RE: [Sip] Certificate authentication in SIP

Wed, 20 Jun 2007 03:44:36 -0700 

HI,

> -     whether this represents a problem space that the working group
> should draft requirements on?
certificate based authentication from my point of view is useful to
increase the security of the 
user authentication, which is currently achieved by HTTP digest.

> 
> -     whether the problem space exists but is something slightly
> different, and if so what is that problem space?
> 
> -     whether there is a more general problem that the security area
> should be addressing, rather than the SIP group addressing 
> something specific?
as SIP borrows the digest authentication from HTTP, it might also be
possible to enhance the HTTP authentication and re-use it in SIP for the
certificate based authentication. As Dan already wrote a potential
HTTPbis might capture this approach.

> -     based on your answers to the first three questions, whether this
> draft is essentially in the right direction to be adopted as 
> the WG draft assuming we create the charter item, or whether 
> we need to seek some other input draft?
this draft outlines the requirements for certificate based
authentication for SIP and should therefore be used as a requirements
document. I guess it does not necessarily determine, if the solution is
being defined in SIP as opposed to define the base solution for HTTP and
derive a solution in SIP
> 
> -     and finally, whether (assuming we go ahead with this work) there
> is any work in any other IETF WG that we should take account of?
see Dans reference

Regards
        Steffen

> 
> 
> Regards
> 
> Keith
> 
> 
> 
> Regards
> 
> Keith
> 
> 
> _______________________________________________
> Sip mailing list  https://www1.ietf.org/mailman/listinfo/sip
> This list is for NEW development of the core SIP Protocol Use 
> [EMAIL PROTECTED] for questions on current sip 
> Use [EMAIL PROTECTED] for new developments on the application of sip
> 


_______________________________________________
Sip mailing list  https://www1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use [EMAIL PROTECTED] for questions on current sip
Use [EMAIL PROTECTED] for new developments on the application of sip

Reply via email to