Protocol Action: 'Enhancements for Authenticated Identity Management in the Session Initiation Protocol (SIP)' to Proposed Standard
The IESG <iesg-secretary@ietf.org> Mon, 09 January 2006 15:55 UTC
Received: from localhost.cnri.reston.va.us ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EvzMg-0002y8-IT; Mon, 09 Jan 2006 10:55:22 -0500
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EvzMe-0002xm-6I; Mon, 09 Jan 2006 10:55:20 -0500
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA24494; Mon, 9 Jan 2006 10:54:01 -0500 (EST)
Received: from [132.151.6.50] (helo=newodin.ietf.org) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1EvzTA-0000nw-U5; Mon, 09 Jan 2006 11:02:05 -0500
Received: from apache by newodin.ietf.org with local (Exim 4.43) id 1EvzMc-0002nK-VG; Mon, 09 Jan 2006 10:55:18 -0500
X-test-idtracker: no
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Message-Id: <E1EvzMc-0002nK-VG@newodin.ietf.org>
Date: Mon, 09 Jan 2006 10:55:18 -0500
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 769a46790fb42fbb0b0cc700c82f7081
Cc: sip mailing list <sip@ietf.org>, sip chair <rohan@ekabal.com>, Internet Architecture Board <iab@iab.org>, sip chair <dean.willis@softarmor.com>, RFC Editor <rfc-editor@rfc-editor.org>
Subject: Protocol Action: 'Enhancements for Authenticated Identity Management in the Session Initiation Protocol (SIP)' to Proposed Standard
X-BeenThere: ietf-announce@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: ietf-announce.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:ietf-announce@ietf.org>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/ietf-announce>, <mailto:ietf-announce-request@ietf.org?subject=subscribe>
Sender: ietf-announce-bounces@ietf.org
Errors-To: ietf-announce-bounces@ietf.org
The IESG has approved the following document: - 'Enhancements for Authenticated Identity Management in the Session Initiation Protocol (SIP) ' <draft-ietf-sip-identity-06.txt> as a Proposed Standard This document is the product of the Session Initiation Protocol Working Group. The IESG contact persons are Allison Mankin and Jon Peterson. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-sip-identity-06.txt Technical Summary The existing security mechanisms in the Session Initiation Protocol are inadequate for cryptographically assuring the identity of the end users that originate SIP requests, especially in an interdomain context. This document specifies a mechanism for securely identifying originators of SIP messages. It does so by defining two new SIP header fields, Identity, for conveying a signature used for validating the identity, and Identity-Info, for conveying a reference to the certificate of the signer. It specifies the mechanisms and procedures for using these and how they can be used with the existing SIP privacy capabilities. It is desirable for SIP user agents to be able to send requests to destinations with which they have no previous association - just as in the telephone network today, one can receive a call from someone with whom one has no previous association, and still have a reasonable assurance that their displayed Caller-ID is accurate. A cryptographic approach, like the one described in this document, can probably provide a much stronger and less-spoofable assurance of identity than the telephone network provides today. Working Group Summary This specification required a number of tries and much analysis. There was strong consensus on the solution by the time it reached the version in this draft. Protocol Quality Eric Rescorla provided early architectural review of the work. The careful reading by the GEN-ART reviewer, Lakshminath Dondeti was valuable. Allison Mankin is the Responsible Area Director. _______________________________________________ IETF-Announce mailing list IETF-Announce@ietf.org https://www1.ietf.org/mailman/listinfo/ietf-announce