IETF Logo Mail Archive

Re: [stir] OOB for Service Providers

"Gorman, Pierce A [CTO]" <Pierce.Gorman@sprint.com> Sun, 15 March 2020 19:14 UTC

Return-Path: <Pierce.Gorman@sprint.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DE6ED3A1AC0 for <stir@ietfa.amsl.com>; Sun, 15 Mar 2020 12:14:21 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SO0I2rkzYfF7 for <stir@ietfa.amsl.com>; Sun, 15 Mar 2020 12:14:20 -0700 (PDT)
Received: from NAM12-BN8-obe.outbound.protection.outlook.com (mail-bn8nam12on2105.outbound.protection.outlook.com [40.107.237.105]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9009A3A1AB8 for <stir@ietf.org>; Sun, 15 Mar 2020 12:14:19 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=Uu6irjM9Z7acMcMLgoLxAO0a6BNGE1NXEY2oA1vZxccUBcZ7xzyP3rDBKCB26EssDFUVbHh20M0LklpeH+GWLsM442vwuexG9jmUSVh3xRQm91ojygPDjn/RDD6lhDrGlrWPdl7fVF+9tWk1UTzslCfHsxMPIQMyeKftXnDAmSGsUThYq+6ZGNfqlw0fiByp4rs0CV5hGRBa9pHanON7IRmNlrKVpIg/LSXoQk320iv6pNiZaa8DsEgpKzorhhLxIe1FO4zFxcqTM+euI8gFsJarLaAoMgkFFttZIPFQezgVtz7H2Nn7GkCUtLIYMc5B6JJIPFt168AlxeFXNVP9VQ==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;bh=kKr5L7LrvvLm5gArD+ogf4ygpiAKKWS6th+mqYZOqUE=; b=aa9+rnCkNx8y/jPcsx5xPIpeRGVGHsUrlBIqZfkJ5l8QD4lxIJqC1IypAiQm1xNpJPl2CzoYobk1Dk96Zohhh7CMU/lVGgkfsTn0TXp6fPCKYS35MitHA3BznZIGG71a8ks3nBZTz99G/osu/mxqp89d9jTMsiQUuZxiR+lFMqRYd+Oi+H2uFp8CBf8Jw/VdJB50KunWxSWDFdDBZaBacBIkj+TJemmC975xmX77m4lp374tV8bKSGtmaQ3MBCmzO+yDM5r9e5hdB3mhuBRE7G0/JXzsf4Z3A76F7bI0wofPnR/CYEnEzigZClDaFqdqghbt8EPz84HMD52ADWCYcg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=sprint.com; dmarc=pass action=none header.from=sprint.com; dkim=pass header.d=sprint.com; arc=none
Received: from DM5PR05MB3289.namprd05.prod.outlook.com (2603:10b6:4:43::22) by DM5PR05MB3225.namprd05.prod.outlook.com (2603:10b6:3:d1::21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2835.12; Sun, 15 Mar 2020 19:14:11 +0000
Received: from DM5PR05MB3289.namprd05.prod.outlook.com ([fe80::cc18:3293:e0b9:c34a]) by DM5PR05MB3289.namprd05.prod.outlook.com ([fe80::cc18:3293:e0b9:c34a%7]) with mapi id 15.20.2835.003; Sun, 15 Mar 2020 19:14:11 +0000
From: "Gorman, Pierce A [CTO]" <Pierce.Gorman@sprint.com>
To: Richard Shockey <richard@shockey.us>, Jonathan Rosenberg <jdrosen@jdrosen.net>, "Peterson, Jon" <jon.peterson=40team.neustar@dmarc.ietf.org>
CC: "stir@ietf.org" <stir@ietf.org>
Thread-Topic: [stir] OOB for Service Providers
Thread-Index: AQHV+vwJ4RJ5DBJDZ0GmS4oFtrf6VqhKA4qQ
Date: Sun, 15 Mar 2020 19:14:11 +0000
Message-ID: <DM5PR05MB32891394AD6891EE6E2F959B89F80@DM5PR05MB3289.namprd05.prod.outlook.com>
References: <9B2AD795-CC46-44E4-A19D-2F708D217F2B@team.neustar> <CA+23+fGutMD9QPCnbHVqsuShYgK9GxGV0PJ_GERuoNzAXM9XuQ@mail.gmail.com> <BEB2E789-9C01-4E0D-BD8F-E9CDBA8C07F0@shockey.us>
In-Reply-To: <BEB2E789-9C01-4E0D-BD8F-E9CDBA8C07F0@shockey.us>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Pierce.Gorman@sprint.com;
x-originating-ip: [2605:a601:adf1:2b00:11cf:19a6:e052:95bb]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: 44e24363-1eba-46cc-f209-08d7c9150b40
x-ms-traffictypediagnostic: DM5PR05MB3225:
x-microsoft-antispam-prvs: <DM5PR05MB322504762C73C369C312967C89F80@DM5PR05MB3225.namprd05.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:10000;
x-forefront-prvs: 0343AC1D30
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(4636009)(376002)(346002)(396003)(39860400002)(136003)(366004)(199004)(7696005)(8936002)(316002)(2906002)(186003)(71200400001)(86362001)(9686003)(33656002)(76116006)(45080400002)(110136005)(6506007)(81156014)(966005)(53546011)(8676002)(55016002)(81166006)(478600001)(5660300002)(66556008)(52536014)(64756008)(66946007)(4326008)(66446008)(66476007); DIR:OUT; SFP:1102; SCL:1; SRVR:DM5PR05MB3225; H:DM5PR05MB3289.namprd05.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1;
received-spf: None (protection.outlook.com: sprint.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-ms-exchange-antispam-messagedata: zjm1QiGpyLiqHJO7oLQaCANaOpl/zk/0CKFD3TdhpKpd3au/wxsbUWVK+TX3kOcut05a6YL2usfADDm5LSh06W2TJu1zPVCGRgeei5m6w54iEOId6DR9iMhz9n/lEncC1v+iWtZ/FWbJpVMVYfDRIZpO6/V1GwFysl9FDUJNYcXY6Djm1NHGOxhXTMg0hFsHky92OzvPowdsMlVIlfwwPw==
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_DM5PR05MB32891394AD6891EE6E2F959B89F80DM5PR05MB3289namp_"
MIME-Version: 1.0
X-OriginatorOrg: sprint.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 44e24363-1eba-46cc-f209-08d7c9150b40
X-MS-Exchange-CrossTenant-originalarrivaltime: 15 Mar 2020 19:14:11.4677 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 4f8bc0ac-bd78-4bf5-b55f-1b31301d9adf
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: n6swiO6Rgo0o6xS4KsxYofVFtKq7b5sahn7/KeaN7quFVMMrG2djY5Y/Tn7X1970/V3PAfd+9oChJ2jnLc73JMg0stTTi5qmkMSrxSEdizk=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM5PR05MB3225
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/Ae3__6e-Q6nNNDzZ_tYlo1WHwGg>
Subject: Re: [stir] OOB for Service Providers
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 15 Mar 2020 19:14:23 -0000

The larger question is a good one and it’s difficult to answer, but my sense is the question can be asked in more simple euphemistic terms.  Is it better to apply a band-aid or a fork-lift?

My assumption is SHAKEN OOB will end up being fairly quickly deployable without a large and time-consuming upfront investment on behalf of the TDM-based service providers.

And, I don’t know what anybody else’s view is on consolidation, but I suspect 5G rural wireless broadband is going to dramatically re-paint the landscape, perhaps even before ICC is resolved.  i.e., a fork-lift may be the wrong tool.

Pierce


From: Richard Shockey <richard@shockey.us>
Sent: Saturday, March 14, 2020 2:02 PM
To: Jonathan Rosenberg <jdrosen@jdrosen.net>; Peterson, Jon <jon.peterson=40team.neustar@dmarc.ietf.org>
Cc: stir@ietf.org
Subject: Re: [stir] OOB for Service Providers


The larger question is whether OOB is worth anyone’s time or could we better spend our efforts encouraging more or perhaps even mandating SIP/IMS Interconnection.

From a purely regulatory perspective there are lots of perverse incentives in the US and Canadian systems to discourage SIP an encourage classic TDM.   The US Intercarrier Compensation regime is one example and ongoing dilemma and lack of consensus of which methodology does the industry prefer to handle number translations.  Yes I know..6116 vs the NPAC.

From where I sit that question is coming up more and more.  I certainly don’t object to exploring all the options here since there its clear some jurisdictions are going to have predominantly TDM networks for the foreseeable future.

—

Richard Shockey

Shockey Consulting LLC

Chairman of the Board SIP Forum

www.shockey.us<http://www.shockey.us>

www.sipforum.org<http://www.sipforum.org>

richard<at>shockey.us

Skype-Linkedin-Facebook –Twitter  rshockey101

PSTN +1 703-593-2683


From: stir <stir-bounces@ietf.org<mailto:stir-bounces@ietf.org>> on behalf of Jonathan Rosenberg <jdrosen@jdrosen.net<mailto:jdrosen@jdrosen.net>>
Date: Saturday, March 14, 2020 at 2:36 PM
To: "Peterson, Jon" <jon.peterson=40team.neustar@dmarc.ietf.org<mailto:jon.peterson=40team.neustar@dmarc.ietf.org>>
Cc: "stir@ietf.org<mailto:stir@ietf.org>" <stir@ietf.org<mailto:stir@ietf.org>>
Subject: Re: [stir] OOB for Service Providers

Thanks Jon - very interesting concept.

In order for this to work, a call originator needs to figure out which carrier's CPS to send the passport to, for a given dialed number. The draft proposes that this info can be obtained from the TNAuthList in the carriers certificate used to sign the cps advertisement. This presumes that terminating carriers are willing to actually enumerate the set of TNs they own in a certificate, and make this available to enterprises, contact centers or other entities which are going to place calls to those numbers.

I think the jury is still out on whether these certs will end up containing actual numbers and prefixes, as opposed to OCNs. Classic inbound STIR and OOB can work without number lists, whereas this draft requires the TN list in order to facilitate routing (i.e., identifying the terminating cps).

So - I think the key question is whether this routing is going to be feasible in practice or not.

Thx,
Jonathan R.

On Fri, Mar 13, 2020 at 5:04 PM Peterson, Jon <jon.peterson=40team.neustar@dmarc.ietf.org<mailto:40team.neustar@dmarc.ietf.org>> wrote:
So we'll all be sad not to meet in Vancouver this time, but given that we're scheduling a virtual meeting, I did want to give a pointer to a new draft:

https://tools.ietf.org/html/draft-peterson-stir-servprovider-oob-00

This draft works toward a more concrete protocol implementation of out-of-band STIR, for the case where a service provider (could be a carrier, large enterprise, or an OTT service) advertises a CPS that collects PASSporTs for calls that would terminate on its network. Because it is tightly coupled to the terminating side of the call, this flavor of CPS has a different security posture than a public CPS that is necessarily decoupled from call signaling entirely.

I know there is some talk out there about "OOB SHAKEN" these days, and to be clear, this is not an "OOB SHAKEN" draft - this looks at general tools that might ultimately support efforts to deliver SHAKEN out-of-band, but it does not limit its consideration of the problem space to the way that SHAKEN currently handles certification and signing. The plan is to deliver a mechanism that is applicable to a variety of potential policies in that regard..

If folks here are interested in working on this, let's discuss it a bit, and maybe find some agenda time for it.

Jon Peterson
Neustar, Inc.

_______________________________________________
stir mailing list
stir@ietf.org<mailto:stir@ietf.org>
https://www.ietf.org/mailman/listinfo/stir


--
Jonathan Rosenberg, Ph.D.
jdrosen@jdrosen.net<mailto:jdrosen@jdrosen.net>
http://www.jdrosen.net
_______________________________________________ stir mailing list stir@ietf.org<mailto:stir@ietf.org> https://www.ietf.org/mailman/listinfo/stir

v2.23.0 | Report a Bug | By Email