[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sip] Preventing unanticipated respondent syndrome when retargeting

To: Dean Willis <dean.willis at softarmor.com>, "sip at ietf.org List" <sip at ietf.org>
Subject: Re: [Sip] Preventing unanticipated respondent syndrome when retargeting
From: Hadriel Kaplan <HKaplan at acmepacket.com>
Date: Fri, 4 Apr 2008 11:40:58 -0400
Accept-language: en-US
Acceptlanguage: en-US
Delivered-to: ietfarch-sip-web-archive at core3.amsl.com
Delivered-to: sip at core3.amsl.com
In-reply-to: <7D9AB6CF-9DAF-4F5B-B777-C695B8A30E22 at softarmor.com>
List-help: <mailto:sip-request@ietf.org?subject=help>
List-id: Session Initiation Protocol <sip.ietf.org>
List-post: <mailto:sip@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
References: <7D9AB6CF-9DAF-4F5B-B777-C695B8A30E22 at softarmor.com>
Sender: sip-bounces at ietf.org
Thread-index: AciWJcg/dfnHqtP2Qc2UFc9HmciZaQAQ42nQ
Thread-topic: [Sip] Preventing unanticipated respondent syndrome when retargeting

Howdy,
Can you describe more succinctly why this is a problem that needs fixing?  (not that I don't think it would be - I'm just low on caffeine and can't grasp the issue being solved)  I guess I don't get why Alice needs to know this before getting a 200? (or before a 180/183)

Also, how would this "work" with forking?

-hadriel


> -----Original Message-----
> From: sip-bounces at ietf.org [mailto:sip-bounces at ietf.org] On Behalf Of Dean
> Willis
>
> I define "unanticipated respondent syndrome" as the sense of surprise
> Alice gets when she calls Bob, only to have the call answered by
> Charlie. This is especially problematic if the sorts of security
> operations that depend on Alice having some sort of keying
> relationship with Charlie become important.
>
> Alice is expecting:
>
> Alice--1-->Proxy--2-->Bob
>
> but instead she gets:
>
> Alice--1-->Proxy--2-->Charlie
>
> because Bob forwarded his phone to Charlie, or because Charlie, who is
> authorized to do so, registered as a contact for Bob, and Bob didn't
> answer (or has a lwoer qvalue, or whatever)
>
> RFC 4916 lets Alice find out who answered the phone in the most
> difficult of cases, and other techniques like P-Asserted-Identity in a
> response address simpler cases (or we can use endpoint- asserted RFC
> 4474 Identity when the keys are known or discoverable). So that's not
> a problem. Alice can figure out that she's talking to Charlie, once
> they get connected.
>
> The only problem is cluing in Alice that she's about to be talking to
> Charlie instead of Bob.
>
> In the cases I've identified above, the proxy knows that it is
> retargeting the request to Charlie, not rerouting the request to Bob.
> How does it know this? It either a) knows that the Call Forwarding
> feature has been activated, and that's always a retarget, or b) knows
> that the contact for Bob was registered by Charlie, who isn't Bob (but
> that Charlie is authorized to register for Bob's AOR). In fact, if
> this the case, it knows both Charlie's authentication identity and his
> contact.
>
> Since the proxy knows, it should be able to inform Alice.
>
> I therefore propose a provisional response from Proxy to Alice, which
> I'll provisionally call "121 (Retargeting)"
>
> A proxy executing a retargeting operation (by which we mean an
> operation that replaces the request URI such that the authenticated
> identity of the new request URI is different from the authenticated
> identity of the old one) SHOULD return a 121 (Retargeting) provisional
> response. The 121 response contains a Contact header field, the value
> of which is the new identity being targeted. Optionally, we might
> include some sort of "cause" parameter, explaining why the request is
> being retargeted (like "Bob's dead, talk to Charlie").
>
> If a proxy doesn't know whether it is rerouting or retargeting, it
> SHOULD assume that it is retargeting, and send the appropriate 121
> response.
>
> In conclusion, this preserves the proxy-mediated functionality
> required for draft-ietf-sip-outbound, while giving us the I-know-who-I-
> expect-to-reach function of a 302 (Redirect).
>
> Yeah, this should be an I-D. I'm now accepting volunteer co-authors to
> do the dirty work, assuming this idea gets any traction.
>
> --
> Dean
>
> _______________________________________________
> Sip mailing list  https://www.ietf.org/mailman/listinfo/sip
> This list is for NEW development of the core SIP Protocol
> Use sip-implementors at cs.columbia.edu for questions on current sip
> Use sipping at ietf.org for new developments on the application of sip
_______________________________________________
Sip mailing list  https://www.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors at cs.columbia.edu for questions on current sip
Use sipping at ietf.org for new developments on the application of sip

Follow-Ups:
- Re: [Sip] Preventing unanticipated respondent syndrome when retargeting
  - From: Dean Willis

References:
- [Sip] Preventing unanticipated respondent syndrome when retargeting
  - From: Dean Willis

Prev by Date: [Sip] Review of sip-outbound-13
Next by Date: Re: [Sip] RFC 4474 and PSTN
Previous by thread: Re: [Sip] Preventing unanticipated respondent syndrome when retargeting
Next by thread: Re: [Sip] Preventing unanticipated respondent syndrome when retargeting
Index(es):
- Date
- Thread