Hi, Since the connection is established end-to-end then without RELOAD, how can you rely on - as the receiver of i.e. INVITE - that the identity of the the .. let's say "message elements" such as "From"-Header ... is really the person providing this information ?
What I mean is: Then, is there any need of an SIP-header extension providing the signature of the sending party ? Cheers, Frederic -----Original Message----- From: Bruce Lowekamp [mailto:[email protected]] Sent: Sonntag, 15. März 2009 18:09 To: Frédéric-Philippe Metz Cc: [email protected] Subject: Re: [P2PSIP] Question: Security issue resp. RELOAD and SIP usage draft-ietf-p2psip-sip-00 RELOAD provides a rendezvous mechanism to use ICE to set up a direct connection between Alice and Bob. But after the initial setup, RELOAD is out of the picture and the actual SIP traffic flows directly between the two SIP UAs without any RELOAD involvement. Bruce On Sun, Mar 15, 2009 at 5:35 AM, Frédéric-Philippe Metz <[email protected]> wrote: > Hi all, > > RELOAD with SIP Usage is for setting up a direct connection between Alice > and Bob. Hence SIP traffic flows through RELOAD mechanisms directly from > Alice to BoB, right ? Furthermore security mechanisms from RELOAD are used > and no particular SIP-Header extension (i.e. signature) is needed ? > > Cheers, > Frédéric > > _______________________________________________ > P2PSIP mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/p2psip > _______________________________________________ P2PSIP mailing list [email protected] https://www.ietf.org/mailman/listinfo/p2psip
