK8B0ImTFz4G6AD NIoxzRm/8B2cFFr3xtSN5Omf8OijE+y0vVdK06dq2+OblwvGWPcfnsn0sfqdzDYjpm0w ho2fnF+Z0KpxwJdrflCgIJGeHkuZKwUcje7QRHUGUPsP62G/97/VgubN0EJM7kPbmUxC IF8Jz7G8RiInmmNWmHY92sfbSqEX4eOyGg7aogXw+uHrtmn7V3FwAszbXh/3HajKcCoS 96hw==
X-Gm-Message-State: AOAM531Mqte9I4nSKWk3EBY7tTA21KVfKfQ1MgGvVOke9O1UNMRfpyfe GoA97UQR9Xpe6zw8fUUlpMIpWWhMGRi7uy5UPS2ltbfBDzg1GCTQJ3O5vz3hAf1PLsx5xiatIGd /bCXDLoxOu6rdTsJIsHYTgNzkc6GY
X-Received: by 2002:a05:6214:3007:b0:435:c79b:a9e5 with SMTP id ke7-20020a056214300700b00435c79ba9e5mr8048093qvb.78.1647635064923; Fri, 18 Mar 2022 13:24:24 -0700 (PDT)
X-Google-Smtp-Source: ABdhPJxSMJdp1StlZSNKF2zDRDaVzbJHA2V7zs1m4wy+lXdoujoa8Bs6/JwOm+t8HjteVRpGcw9zt0vSY9s53vDUx0Y=
X-Received: by 2002:a05:6214:3007:b0:435:c79b:a9e5 with SMTP id ke7-20020a056214300700b00435c79ba9e5mr8048071qvb.78.1647635064516; Fri, 18 Mar 2022 13:24:24 -0700 (PDT)
MIME-Version: 1.0
References: <CACgrgBbUASA4HTukPwZL9V=8XOMTx_keZcDh-pVc0eSJYtVS8w@mail.gmail.com> <86BE36F5-7CFE-48BE-B0A7-7458B67EB208@chriswendt.net>
In-Reply-To: <86BE36F5-7CFE-48BE-B0A7-7458B67EB208@chriswendt.net>
From: Henning Schulzrinne <hgs@cs.columbia.edu>
Date: Fri, 18 Mar 2022 16:23:58 -0400
Message-ID: <CACgrgBYVi2rJv0BCFf3UxmjtSJHXRuFw+gbHsQm0Uo0Dr3J8Mw@mail.gmail.com>
To: Chris Wendt <chris-ietf@chriswendt.net>
Cc: SIPCORE <sipcore@ietf.org>, stir@ietf.org
Content-Type: multipart/alternative; boundary="000000000000bd82a305da83eef7"
X-Proofpoint-ORIG-GUID: d_Q89laxldMUyvonLjwPRT0Iih9dTqyN
X-Proofpoint-GUID: d_Q89laxldMUyvonLjwPRT0Iih9dTqyN
X-CU-OB: Yes
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.205,Aquarius:18.0.850,Hydra:6.0.425,FMLib:17.11.64.514 definitions=2022-03-18_14,2022-03-15_01,2022-02-23_01
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 suspectscore=0 bulkscore=10 mlxlogscore=956 spamscore=0 phishscore=0 malwarescore=0 priorityscore=1501 adultscore=0 impostorscore=10 mlxscore=0 clxscore=1015 lowpriorityscore=10 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.12.0-2202240000 definitions=main-2203180107
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/ZXlbpXIk81_V2Q5cLJKXwsuw1Ew>
Subject: Re: [stir] [sipcore] draft-ietf-sipcore-callinfo-04 (call-reason)
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 18 Mar 2022 20:24:33 -0000

I missed one important point of yours: It isn't quite clear what it means
to protect the call reason (or Subject, for that matter). The likelihood
that somebody downstream will insert a bogus call reason or Subject seems
very low - there's no real incentive. The carrier, for the reasons
mentioned, probably doesn't want anything to do with certifying the call
purpose as "signing" could be seen as endorsement. After all, the whole
point of STIR PaSSporT attestation is not just some random cryptographic
signature like in TLS, but indeed an attestation of veracity or
responsibility (for gateway attestation). The user is unlikely to have a
way to sign the call purpose on their own, except maybe for
enterprises, but this again seems not all that helpful.

(In the US, Section 230 and similar laws probably protect them from
liability, but this may not be true everywhere.)

As mentioned, this is different from signing RCD, which indeed has some
notion of attestation. ("I, as the originating carrier, attest that this is
the business address I have on file for this customer." or "I, enterprise,
attest that this is indeed my employee, Jane Talker.")

My general argument is: The call-purpose field raises all kinds of
operational issues, doesn't seem necessary for RCD, seems unlikely to be
used widely and can, if desired, be introduced as a new Call-Info purpose.
I think we should generally err on the side of minimalism - all of this
stuff is already complex enough. (See the 603/607/608 debate of what
happens otherwise...)

Henning

On Fri, Mar 18, 2022 at 10:16 AM Chris Wendt <chris-ietf@chriswendt.net>
wrote:

Beyond your point, but related and maybe just validation for me, do we want
> to protect call-reason as part of RCD?  I think we sort of said, yes why
> not protect/sign it because we view RCD as an extensible set of claims, as
> long as we make that a claim that is not part of the “rcd” claim that is
> specifically about the calling party identity, which we did with “crn”.
>
>

v2.8.7 | Report a Bug | By Email