IETF Logo Mail Archive

Re: [stir] current draft charter - ENUM and databases

Hadriel Kaplan <hadriel.kaplan@oracle.com> Mon, 17 June 2013 21:03 UTC

Return-Path: <hadriel.kaplan@oracle.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DFE2521F9DCC for <stir@ietfa.amsl.com>; Mon, 17 Jun 2013 14:03:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.966
X-Spam-Level:
X-Spam-Status: No, score=-5.966 tagged_above=-999 required=5 tests=[AWL=-0.567, BAYES_00=-2.599, J_CHICKENPOX_33=0.6, J_CHICKENPOX_34=0.6, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SknR5LQobwVs for <stir@ietfa.amsl.com>; Mon, 17 Jun 2013 14:03:31 -0700 (PDT)
Received: from userp1040.oracle.com (userp1040.oracle.com [156.151.31.81]) by ietfa.amsl.com (Postfix) with ESMTP id 7ED9121F9D72 for <stir@ietf.org>; Mon, 17 Jun 2013 14:03:31 -0700 (PDT)
Received: from acsinet21.oracle.com (acsinet21.oracle.com [141.146.126.237]) by userp1040.oracle.com (Sentrion-MTA-4.3.1/Sentrion-MTA-4.3.1) with ESMTP id r5HL3KM5016396 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Mon, 17 Jun 2013 21:03:21 GMT
Received: from aserz7021.oracle.com (aserz7021.oracle.com [141.146.126.230]) by acsinet21.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id r5HL3MCH009202 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 17 Jun 2013 21:03:23 GMT
Received: from abhmt107.oracle.com (abhmt107.oracle.com [141.146.116.59]) by aserz7021.oracle.com (8.14.4+Sun/8.14.4) with ESMTP id r5HL3MIk009194; Mon, 17 Jun 2013 21:03:22 GMT
Received: from [10.1.21.23] (/10.5.21.23) by default (Oracle Beehive Gateway v4.0) with ESMTP ; Mon, 17 Jun 2013 14:03:22 -0700
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 6.5 \(1508\))
From: Hadriel Kaplan <hadriel.kaplan@oracle.com>
In-Reply-To: <CDE4A7AC.21C25%jon.peterson@neustar.biz>
Date: Mon, 17 Jun 2013 17:03:20 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <A32D7549-A3AF-4EF0-8EFA-30B79A6EEFAC@oracle.com>
References: <CDE4A7AC.21C25%jon.peterson@neustar.biz>
To: "Peterson, Jon" <jon.peterson@neustar.biz>
X-Mailer: Apple Mail (2.1508)
X-Source-IP: acsinet21.oracle.com [141.146.126.237]
Cc: "stir@ietf.org" <stir@ietf.org>, Henning Schulzrinne <hgs@cs.columbia.edu>
Subject: Re: [stir] current draft charter - ENUM and databases
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/stir>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Jun 2013 21:03:41 -0000

On Jun 17, 2013, at 2:58 PM, "Peterson, Jon" <jon.peterson@neustar.biz> wrote:

> 
> I agree it would be great to find a technical approach to this that
> simplified business relationships, but I don't think we can depend on
> technical standards to restrain policy. That would be like stipulating
> that intermediaries can't change RFC3261 request bodies in order to - but
> never mind.

I don't think that analogy holds.  Such a stipulation would fail because the guys who run the SIP networks themselves *must* change the request bodies to get things to actually *work*, for their users/customers.  Even if you think they change bodies to maintain existing charging practices: this caller-id verification thing is completely new, which is a horse of a different color.  There are no existing charging practices for this currently.

I believe the closest things would be:
1) CNAM, for which typically the called party pays.  I don't think the *carriers* want it to be that way, but it is that way.  This STIR work could end up being quite disruptive to the CNAM providers, because one could imagine a means of providing CNAM using the STIR infrastructure and cutting out the CNAM providers.  But to brutal about this: we don't need the CNAM providers to buy into this STIR work, so we don't need to care if it impacts their business or not.

2) NPAC-type databases, or anything already holding a bunch of E.164-based record entries.  I don't know what the business model is for them - obviously you would know a crapload more about that than I would.  I don't *think* it would be disruptive to make *only* E.164 caller-id certificates in the NPAC publicly and freely accessible for retrieval.  Maybe it would be disruptive.  But again to be brutal: we don't even really need the NPAC-type databases, although it would sure make things a heck of a lot easier.  But ultimately all we need is for the carriers to want to do this, with some model they're ok with.


> It is ingenious to turn the inability to authenticate queries
> to the DNS into a virtue in this regard, but I'm still not sure I
> understand how this model would really prevent middlemen from charging if
> they wanted to, short of recreating e164.arpa as some comparable public
> golden root. 

I am indeed claiming/assuming we do create a golden root if we do this DNS thing.  I don't care if it's cid.arpa, cid.sipforum.org, a new gTLD, or even hadriel.com. 

I didn't say it prevented middlemen - even just purely as a practical matter there will likely be middlemen to do the signing and verifying for mom&pop carriers, for example.  Or the CNAM provider might do the verifying function for their customer carriers.  They can charge their customers however they like, including on a per-query basis (e.g., private ENUM is already used for some CNAM providers today).

-hadriel

v2.23.0 | Report a Bug | By Email