[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sip] media-security-requirements and lawful intercept

To: Ted Hardie <hardie at qualcomm.com>
Subject: Re: [Sip] media-security-requirements and lawful intercept
From: Dean Willis <dean.willis at softarmor.com>
Date: Fri, 9 Nov 2007 21:06:38 -0600
Cc: IETF SIP List <sip at ietf.org>, Paul Kyzivat <pkyzivat at cisco.com>, "Elwell, John" <john.elwell at siemens.com>, Dan Wing <dwing at cisco.com>, "Peterson, Jon" <jon.peterson at neustar.biz>
In-reply-to: <p06240602c35a3c20a4fd@[129.46.78.80]>
List-help: <mailto:sip-request@ietf.org?subject=help>
List-id: Session Initiation Protocol <sip.ietf.org>
List-post: <mailto:sip@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
References: <47335E14.1020105@cisco.com> <31D151A3D66E404AACBBB0247ACA54A7029C9E@STNTEXCH11.cis.neustar.com> <0D5F89FAC29E2C41B98A6A762007F5D03E9445@GBNTHT12009MSX.gb002.siemens.net> <p06240602c35a3c20a4fd@[129.46.78.80]>


On Nov 9, 2007, at 10:40 AM, Ted Hardie wrote:

I would personally be happy with that result. I think the engineering problem for anyone who believes it *must* apply to C is a hard one: designing a system which 1) allows C to intercept encrypted material 2) allows C to present unencrypted material to the LI requestor 3) does not require C to ask for the keys to every flow to hide the LI (to maintain the privacy of the flows not subject to the LI) and 4) does not reveal C's action to A or B.

I don't think C needs to go to that extent. All C can reasonably do is ask A and B for the session key. If A and B are not forthcoming, C is free to re-negotiate its peering contract between A and B. And that's how the business works today.

If we assume that A and C are also regulated operators, then in most jurisdictions they're going to have keys for every session, and it's up to their regulators to decide what peers they share keys with and what peers they don't.

--
Dean


_______________________________________________
Sip mailing list  https://www1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors at cs.columbia.edu for questions on current sip
Use sipping at ietf.org for new developments on the application of sip

References:
- Re: [Sip] media-security-requirements and lawful intercept
  - From: Paul Kyzivat
- RE: [Sip] media-security-requirements and lawful intercept
  - From: Peterson, Jon
- RE: [Sip] media-security-requirements and lawful intercept
  - From: Elwell, John
- RE: [Sip] media-security-requirements and lawful intercept
  - From: Ted Hardie

Prev by Date: RE: [RAI] RE: [Sip] RAI-ART Review Comments fordraft-ietf-sip-hitchhikers-guide
Next by Date: RE: [Sip] WGLC: draft-ietf-sip-connect-reuse-08.txt
Previous by thread: RE: [Sip] media-security-requirements and lawful intercept
Next by thread: Re: [Sip] media-security-requirements and lawful intercept
Index(es):
- Date
- Thread