Re: [Stox] SIPS URIs and SIP/XMPP gateways - WAS: review: stox-core-04

Peter Saint-Andre <stpeter@stpeter.im> Fri, 27 September 2013 16:14 UTC

Return-Path: <stpeter@stpeter.im>
X-Original-To: stox@ietfa.amsl.com
Delivered-To: stox@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7872A21E80FD for <stox@ietfa.amsl.com>; Fri, 27 Sep 2013 09:14:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.015
X-Spam-Level:
X-Spam-Status: No, score=-102.015 tagged_above=-999 required=5 tests=[AWL=-0.286, BAYES_00=-2.599, SARE_MLH_Stock1=0.87, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xYS-XxRKUjHD for <stox@ietfa.amsl.com>; Fri, 27 Sep 2013 09:14:34 -0700 (PDT)
Received: from stpeter.im (mailhost.stpeter.im [207.210.219.225]) by ietfa.amsl.com (Postfix) with ESMTP id 2CE5321E8050 for <stox@ietf.org>; Fri, 27 Sep 2013 09:14:34 -0700 (PDT)
Received: from ergon.local (unknown [128.107.239.233]) (Authenticated sender: stpeter) by stpeter.im (Postfix) with ESMTPSA id A61C2414CD; Fri, 27 Sep 2013 10:19:52 -0600 (MDT)
Message-ID: <5245AEE7.4010000@stpeter.im>
Date: Fri, 27 Sep 2013 10:14:31 -0600
From: Peter Saint-Andre <stpeter@stpeter.im>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.8; rv:17.0) Gecko/20130801 Thunderbird/17.0.8
MIME-Version: 1.0
To: Robert Sparks <rjsparks@nostrum.com>
References: <E44893DD4E290745BB608EB23FDDB7620A0CE34A@008-AM1MPN1-042.mgdnok.nokia.com> <52458C47.1010702@nostrum.com>
In-Reply-To: <52458C47.1010702@nostrum.com>
X-Enigmail-Version: 1.5.2
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: salvatore.loreto@ericsson.com, fluffy@cisco.com, stox@ietf.org, Jon Peterson <jon.peterson@neustar.biz>, Markus.Isomaki@nokia.com
Subject: Re: [Stox] SIPS URIs and SIP/XMPP gateways - WAS: review: stox-core-04
X-BeenThere: stox@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: SIP-TO-XMPP Working Group discussion list <stox.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/stox>, <mailto:stox-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/stox>
List-Post: <mailto:stox@ietf.org>
List-Help: <mailto:stox-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/stox>, <mailto:stox-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Sep 2013 16:14:38 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 9/27/13 7:46 AM, Robert Sparks wrote:
> (Adding Jon)
> 
> Peter - is there nothing in XMPP that lets a client say "I want
> this to use secure transports only - have it fail rather than use
> an insecure transport anywhere along its delivery path?"

No. That doesn't mean we don't need it (although in general people
have thought we *wouldn't* need it if we could just define an
end-to-end encryption method that solve all the relevant use cases).

> That's the primary property you should discuss. Without putting a
> lot of thinking into it, I suspect that if you _don't_ have a way
> to express that available (which is what I'm taking away from your
> last sentence), the right guidance in the document is to refuse to
> gateway a SIP request that expresses that requirement.

Indeed, that seems correct.

Thanks for the guidance.

Peter

- -- 
Peter Saint-Andre
https://stpeter.im/


-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.19 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQIcBAEBAgAGBQJSRa7mAAoJEOoGpJErxa2p6S4P/jaAJ4+xGEETfoibeB9TvWHp
WdYkNZRElevCJBBVQoR47r92paCBoIsTREKh59ImHTNfxRa6CUojUvPhyGNDZ9E5
qLbPUI1C9sBbn53Q7lJwfkgBDYlcBRiv06SipoGBuVJaHbgYtGKYaI/ZsmUAHqGn
CHT9BxlxZdYbgiS3pqwYPpunD9FiJ0/hXEA5/VchONJVh1PGL+/FX/c/UkOjZd3Z
ZSoGzwltwqgRshwxK92gMkvcmq87qgdYUFJxPXbzRj8BYpy92W92lThpBpK8Bh8W
RzwV8zBYppFea/SSBk8dnBZv27FJQ/Z1+q510zlcjEL0KIG582HfqsrJy1BELT9Q
ZbltLm4GSAzFqyIGRFE81Xh4PUXJx5TRXeIJa5aA2iornq8lpiJsEsANh9zbHASR
G8dACj45gLrL1k6hVsvCsNFjze4dUWSdtk1HCDqXSxkTpF280HleqCQ2wumNaiyp
zuMDt4MPq1Afv/E1sxCglkTT8n/9rpIxEGOVzsT9RDEnMR9VeH1dBk6vYbjJBbOp
j0Et24tb3DfGbwywLhu7HoyKxfroehx8MNaVt26ZeBUfX/XVpNOL7R1oUsV4s10Y
rVsNpiiWV1hgLny76hxS3371BIdVhuWKU8PQtdf6B+WsBpsL9v/X4mk7+9jkn+R8
MiV0YiTqHpLT2GZtJO1R
=/e37
-----END PGP SIGNATURE-----