[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sip] Preventing unanticipated respondent syndrome when retargeting

To: Dean Willis <dean.willis at softarmor.com>, "sip at ietf.org List" <sip at ietf.org>
Subject: Re: [Sip] Preventing unanticipated respondent syndrome when retargeting
From: Bob Penfield <BPenfield at acmepacket.com>
Date: Fri, 4 Apr 2008 15:42:27 -0400
Accept-language: en-US
Acceptlanguage: en-US
Delivered-to: ietfarch-sip-web-archive at core3.amsl.com
Delivered-to: sip at core3.amsl.com
In-reply-to: <7D9AB6CF-9DAF-4F5B-B777-C695B8A30E22 at softarmor.com>
List-help: <mailto:sip-request@ietf.org?subject=help>
List-id: Session Initiation Protocol <sip.ietf.org>
List-post: <mailto:sip@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
References: <7D9AB6CF-9DAF-4F5B-B777-C695B8A30E22 at softarmor.com>
Sender: sip-bounces at ietf.org
Thread-index: AciWJc3pvPk+G1KoS+GW6I7qWmWP7wAXIv+w
Thread-topic: [Sip] Preventing unanticipated respondent syndrome when retargeting

I think this could mess up User Agents that do not understand the new response code and treat it like any other 1xx. In this situation, the Proxy is acting as the UAS for the 121 response, and RFC 3261 requires that it have a to-tag. The UAC will create an dialog for the 121 response.

The problem is that the Contact does not meet the criteria required for a provisional response in that it does not reach the UAS (the Proxy) that established the dialog.

What will happen to any in-dialog requests sent by the UAC on the early dialog?

cheers,
(-:bob

-----Original Message-----
From: sip-bounces at ietf.org [mailto:sip-bounces at ietf.org] On Behalf Of Dean Willis
Sent: Friday, April 04, 2008 3:30 AM
To: sip at ietf.org List
Subject: [Sip] Preventing unanticipated respondent syndrome when retargeting

I define "unanticipated respondent syndrome" as the sense of surprise
Alice gets when she calls Bob, only to have the call answered by
Charlie. This is especially problematic if the sorts of security
operations that depend on Alice having some sort of keying
relationship with Charlie become important.

Alice is expecting:

Alice--1-->Proxy--2-->Bob

but instead she gets:

Alice--1-->Proxy--2-->Charlie

because Bob forwarded his phone to Charlie, or because Charlie, who is
authorized to do so, registered as a contact for Bob, and Bob didn't
answer (or has a lwoer qvalue, or whatever)

RFC 4916 lets Alice find out who answered the phone in the most
difficult of cases, and other techniques like P-Asserted-Identity in a
response address simpler cases (or we can use endpoint- asserted RFC
4474 Identity when the keys are known or discoverable). So that's not
a problem. Alice can figure out that she's talking to Charlie, once
they get connected.

The only problem is cluing in Alice that she's about to be talking to
Charlie instead of Bob.

In the cases I've identified above, the proxy knows that it is
retargeting the request to Charlie, not rerouting the request to Bob.
How does it know this? It either a) knows that the Call Forwarding
feature has been activated, and that's always a retarget, or b) knows
that the contact for Bob was registered by Charlie, who isn't Bob (but
that Charlie is authorized to register for Bob's AOR). In fact, if
this the case, it knows both Charlie's authentication identity and his
contact.

Since the proxy knows, it should be able to inform Alice.

I therefore propose a provisional response from Proxy to Alice, which
I'll provisionally call "121 (Retargeting)"

A proxy executing a retargeting operation (by which we mean an
operation that replaces the request URI such that the authenticated
identity of the new request URI is different from the authenticated
identity of the old one) SHOULD return a 121 (Retargeting) provisional
response. The 121 response contains a Contact header field, the value
of which is the new identity being targeted. Optionally, we might
include some sort of "cause" parameter, explaining why the request is
being retargeted (like "Bob's dead, talk to Charlie").

If a proxy doesn't know whether it is rerouting or retargeting, it
SHOULD assume that it is retargeting, and send the appropriate 121
response.

In conclusion, this preserves the proxy-mediated functionality
required for draft-ietf-sip-outbound, while giving us the I-know-who-I-
expect-to-reach function of a 302 (Redirect).

Yeah, this should be an I-D. I'm now accepting volunteer co-authors to
do the dirty work, assuming this idea gets any traction.

--
Dean

_______________________________________________
Sip mailing list  https://www.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors at cs.columbia.edu for questions on current sip
Use sipping at ietf.org for new developments on the application of sip
_______________________________________________
Sip mailing list  https://www.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors at cs.columbia.edu for questions on current sip
Use sipping at ietf.org for new developments on the application of sip

Follow-Ups:
- Re: [Sip] Preventing unanticipated respondent syndrome when retargeting
  - From: Dean Willis

References:
- [Sip] Preventing unanticipated respondent syndrome when retargeting
  - From: Dean Willis

Prev by Date: Re: [Sip] RFC 4474 and PSTN
Next by Date: Re: [Sip] RFC 4474 and PSTN
Previous by thread: Re: [Sip] Preventing unanticipated respondent syndrome when retargeting
Next by thread: Re: [Sip] Preventing unanticipated respondent syndrome when retargeting
Index(es):
- Date
- Thread