On Mar 13, 2008, at 9:36 AM, Hannes Tschofenig wrote: > Some of these aspects are in fact not a topic for SIP Identity. > Reason: SIP Identity leaves authorization open. > > If I configure my authorization check procedure to look for > +19785551234 > then there has to be a way to assert that I am that particular > identity. > The concept of domain does obviously not matter here -- since there > just > is no domain.
Well, there might be. For example, I might be able to look into the ENUM database and find out what cert (by domain) is supposed to be used to sign requests for that E.164 number. Or, I might be configured with a bunch of certs, each of which lists as part of its attribute set a range of phone numbers that it can sign. -- Dean _______________________________________________ Sip mailing list https://www.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use [EMAIL PROTECTED] for questions on current sip Use [EMAIL PROTECTED] for new developments on the application of sip
