[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Sip] B2B-UA's provide an unsolveable identity problem (was RE: submission of a new I-D: "Dialog Event foRIdentityVErification")

To: "Juha Heinanen" <jh at tutpro.com>, "Elwell, John" <john.elwell at siemens.com>
Subject: [Sip] B2B-UA's provide an unsolveable identity problem (was RE: submission of a new I-D: "Dialog Event foRIdentityVErification")
From: "Attila Sipos" <attila.sipos at vegastream.com>
Date: Fri, 31 Oct 2008 07:33:52 -0000
Cc: sip at ietf.org, Dan Wing <dwing at cisco.com>
Delivered-to: ietfarch-sip-archive at core3.amsl.com
Delivered-to: sip at core3.amsl.com
List-help: <mailto:sip-request@ietf.org?subject=help>
List-id: Session Initiation Protocol <sip.ietf.org>
List-post: <mailto:sip@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
Sender: sip-bounces at ietf.org
Thread-index: Ack7Is0pSB88yMJ/RrSjESLUT19SBgABGWwg
Thread-topic: B2B-UA's provide an unsolveable identity problem (was RE: [Sip] submission of a new I-D: "Dialog Event foRIdentityVErification")

>>i strongly disagree.  b2bua is just an ua.  if you you build or deploy
>>such boxes, it is your headache, not sip wg's.

I agree with Juha here.

Every attempt at fixing identity problems (and they have been clever
solutions) has been hindered with the "but it won't work with B2BUAs"
argument.

The problem is not "it won't work with B2BUAs" - the  problem is that
B2BUA identity and security problems are unsolveable anyway. A B2BUA
cannot be forced to do anything because even if you said "it must do
this and that", a B2BUA can do what it wants anyway (I'm sure we've all
seen this).  Even if B2BUAs agreed to do certain things, one would
always enf up with something else that gets B2B'ed.

It is no different to trying to solve the problem of 2 telephones taped
together.

You can only trust things up to a certain boundary.  And the boundaries
of SIP are the UAs.  The best that SIP can do is to control what happens
between a UA and another UA (and proxies in between) and that's it.

Regards,

Attila

-----Original Message-----
From: sip-bounces at ietf.org [mailto:sip-bounces at ietf.org] On Behalf Of
Juha Heinanen
Sent: 31 October 2008 06:31
To: Elwell, John
Cc: sip at ietf.org; Dan Wing
Subject: Re: [Sip] submission of a new I-D: "Dialog Event
foRIdentityVErification"

Elwell, John writes:

 > > I support draft-kuthan-sip-derive-00, and hope the WG can devote  >
> time and energy to improving and standardizing it to work well  > >
across a variety of networks.
 > [JRE] I agree. This must include networks that contain B2BUAs/SBCs.

i strongly disagree.  b2bua is just an ua.  if you you build or deploy
such boxes, it is your headache, not sip wg's.  it is enough that this
work is based on rfc3261 components.

-- juha

_______________________________________________
Sip mailing list  https://www.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol Use
sip-implementors at cs.columbia.edu for questions on current sip Use
sipping at ietf.org for new developments on the application of sip
_______________________________________________
Sip mailing list  https://www.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors at cs.columbia.edu for questions on current sip
Use sipping at ietf.org for new developments on the application of sip

Follow-Ups:
- Re: [Sip] B2B-UA's provide an unsolveable identity problem (was RE: submission of a new I-D: "Dialog Event foRIdentityVErification")
  - From: Jiri Kuthan
- Re: [Sip] B2B-UA's provide an unsolveable identity problem (was RE: submission of a new I-D: "Dialog Event foRIdentityVErification")
  - From: Dan Wing
- Re: [Sip] B2B-UA's provide an unsolveable identity problem (was RE: submission of a new I-D: "Dialog Event foRIdentityVErification")
  - From: Victor Pascual Ávila

Prev by Date: Re: [Sip] Comment on DERIVE and B2BUAs
Next by Date: Re: [Sip] submission of a new I-D: "Dialog Event foRIdentityVErification"
Previous by thread: [Sip] Questions regarding P_ASSOCIATED_URL
Next by thread: Re: [Sip] B2B-UA's provide an unsolveable identity problem (was RE: submission of a new I-D: "Dialog Event foRIdentityVErification")
Index(es):
- Date
- Thread