[Resending invitation - Thanks Jari Arkko for saying OK]
IP host pairing problem statement
In the current model of operation (phone number privacy obligates it),
cell phone users exchange their phone numbers upon user contact. This
model is likely to persist in IP telephony, yet under-exploited and can be
extended using an IP protocol. Upon their meeting, an "IP host pairing"
protocol can allow two cell phone users to:
1. Exchange their SIP URIs, mobile IPv6 home addresses, and possibly
other information.
2. Establish an IPsec security association using IKEv2.
under user control, i.e. _if accepted_ by the users. For example, one
user will initiate a pairing request, and the target user's phone display
the initiator user's human name and ask for approval.
Since there is user contact, IKEv2 authentication can be less challenging
than the general case. I.e., a global PKI hierarchy is probably not
needed. Solutions like password-based IKEv2 authentication can be applied.
Human name certificates can be applicable, certificate revocation may not
be needed, and human name collisions may not be harmful in this context.
Certificates may be signed by the cellular operators for example, or
PGP-like web of trust solutions may be applicable.
An IP-layer pairing solution can also allow for re-pairing or updating
the pairing state through the Internet. The users may change their
SIP URIs and/or Mobile IPv6 home addresses or other information. The users
will need to update these informations without waiting until their next
meeting. Or, they may need additional information which was not previously
exchanged when there was user contact.
==
Interested people are welcome to the mailing list for this topic:
(we are 20 people for the moment and need more especially from security
and mobility areas)
https://www1.ietf.org/mailman/listinfo/humanresolvers
_______________________________________________
Int-area mailing list
[email protected]
https://www1.ietf.org/mailman/listinfo/int-area
