[stir] IETF#101: STIR minutes (Christer)

Christer Holmberg <christer.holmberg@ericsson.com> Mon, 26 March 2018 10:40 UTC

Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: stir@ietfa.amsl.com
Delivered-To: stir@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id 86A361242F7 for <stir@ietfa.amsl.com>; Mon, 26 Mar 2018 03:40:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.32
X-Spam-Status: No, score=-4.32 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id P6ISxgoTKKRP for <stir@ietfa.amsl.com>; Mon, 26 Mar 2018 03:40:04 -0700 (PDT)
Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 42B75120713 for <stir@ietf.org>; Mon, 26 Mar 2018 03:40:04 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/simple; q=dns/txt; i=@ericsson.com; t=1522060801; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:Cc:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=nkcq4W2I9IaU1Im3EROorwvt/Iv0RIMRK4KctEeS4uA=; b=FfHTKOHpxkdfxPlxM9Kd16zSigFrXLVTMvxNVimFqjeWIK5r2w+T0Lc1X/g8zEN7 rFtecCj3SLmoUgf3waxK6L3G1LU8n9A3KvgjkkQ0Gz5m07pXwKhkg0nFZtMuqNnL ehFR1XhYjmuvloJquPXtmBRbYcOEU9Qps327kmc027M=;
X-AuditID: c1b4fb30-44bff7000000197d-23-5ab8ce019b05
Received: from ESESSHC006.ericsson.se (Unknown_Domain []) by sesbmg22.ericsson.net (Symantec Mail Security) with SMTP id A8.C9.06525.10EC8BA5; Mon, 26 Mar 2018 12:40:01 +0200 (CEST)
Received: from ESESSMB109.ericsson.se ([]) by ESESSHC006.ericsson.se ([]) with mapi id 14.03.0382.000; Mon, 26 Mar 2018 12:40:01 +0200
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: "stir@ietf.org" <stir@ietf.org>, "stir-chairs@ietf.org" <stir-chairs@ietf.org>
Thread-Topic: IETF#101: STIR minutes (Christer)
Thread-Index: AQHTxO7Kl54eMXG+eUGxF0LL6flnfg==
Date: Mon, 26 Mar 2018 10:40:00 +0000
Message-ID: <D6DEA8E9.2D164%christer.holmberg@ericsson.com>
Accept-Language: en-US
Content-Language: en-US
user-agent: Microsoft-MacOutlook/
x-originating-ip: []
Content-Type: multipart/alternative; boundary="_000_D6DEA8E92D164christerholmbergericssoncom_"
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFmpkkeLIzCtJLcpLzFFi42KZGbFdRZfx3I4og5P9ihbPdqxntVi+dhuT A5PHkiU/mQIYo7hsUlJzMstSi/TtErgyzvy+x17QkFqxbeVR9gbGQ8FdjJwcEgImEhfPTWDr YuTiEBI4wiixtK+DGSQhJLCEUaLxtFsXIwcHm4CFRPc/bZCwiECIxNapB9lBbGEBLYmW/its EHF9ifc9q5khbD2J5i/XwGwWAVWJt2/PMoLYvALWEhfmrACrZxQQk/h+ag0TiM0sIC5x68l8 Joh7BCSW7DnPDGGLSrx8/I8VxBYFmrnhxG12kHMkBJQkbm9wgmhNkHj+7RETxHhBiZMzn7BM YBSahWTqLCRls5CUQcQNJN6fm88MYWtLLFv4GsrWl9j45SwjhG0tMenULiZkNQsYOVYxihan FiflphsZ6aUWZSYXF+fn6eWllmxiBEbMwS2/DXYwvnzueIhRgINRiYd39dEdUUKsiWXFlbmH GCU4mJVEePnmA4V4UxIrq1KL8uOLSnNSiw8xSnOwKInzWvhtjhISSE8sSc1OTS1ILYLJMnFw SjUwxh07uO7sts8CH3jnMM4+NWFltmjyuoiIC5UC0yeELF82jyNsJeOmKfU90lnrffk9r8Sd tfbSEF8bc5ZJxdW2teG2TJXn3yUfeh6captQef+43UwWhfBrn8zEc4xez310rPDb9J6YVTkc RrUb9NTTGV5/uXT0UWbPu8zfs9zUE/5xlhoKdcpsUWIpzkg01GIuKk4EAIkQG3WUAgAA
Archived-At: <https://mailarchive.ietf.org/arch/msg/stir/tI1dJUYPFiEvYIHBCmsBiVvQ0GE>
Subject: [stir] IETF#101: STIR minutes (Christer)
X-BeenThere: stir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Secure Telephone Identity Revisited <stir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stir>, <mailto:stir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/stir/>
List-Post: <mailto:stir@ietf.org>
List-Help: <mailto:stir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stir>, <mailto:stir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 26 Mar 2018 10:40:05 -0000


Below are my minutes from the IETF#101 STIR session.

Note that there is one OUTCOME with “????”, regarding whether we should allow Identity in 3xx responses, because I missed what was decided. Please fill in :)




Topic: PASSporT Extension for Resource-Priority Authorization
Presenter: Martin Dolly
Draft: draft-ietf-stir-rph-03

Status update.

An issue whether ppt values should be quoted or not. Both ways are used, and we should agree on a common way. See 'PASSporT Extension for Divert' minutes.

NEXT STEP: Submit new version of draft.


Topic: PASSporT Extension for SHAKEN
Presenter: Chris Wendt
Draft: draft-ietf-stir-passport-shaken-01

Status update.

Indicated that some minor changes are still to be done, but otherwise the draft is ready to be moved forwarded. Nobody objected to moving the draft forward.

NEXT STEP: Submit new version of draft.


Topic: PASSporT Extension for Divert
Presenter: Jon Peterson
Draft: draft-ietf-stir-passport-divert-02

ISSUE: It was suggested to allow Identity in 3xx responses.

ISSUE: It was discussed on whether we should deprecate the usage of nested claims for the in-band solution.
It was indicated that the total size of an INVITE request is not a problem (the size will be large even without Identity header fields), but a large size of a single header field can cause problems.
It was indicated that we should use the same mechanism for in-band and out-of-band (nesting is needed for out-of-band).
It was indicated that, if nesting is used, it needs to be clarified how nesting is done when there are multiple incoming Identity header fields, if e.g., all of them are to be nested.
OUTCOME: Nesting will stay.

ISSUE: It was discussed whether we should define the order of Identity header fields in a SIP message, when multiple header fields are included.
OUTCOME: No need to define order of Identity header fields.

ISSUE: It was discussed whether we should define the order of claims within a PASSporT, as required by RFC 8225.
OUTCOME: No need to define anything additional, as RFC 8225 already defines how to order the claims as part of the serialisation.

ISSUE: Should we make 'opt' independent of 'div', so nesting can be used with other PASSporT extensions?
OUTCOME: Will allow 'opt' with other extensions, if needed in future.

ISSUE: Should ppt= values be quoted or not?
OUTCOME: Keep quoting mandatory.

It was indicated that more reviewers of the draft are needed.

NEXT STEP: Submit new version of the draft. WGLC once the next version of the draft has been submitted.


Topic: Out-Of-Band (OOB)
Presenter: Jon P
Draft: draft-ietf-stir-oob-02

Presentation of changes:

- More generic guidance for validating PASSportTS against calls without SIP.

- Mocked up a REST interface for a CPS. Initial work, more work is needed.

It was indicated that there a need to specify at least one CPS discovery mechanism (while realising that service discovery in general is a complex and much-studied topic).

NEXT STEP: Work will continue.


Topic: Registry for Country-Specific STIR Root Certificates
Presenter: Eric B (remote)
Draft: draft-burger-stir-iana-cert-00

There was much concern about the suggestion. It would come with a big liability and huge responsibility on IANA. It was also unclear what the Expert Reviewer is expected to do.

It was indicated that, if such registry is to be created, it should be done e.g., by ITU-T. While to problem might be clear, it is not the within the expertise of IETF or IANA.

It was indicated that, even if a registry exist, people will not rely on the information and will anyway do vetting.

NEXT STEP: No decision.


Topic: Connected Identity for STIR
Presenter: Jon P
Draft: draft-peterson-stir-rfc4916-update-00

"STIR backwards". Send an UPDATE request in the backwards direction while the call is being established.

NEXT STEP: No decision (discussions will continue).


Topic: Callback
Presenter: Jonathan R
Draft: draft-rosenberg-stir-callback-00

It was indicated that the mechanism should be seen as a complement to RFC 8226.

It was indicated that the callback INVITE will often reach a PSTN gateway that do not support the Require header field value, which would trigger a call establishment in the PSTN network.

It was indicated that perhaps OOB could be used for this.

NEXT STEP: No decision.


Topic: SIPcoin
Presenter: Jonathan R
Draft: draft-rosenberg-stir-sipcoin-00

Short presentation of the mechanism.

It was clarified the a blockchain is not needed: an entity will only do work before the call, and then show proof of the work when establishing a call.

Interested parties were invited to a lunch meeting, where further discussions could take place.

NEXT STEP: No decision.