[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sip] media-security-requirements and lawful intercept

To: Dean Willis <dean.willis at softarmor.com>
Subject: Re: [Sip] media-security-requirements and lawful intercept
From: Paul Kyzivat <pkyzivat at cisco.com>
Date: Fri, 09 Nov 2007 07:55:35 -0500
Authentication-results: rtp-dkim-2; header.From=pkyzivat@cisco.com; dkim=pass ( sig from cisco.com/rtpdkim2001 verified; );
Cc: IETF SIP List <sip at ietf.org>, "Elwell, John" <john.elwell at siemens.com>, "Peterson, Jon" <jon.peterson at neustar.biz>, Dan Wing <dwing at cisco.com>
Dkim-signature: v=0.5; a=rsa-sha256; q=dns/txt; l=1217; t=1194612942; x=1195476942; c=relaxed/simple; s=rtpdkim2001; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=pkyzivat@cisco.com; z=From:=20Paul=20Kyzivat=20<pkyzivat@cisco.com> |Subject:=20Re=3A=20[Sip]=20media-security-requirements=20and=20lawful=20 intercept |Sender:=20 |To:=20Dean=20Willis=20<dean.willis@softarmor.com>; bh=Qe7NDe7LczFBmLkZbKBXoEvMmMQgXanf0zLxpubOCZ4=; b=ZVNzi2IaSIA2eN5ItlHMO+pzv2zUqDmehuj2e6PgfE1IaZJs85ioIbHPbKkA+6aLQq6g74Zf PQ2wET8fIJbbcl/mG5TBGAE+xmMzvI73M4cZD7+DSwClxZq8eCsPylQj;
In-reply-to: <D004C0CA-FD8D-4B82-8DBA-A6B036E63752@softarmor.com>
List-help: <mailto:sip-request@ietf.org?subject=help>
List-id: Session Initiation Protocol <sip.ietf.org>
List-post: <mailto:sip@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
References: <31D151A3D66E404AACBBB0247ACA54A7029C9E@STNTEXCH11.cis.neustar.com> <473389A1.5000008@cisco.com> <D004C0CA-FD8D-4B82-8DBA-A6B036E63752@softarmor.com>
User-agent: Thunderbird 2.0.0.6 (Windows/20070728)

Dean Willis wrote:

On Nov 8, 2007, at 4:11 PM, Paul Kyzivat wrote:
I guess we might have "can't say who you are talking with, but nobody can listen in". That in itself is of some utility.

And maybe with sip identity we have "somebody you trust says you are talking to X, and nobody can listen in to whoever you are talking to".

Right. But between "all" and "nothing" there's some middle ground: "Nobody who hasn't been authorized to do so by your regulated provider can listen in". This is the middle ground they're asking us to fill in.

Do we want to go there, or is it all-or-nothing?


Well, that is one of the issues isn't it?

I have mixed feelings whether the middle ground is any better and nothing.

So I don't know. But either way, I think these need to be turned into meaningful assertions that can be verified.

We have similar situations with callerid. There are a variety of mechanisms used to provide info that is presented as "callerid". These have a wide range of trustworthiness. I would like to have a way to determine the kind of assertion that goes with a callerid when it is displayed to me.

	Thanks,
	Paul


_______________________________________________
Sip mailing list  https://www1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors at cs.columbia.edu for questions on current sip
Use sipping at ietf.org for new developments on the application of sip

References:
- RE: [Sip] media-security-requirements and lawful intercept
  - From: Peterson, Jon
- Re: [Sip] media-security-requirements and lawful intercept
  - From: Paul Kyzivat
- Re: [Sip] media-security-requirements and lawful intercept
  - From: Dean Willis

Prev by Date: RE: [Sip] media-security-requirements and lawful intercept
Next by Date: RE: [Sip] media-security-requirements and lawful intercept
Previous by thread: Re: [Sip] media-security-requirements and lawful intercept
Next by thread: RE: [Sip] media-security-requirements and lawful intercept
Index(es):
- Date
- Thread