Dear lists, I have a question about SIP Identity.
In SIP Identity, how is it verified whether or not the authentication service(AS) who is described in Identity-Info header is truly legitimate? If it is NOT verified, spoofing of AS is possible, I think. As far as I know, RFC DO NOT have any description about that. If you know that, please let me know. Thanks in advance. Tabt. _______________________________________________ Sip-implementors mailing list [email protected] https://lists.cs.columbia.edu/cucslists/listinfo/sip-implementors
