15 apr 2012 kl. 19:31 skrev Kevin P. Fleming: > On 04/15/2012 12:23 PM, Vineet Menon wrote: > >> Ya I agree that initiating a new transaction just for convey non-auth. >> seems messy..... > > i think you've missed the important point here: if you send a SIP > request to a UAS, you are implicitly authorizing them to respond to that > request. It doesn't seem like there would be any value in requiring a > UAS to be required to authenticate itself in order to respond to a request. > Do remember that a SIP request can fork, so the CALLER might not have a relation to the UA or identity that answers.
There are calls where you want bidirectional assured identity. /O _______________________________________________ Sip-implementors mailing list [email protected] https://lists.cs.columbia.edu/cucslists/listinfo/sip-implementors
