Re: [stir] Call For Adoption of draft-peterson-stir-servprovider-oob

Piotr Gregor <> Tue, 25 August 2020 00:09 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id D5D273A0ADE for <>; Mon, 24 Aug 2020 17:09:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -0.198
X-Spam-Status: No, score=-0.198 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id eSD5DCPcHm9W for <>; Mon, 24 Aug 2020 17:09:25 -0700 (PDT)
Received: from ( [IPv6:2607:f8b0:4864:20::236]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 1DDB03A0ADD for <>; Mon, 24 Aug 2020 17:09:25 -0700 (PDT)
Received: by with SMTP id h3so10035624oie.11 for <>; Mon, 24 Aug 2020 17:09:25 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=pF8xpqM6TxpDkAVCOvkPm9JvZLjUL0zKosBzmh9J1hU=; b=dqdFKKzefKh/V1ORie+iiVeuEx7hCFQBzZg/I0YOeEg3JEE4HOqFwZsu8mVSAipnHy dJ3z+9LmHiT5RCsn2b0cTrctO0eRU5A/KL4nopSVEocY3u5ghJb2DGVOllh/WqLtvC0W 27CfPg+Ow3mwDoauijWwehRdBoKmhfr5odj6Y=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=pF8xpqM6TxpDkAVCOvkPm9JvZLjUL0zKosBzmh9J1hU=; b=VcAzIpuyP5eFW+q++eaQq6FNUsnMACrSc6QkJoTRTsjG/AyFtEVHyvtXImmNDaMQDy LiqNEYgwbTy5L6rmWRM34y02Sqgt5UWu7Cw67Yd5g2/u8RIMEvq2XIcoR0ZG0gt4vp+p Kxl30Wk21uS8/8F2/Q4mMwgr0k/h2P1kMVCcPKq6h3OUwvNBHrX68Qjh+h4sVhKcE8Hv n8rOANux9YTGSaQCmwB+gKTjjq19WDMvb0iwVkWLOcbVXEl9KIvfClijJnpvOenhVhcf cLJdjvhq6aTrEntDKXQSjadKqIkbsFvvlw+tYWCAYdDQLq+/dNXXOy/cJjD2B85GlTGf PU3A==
X-Gm-Message-State: AOAM530PMbdTrc+IE+PXt/xTJ+agEKNZisCi9Y8Ru3ju7v//p4AJ4oa9 ChWnP/xCPD5p+q1XImBNoCuxZlsCrpB9T0Ms5ZkPYGj1iQjloNiaz0Fdxu6hfutZfVZBQETaGTp 2hgZPFhwSeFoZLw==
X-Google-Smtp-Source: ABdhPJyizWcl10qyXjcXZezDEAdxJSCBcfHM4vf7FgXBNgmaR3fzjRUOs+cmX4vCULM5PEDdtkk8aQnR20OFoshkidI=
X-Received: by 2002:aca:c0c1:: with SMTP id q184mr1280327oif.56.1598314164332; Mon, 24 Aug 2020 17:09:24 -0700 (PDT)
MIME-Version: 1.0
References: <> <> <> <> <>
In-Reply-To: <>
From: Piotr Gregor <>
Date: Tue, 25 Aug 2020 01:08:48 +0100
Message-ID: <>
To: Russ Housley <>
Cc: IETF STIR Mail List <>,,
Content-Type: multipart/alternative; boundary="00000000000001467d05ada884a0"
Archived-At: <>
Subject: Re: [stir] Call For Adoption of draft-peterson-stir-servprovider-oob
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Tue, 25 Aug 2020 00:09:27 -0000

I believe there is an error in draft-ietf-stir-oob-07, here in section 9 it
is said that call originates for destination 2.222.555.2222
but then appears in places I highlighted:

9 <>.
Example HTTPS Interface to the CPS
   Assume that an authentication service has created the following
   PASSporT for a call to the telephone number 2.222.555.2222

   Through some discovery mechanism (see Section 10
<>), the
   service discovers the network location of a web service that acts as
   the CPS for 2.222.555.2222.

   Having concluded the numbered steps in Section 8.1
   acquiring any token (per Section 6.1
needed to store the PASSporT at
   the CPS, the authentication service then stores the encrypted

Rescorla & Peterson    Expires September 10, 2020              [Page 20]


             STIR Out-of-Band                  March 2020

      POST /cps/2.222.555.2222/ppts HTTP/1.1

   The web service assigns a new location for this encrypted PASSporT in
   the collection, returning a 201 OK with the location of


->>>>>>>>>>>>> should be /cps/2.222.555.2222/ppts/ppt1

Now the authentication service can
   place the call, which may be signaled by various protocols.  Once the
   call arrives at the terminating side, a verification service contacts
   its CPS to ask for the set of incoming calls for its telephone number


->>>>>>>>>>>>> should be 2.222.555.2222

GET /cps/2.222.555.2222/ppts Host: This returns to the
verification service a list of the PASSporTs currently in the collection,
which currently consists of only /cps/


->>>>>>>>>>>>> should be /cps/2.222.555.2222/ppts/ppt1

  The verification service then sends a
   new GET for /cps/2.222.555.2222/ppts/ppt1/ which yields:




  *|*  Ask me about SignalWire Work <>, 
our new digital office alternative.