Jonathan Rosenberg wrote:
(2) Edge proxy utilizing TLS
offloaders.
The offloader would need to pass the identity to the server. If it acted
as a simple SIP proxy in addition to doing TLS offload, it would work
fine. There are other non-standard ways of passing this identity also.
Let's just say that we're aware of commercial TLS concentrators from a
certain vendor (who might ostensibly be said to fund your participation
in this forum) that are both very popular and that DO NOT HAVE this
functionalility and aren't very likely to get it (after all, why would
you wish to reduce their performance by a factor of 50 or so to start
parsing SIP messages?). Finding a way other than basic or digest to
authenticate across them would be very nice, and would be very likely to
ramp up the deployment of SIP/TLS.
--
Dean
_______________________________________________
Sip mailing list https://www1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use [EMAIL PROTECTED] for questions on current sip
Use [EMAIL PROTECTED] for new developments on the application of sip
