[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sip] Thoughts on SIP Identity issues

To: Dan Wing <dwing at cisco.com>, 'Jonathan Rosenberg' <jdrosen at cisco.com>, "'Elwell, John'" <john.elwell at siemens.com>
Subject: Re: [Sip] Thoughts on SIP Identity issues
From: Hadriel Kaplan <HKaplan at acmepacket.com>
Date: Thu, 31 Jul 2008 16:47:13 -0400
Accept-language: en-US
Acceptlanguage: en-US
Cc: 'Cullen Jennings' <fluffy at cisco.com>, 'SIP IETF' <sip at ietf.org>, "'Uzelac, Adam'" <Adam.Uzelac at globalcrossing.com>
Delivered-to: ietfarch-sip-web-archive at core3.amsl.com
Delivered-to: sip at core3.amsl.com
In-reply-to: <0ae201c8f310$d183a0f0$3675150a@cisco.com>
List-help: <mailto:sip-request@ietf.org?subject=help>
List-id: Session Initiation Protocol <sip.ietf.org>
List-post: <mailto:sip@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
References: <0D5F89FAC29E2C41B98A6A762007F5D0F266CD@GBNTHT12009MSX.gb002.siemens.net> <02829328-7B0E-41AB-B325-01246363D09C@cisco.com> <4DAE5E60BA49D8419D7C8832503F5FFC072817AF26@EVS10.ams.gblxint.com><0D5F89FAC29E2C41B98A6A762007F5D0F26CCB@GBNTHT12009MSX.gb002.siemens.net> <48919248.7060600@cisco.com> <0ae201c8f310$d183a0f0$3675150a@cisco.com>
Sender: sip-bounces at ietf.org
Thread-index: Acjy98g3RlyIh1r1TsKiDnkiV6zHcwAGHifwAAe9bIA=
Thread-topic: [Sip] Thoughts on SIP Identity issues


> -----Original Message-----
> From: sip-bounces at ietf.org [mailto:sip-bounces at ietf.org] On Behalf Of Dan
> Wing
>
> Thank you - this is the first description of a codec attack that
> anyone has explained.
>
> So a beneficial change (adding a codec and doing transcoding for
> the user) is okay, but a non-benficial change (removing a good-
> sounding codec for the end equipment [wideband] or for the network
> [iSAC]) is an attack?

I still don't buy it.  Honestly, exactly how much benefit does an attacker get by "downgrading" your codec?  If there is no benefit/motivation for an attacker, why is this a threat we care about?

Alternatively, there *is* motivation for removing codecs to *improve* your experience - this is in fact done right now in deployed networks, to force calls crossing low-bandwidth WAN links to use lower-bandwidth codecs (e.g., removing g711 in favor of g729, or re-re-ordering them in the m-line).  In those cases the removal is beneficial.

-hadriel
_______________________________________________
Sip mailing list  https://www.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors at cs.columbia.edu for questions on current sip
Use sipping at ietf.org for new developments on the application of sip

Follow-Ups:
- Re: [Sip] Thoughts on SIP Identity issues
  - From: Eric Rescorla

References:
- [Sip] Thoughts on SIP Identity issues
  - From: Elwell, John
- Re: [Sip] Thoughts on SIP Identity issues
  - From: Cullen Jennings
- Re: [Sip] Thoughts on SIP Identity issues
  - From: Uzelac, Adam
- Re: [Sip] Thoughts on SIP Identity issues
  - From: Elwell, John
- Re: [Sip] Thoughts on SIP Identity issues
  - From: Jonathan Rosenberg
- Re: [Sip] Thoughts on SIP Identity issues
  - From: Dan Wing

Prev by Date: [Sip] outbound question
Next by Date: Re: [Sip] Thoughts on SIP Identity issues
Previous by thread: Re: [Sip] Thoughts on SIP Identity issues
Next by thread: Re: [Sip] Thoughts on SIP Identity issues
Index(es):
- Date
- Thread