IETF Logo Mail Archive

Re: [stir] Making STIR SIP messages smaller

Roman Shpount <roman@telurix.com> Tue, 13 April 2021 21:14 UTC

Return-Path: <roman@telurix.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7E4203A0E11 for <stir@ietfa.amsl.com>; Tue, 13 Apr 2021 14:14:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=telurix-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IbuEGMztFViW for <stir@ietfa.amsl.com>; Tue, 13 Apr 2021 14:14:49 -0700 (PDT)
Received: from mail-ot1-x332.google.com (mail-ot1-x332.google.com [IPv6:2607:f8b0:4864:20::332]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6CBAF3A0E0E for <stir@ietf.org>; Tue, 13 Apr 2021 14:14:49 -0700 (PDT)
Received: by mail-ot1-x332.google.com with SMTP id w21-20020a9d63950000b02901ce7b8c45b4so17416022otk.5 for <stir@ietf.org>; Tue, 13 Apr 2021 14:14:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telurix-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=3e4PJfkLcS9OWygOyuMF9lYK+Rtf1OmNlEQMRF1+8Js=; b=qW7bFuxgws3LR7XN7hzv7eHmVzA2ffRgam3jOYWbJS+vM9LJKmqWJ9CSYh4TuOFU8l lDX5dppPXSOK8/q7r5oyUokvvjURMBvsJen62ZG9lqnIsyUrPcus/P3tHb0AEtT1S13q xOBK1PzJ0Lv/3kK5BfPpc3WPICXUGyvCWUrMHEMB78mIRrWD5iOeSrh0GI0KfWzABZH3 FAwaZJRvuGeNhLQhPhzUtkysPLXLhCcu8WUg/ThPXIlLzd3mUxqinaxti+gQzGb6gi+z 3EFa8BRq9UnVryodCtMNRddV4IXWkU9NohIhq7gLiGQe8R5U0RZn4EXc9bUg2wS91hWv kE8A==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=3e4PJfkLcS9OWygOyuMF9lYK+Rtf1OmNlEQMRF1+8Js=; b=mvFLaJndZWSqm4hvOWuuqvbwrZUY2NckLznJQISmQPk6HBchIyDOmBrjL/BNuCCRSh 7locRYZfhrpeIH4TDQnIPIvaibStb/JUEjmqxVTVvMGXPVq0uoYaERLnShHejkYs6QxK QO7+xNiosGPo1kwUF59k39MdVCGTxY3+yNAv75uGKt0FCLsgcNU7CAdMC5k5X0xbmVRA aPyKRniKx02bqvT/yW+ik25BNnNMnBl2+tMdccQ9SkCJuO7h94q7FEL/sNlWA46eQfDh Hsz0auQYEGFDXvvzRSxQgKy6NftkuJhWZM9ZHowQMuO1ZyhXMUa7O/KL7wwoY8E8X980 cWlg==
X-Gm-Message-State: AOAM531mwU+JOLm0Sc4TnMPabdaXw+FTaHIQu5AN0UtQZnJnuyCVclVg I1SNHQtpU54OkpEgeBUkvCyX3+5yhI1A5Q==
X-Google-Smtp-Source: ABdhPJwHRdIQdG7SgtRRnySMuT/qRvjRCuzzEoj7JBPgHh7LDpY1uFFWBqNLN/pzhbczftLOnG2VHg==
X-Received: by 2002:a9d:4e1a:: with SMTP id p26mr29135013otf.202.1618348487751; Tue, 13 Apr 2021 14:14:47 -0700 (PDT)
Received: from mail-ot1-f47.google.com (mail-ot1-f47.google.com. [209.85.210.47]) by smtp.gmail.com with ESMTPSA id y4sm243780oia.53.2021.04.13.14.14.46 for <stir@ietf.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Tue, 13 Apr 2021 14:14:47 -0700 (PDT)
Received: by mail-ot1-f47.google.com with SMTP id w21-20020a9d63950000b02901ce7b8c45b4so17415971otk.5 for <stir@ietf.org>; Tue, 13 Apr 2021 14:14:46 -0700 (PDT)
X-Received: by 2002:a9d:628d:: with SMTP id x13mr28470952otk.19.1618348486463; Tue, 13 Apr 2021 14:14:46 -0700 (PDT)
MIME-Version: 1.0
References: <adc8bd10-a04d-aff5-e03f-183f0d59c22c@petit-huguenin.org> <CAD5OKxvqYSRjaA_eR=nX4sNgTbAtQ3dSqqgAe0-y9EzbA-dRug@mail.gmail.com> <AM0PR07MB386063A2162B5C07319225D393739@AM0PR07MB3860.eurprd07.prod.outlook.com> <CAD5OKxuyT4bmNBYgSMN-9M-c1Tr=gO1rQAg1D7xGSYx=bP9K3A@mail.gmail.com> <5308A309-85DC-4440-ABE9-6C1EEB4E0FEE@chriswendt.net> <CAD5OKxsRh5pgYbc6ULL2c7nCUuAfQiM=r78vxkd0WWg0veDkjA@mail.gmail.com> <E0562367-B7E8-4935-A71A-60D2C105F850@chriswendt.net> <BN6PR11MB39211A0A9BB35EB34E1789C599709@BN6PR11MB3921.namprd11.prod.outlook.com> <19194256-B61E-47D6-B1F6-5317F2F7BE90@chriswendt.net> <BN6PR11MB3921F5DBEA3719F5DB0C31BC99709@BN6PR11MB3921.namprd11.prod.outlook.com> <CAD5OKxsswce0vHSZdc1UYS6ie2D7ut6ZDmc8MUX7Jnzyim9utQ@mail.gmail.com> <AM0PR07MB3860C3C820955494240B8FE0934F9@AM0PR07MB3860.eurprd07.prod.outlook.com> <CAHBDyN7SuuKb7kKGa1NN9rSpZ1s+wo4GVJq7DjRDt8UbaSHYrA@mail.gmail.com> <CAD5OKxugVqbw4s26Cixe30G3-5QaLLkyvn3L0j+QYfinVaf05g@mail.gmail.com> <27B6DE19-FD81-4204-8E8B-9E610A11884C@chriswendt.net>
In-Reply-To: <27B6DE19-FD81-4204-8E8B-9E610A11884C@chriswendt.net>
From: Roman Shpount <roman@telurix.com>
Date: Tue, 13 Apr 2021 17:14:34 -0400
X-Gmail-Original-Message-ID: <CAD5OKxvX+MWkPwX0YYqJ_B=5E45Qr3Bm-j1oaUYAKDs0yyNXRQ@mail.gmail.com>
Message-ID: <CAD5OKxvX+MWkPwX0YYqJ_B=5E45Qr3Bm-j1oaUYAKDs0yyNXRQ@mail.gmail.com>
To: Chris Wendt <chris-ietf@chriswendt.net>
Cc: Mary Barnes <mary.ietf.barnes@gmail.com>, Christer Holmberg <christer.holmberg=40ericsson.com@dmarc.ietf.org>, Alec Fenichel <alec.fenichel@transnexus.com>, Marc Petit-Huguenin <marc@petit-huguenin.org>, "stir@ietf.org Mail List" <stir@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000a8972c05bfe11e1f"
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/_oq1ajEFtUd95cTHMoOerezlI8c>
Subject: Re: [stir] Making STIR SIP messages smaller
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 13 Apr 2021 21:14:55 -0000

Hi Chris,

There are different types of people who participate in the VoIP market.
There are large phone service providers who use equipment from large
vendors and generally standard compliant (however, this does not mean SIP
TCP works for them, but it works most of the time). You have other vendors,
which are small VoIP operators using either open source or equipment from
smaller companies. They do not participate in VoIP interops, do not follow
the standards, and generally rely on their vendors to provide working
equipment. These are the people who are affected. They also often
interconnect over the public internet, making the problem with fragmented
UDP worse for them.

I know that other headers make the SIP INVITE message larger, but for the
US PSTN call coming from a traditional SIP trunk, the INVITE size is still
around 1000 bytes. Adding Identity header makes it 1600 bytes. The smaller
customers are just now dealing with the interop when larger carriers switch
on the Identity, and things are starting to fail.

The fact that SIP over the reliable transports was badly designed in
RFC3261 makes the problem worse. For some reason, RFC3261 assumed that
sending INVITE over the reliable channel does not require retransmits and
that you can send responses to INVITE over the address in VIA. Both
assumptions are wrong and cause implementation issues. Essentially UDP was
tested more, so it is more stable. The way Identity is defined, it causes
transport to switch to TCP (or fragmented UDP), even though there is no
real reason for this to implement the desired functionality. All of this
results in my company spending time tracing call failures back to
origination.
_____________
Roman Shpount


On Tue, Apr 13, 2021 at 4:14 PM Chris Wendt <chris-ietf@chriswendt.net>
wrote:

> Would be good to understand better why, i have not heard that feedback
> from the STIR/SHAKEN community lately or maybe folks have given up
> complaining :)  While there was much talk about it maybe 2-3 years ago,
> those conversations have been pretty quiet as of late. As far as i’m aware
> much of the equipment both commercial and open source and deployments have
> adapted and adjusted, but maybe there is parts of the eco-system that
> haven’t gotten there yet.
>
> -Chris
>
> On Apr 13, 2021, at 1:54 PM, Roman Shpount <roman@telurix.com> wrote:
>
> Unfortunately, the message increase caused by the Identity header causes a
> call failure rate increase of at least a few percent. There is a
> substantial number of deployments affected by this and unlike things like
> History-Info, this feature is now required by law.
> _____________
> Roman Shpount
>
>
> On Tue, Apr 13, 2021 at 1:50 PM Mary Barnes <mary.ietf.barnes@gmail.com>
> wrote:
>
>> Yeah - like nearly 20 years ago when we added headers like History-Info.
>>  And, really if you want to use a text based protocol, you surely can't
>> have small message sizes as a design priority.
>>
>> On Tue, Apr 13, 2021 at 4:40 AM Christer Holmberg <christer.holmberg=
>> 40ericsson.com@dmarc.ietf.org> wrote:
>>
>>>
>>>
>>> >I agree that we need to figure out a way to make Identity headers
>>> smaller. As it stands right now, the Identity header with "shaken" PASSporT
>>> type adds around 600 bytes to an INVITE message.
>>>
>>> >This makes typical SIP INVITE messages go from around 1K in size to
>>> 1.6K, which is bigger than the UDP MTU.
>>>
>>>
>>>
>>> With or without Identity, didn’t that ship sail a long time ago? :)
>>>
>>>
>>>
>>> Regards,
>>>
>>>
>>>
>>> Christer
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> On Mon, Apr 12, 2021 at 5:39 PM Alec Fenichel <
>>> alec.fenichel@transnexus.com> wrote:
>>>
>>> I guess what I am trying to say is that I think we should remove ppt
>>> from the examples because as you say, people tend to code to examples and
>>> smaller Identity headers would be ideal.
>>>
>>>
>>>
>>> I don’t mean to hijack this thread, but I have been meaning to bring
>>> this up anyways and it is related. Is there a reason I’m just overlooking
>>> for requiring the “info” parameter when a full-form PASSporT is used? If
>>> not, can we make it optional? The reason I ask is that with OOB, the
>>> transit provider receives a PASSporT out-of-band and then needs to
>>> construct an Identity header. Because of the “info” parameter requirement,
>>> the transit provider must decode the PASSporT in order to determine the
>>> “info” parameter. This is the only reason that a transit provider needs to
>>> decode the PASSporT. This isn’t difficult so it doesn’t really matter, but
>>> I figured I’d ask about potentially making the “info” parameter optional.
>>> Also, it makes the Identity header smaller which is always a good thing.
>>>
>>>
>>>
>>> Sincerely,
>>>
>>>
>>>
>>> Alec Fenichel
>>>
>>> Senior Software Architect
>>>
>>> alec.fenichel@transnexus.com
>>>
>>> +1 (407) 760-0036
>>>
>>> TransNexus
>>>
>>>
>>>
>>> _______________________________________________
>>> stir mailing list
>>> stir@ietf.org
>>> https://www.ietf.org/mailman/listinfo/stir
>>>
>>
>

v2.23.0 | Report a Bug | By Email