RFC 4474 sections 13.3 and 13.4 may be helpful. > -----Original Message----- > From: [email protected] [mailto:sip- > [email protected]] On Behalf Of Couret Tabt > Sent: Friday, February 03, 2012 12:29 AM > To: [email protected] > Subject: [Sip-implementors] Verification of legitimate Authentication > Service in SIP Identity > > Dear lists, > > I have a question about SIP Identity. > > In SIP Identity, how is it verified whether or not the authentication > service(AS) who > is described in Identity-Info header is truly legitimate? > > If it is NOT verified, spoofing of AS is possible, I think. > > As far as I know, RFC DO NOT have any description about that. > > If you know that, please let me know. > > Thanks in advance. > Tabt.
_______________________________________________ Sip-implementors mailing list [email protected] https://lists.cs.columbia.edu/cucslists/listinfo/sip-implementors
