IETF Logo Mail Archive

[stir] Re: [art] Re: Re: Re: For those of you who follow this kind of stuff.

Roman Shpount <roman@telurix.com> Wed, 08 October 2025 19:53 UTC

Return-Path: <roman@telurix.com>
X-Original-To: stir@mail2.ietf.org
Delivered-To: stir@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 7F7436FA539F for <stir@mail2.ietf.org>; Wed, 8 Oct 2025 12:53:28 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (1024-bit key) header.d=telurix.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AQtHqt99JH3M for <stir@mail2.ietf.org>; Wed, 8 Oct 2025 12:53:28 -0700 (PDT)
Received: from mail-lf1-x12f.google.com (mail-lf1-x12f.google.com [IPv6:2a00:1450:4864:20::12f]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 20C796FA5396 for <stir@ietf.org>; Wed, 8 Oct 2025 12:53:28 -0700 (PDT)
Received: by mail-lf1-x12f.google.com with SMTP id 2adb3069b0e04-58b037243d5so45624e87.1 for <stir@ietf.org>; Wed, 08 Oct 2025 12:53:28 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telurix.com; s=google; t=1759953207; x=1760558007; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=f0sh4y8ifpphIcXy/MP8D6SVq3YabIZCksKjuf1Axqg=; b=G2ZYBGA8ecJdfuLjic6Crv9p7mSkRr9iAcFscIJOh0U2Vg27ahq4SJF0tiiKI+bjbd jtOpbzU9FYYzlgldzXJ2DSYHie9qsoKytbh9F/A8JfDO8AYR5tDiueX8+UlbQG9y03nf 7K425L8uj5/xw2vjMnuzHW3tBjh2NSbezTGt4=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1759953207; x=1760558007; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=f0sh4y8ifpphIcXy/MP8D6SVq3YabIZCksKjuf1Axqg=; b=FmmNjFdFo+9futWlYQBNQmk8/5UeiVEjRu8HNfIgjaLj8Zy0BJGjAed/GENFuJYt5u j8oT/EjVTXoWS3kVpYOaYFFOpD7EKW/Whz0YvDMx3EeksPcrmrucX63wwP7wz2UBxc8Z S2x6p9+WFOhb9oPCISzHPfjASB1m5yOfr/JeBU4I0Cb7XyHQ/s16465O7YOaEUIca2UQ PKZ2XNHZgWN70qYVrWOLMOutOk6xYLVGBoBERNwmu8ml+zY5mela8JMQD8H56jyRylw4 JGgRpIQko9UQH+rFGOyFn03MEx+AbMLCNkKxOyBwYzLmkuuJTe9zT4lYVB5g8+ZGvrLa jfFA==
X-Forwarded-Encrypted: i=1; AJvYcCXc7ylu2/kKsre8UKgOIZVpR8+sn13mAST4AbTq2UfIyI1bOoUog9+Z8o0XVltRcHerycHo@ietf.org
X-Gm-Message-State: AOJu0YwM9Ov7pDS/v7P1fAhtMEd+aEnQSYg4qz9XKjl/7fvOpwaz+Ld2 em3KnQU5PTnaRWy39bR2pQz/c7UYRtKsl0XUr20dLziuPSLbNaq6RzbHQpaMj1ehbnjHLW0KJ8W 7mzkuQzM=
X-Gm-Gg: ASbGncu3/uFb3eQE9IIPjlCntPmIIAxnO5gVHdLUJObpjyz9L+aC9BGw7zJ5rvLWOK3 a8URv1IcfLTP0DAG3v9CAzJOfec6yJaCPC8MKvIKhqNo7Vh5tpZ+edQTI9ZtLjeT2kOjICLwUtZ gRV0rOCI/ylCriIYk/6Fh9dYeEhJe+10H2KoRheQZEOyfDYbUxif9TcAyLxtvHsV2PySscLMIN9 QkHAe+XY22SwbXPgcrLzWEozcYOOBveB7vlbWTfSfBRSyVxjbOEfqvjYIJ0T26rhkx2woqS9H7D O3GCzK3+Pd49niql4T8cRqRnE5EKxetle2lu+u5F0SoUu+1VfSPLqqMZY+uONUcDzUAh+6AxYHO MyBglykrwxWGtsBO82eo+AmbJx2whY/Uw3iBi9KAJvqu7zAPEsqiCLttn41SY4PWxwWgQQ8m+/D vP4TE9hqmT
X-Google-Smtp-Source: AGHT+IEVSFo6vrV5JCqVE/wRaTcR6RI1wp3VZuqfvLKmiwSZpQkR31HV9J11vTUmPeW1qUKlVWHOOQ==
X-Received: by 2002:a2e:be24:0:b0:365:253e:5352 with SMTP id 38308e7fff4ca-37609dfded6mr5934921fa.4.1759953206525; Wed, 08 Oct 2025 12:53:26 -0700 (PDT)
Received: from mail-lj1-f172.google.com (mail-lj1-f172.google.com. [209.85.208.172]) by smtp.gmail.com with ESMTPSA id 38308e7fff4ca-375f39f93d6sm22747271fa.18.2025.10.08.12.53.25 for <stir@ietf.org> (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Wed, 08 Oct 2025 12:53:26 -0700 (PDT)
Received: by mail-lj1-f172.google.com with SMTP id 38308e7fff4ca-36527ac0750so1418931fa.3 for <stir@ietf.org>; Wed, 08 Oct 2025 12:53:25 -0700 (PDT)
X-Forwarded-Encrypted: i=1; AJvYcCXSBWcxMm4rxZfFDood0mxUMbLIbojIz5rDL+qx8wL702iUVAiSU4dAQu4uFOTt/Df0pdm2@ietf.org
X-Received: by 2002:a05:651c:1b10:b0:36e:35c8:3dc4 with SMTP id 38308e7fff4ca-37609e46997mr12735841fa.21.1759953205631; Wed, 08 Oct 2025 12:53:25 -0700 (PDT)
MIME-Version: 1.0
References: <BDE3EA55-E1F7-4575-9251-874BD0CEFD37@shockey.us> <CAD5OKxsXX-+QcJCN_ymdO1XC_jEtbUcZq81oiPo7+DOnV2R+VA@mail.gmail.com> <49BE4C2A-DC24-4445-A296-A8E26689DA2A@shockey.us> <CAD5OKxvVwVyeF1AYY72rCEhFNkYuxB=D8EOt+1iDSB5LyMLwLQ@mail.gmail.com> <DM6PR13MB406762742DB674A370055AAB9AE1A@DM6PR13MB4067.namprd13.prod.outlook.com> <CAD5OKxsCDRA_TWfqBNQjpoACntFfqOS98cVHL8aWNR8YKvjR+Q@mail.gmail.com> <418A2C45-6060-4A86-8F47-E31A94F14318@shockey.us> <CAD5OKxs2MEmSpJNrKtM7WsQ-G02P8_fdoo7KP05pjUq+=enziQ@mail.gmail.com> <D0A89234-E57E-4F4E-8BD7-1E44954F39C0@shockey.us>
In-Reply-To: <D0A89234-E57E-4F4E-8BD7-1E44954F39C0@shockey.us>
From: Roman Shpount <roman@telurix.com>
Date: Wed, 08 Oct 2025 15:53:13 -0400
X-Gmail-Original-Message-ID: <CAD5OKxuJgjcHipbXgfk0Ngz=gEja-2f0s952_wQjX_7MB11peg@mail.gmail.com>
X-Gm-Features: AS18NWBVRRZ2okm-Wq_yim0-byH-d38f_2c5sjbYR-vMCZv8Efy5omw8ey5bK4I
Message-ID: <CAD5OKxuJgjcHipbXgfk0Ngz=gEja-2f0s952_wQjX_7MB11peg@mail.gmail.com>
To: Richard Shockey <richard@shockey.us>
Content-Type: multipart/alternative; boundary="000000000000a4a29a0640ab098f"
Message-ID-Hash: CA55L2SG4BYVST4HT7SLHGGXWKMUVFSL
X-Message-ID-Hash: CA55L2SG4BYVST4HT7SLHGGXWKMUVFSL
X-MailFrom: roman@telurix.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-stir.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Brett Nemeroff <Brett.Nemeroff@numeracle.com>, IETF STIR Mail List <stir@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [stir] Re: [art] Re: Re: Re: For those of you who follow this kind of stuff.
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/eDrSdU57I3xj8_4g-QS6D4i8HzY>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Owner: <mailto:stir-owner@ietf.org>
List-Post: <mailto:stir@ietf.org>
List-Subscribe: <mailto:stir-join@ietf.org>
List-Unsubscribe: <mailto:stir-leave@ietf.org>

On Wed, Oct 8, 2025 at 3:39 PM Richard Shockey <richard@shockey.us> wrote:

>  *From: *Roman Shpount <roman@telurix.com>
>
>
>
> Finally, if we intend to mandate the transmission of personally
> identifiable data with every call, we need to update SIP with a scalable
> and secure transport protocol. Most current carrier SIP implementations
> still use UDP.
>
>
>
> RS> Proof positive that you can’t fix stupid.
>
>
>
> What would you use as an alternative?
>
>
>
> RS> well TCP as a start. I just do not see the appetite for some new
> alternative. The Real Time Voice business is economically challenging at
> best and the people that could do this are either retired or 6 feet under.
> As a side bar I do get calls about RFC 6116 from time to time on the TN to
> URI issue.  OK fine. I get it, but to actually deploy it would probably
> require some form of DoH as the actual query protocol.  Its possible. I
> don’t necessarily advocate it but adding DoH to RFC 6116 could easily be
> handled by other national SDO as required by the regulators.
>
>
>

The problem with TCP or TLS, is that all the messages between two servers
should be sent over one connection. All messages from server to server go
over the same connection, and the responses to these messages can be sent
only over the same connection. If a server slows down processing one
message, no other messages are processed. If the TCP connection fails, a
bunch of responses get lost. If a single packet is dropped, the entire
queue of messages is delayed until the retransmission is received. This
does not work.

If you are interested, consider setting up two SIP proxies to send messages
only over a TLS link exhibiting 2-3% packet loss, and then run a load test.
Then do the same thing when sending messages over UDP. You would be amused
at what you see.
_____________
Roman Shpount

v2.35.0 | Report a Bug | By Email | System Status