Comments inline... Thanks & Regards, Nataraju A.B. > -----Original Message----- > From: Scott Lawrence [mailto:[EMAIL PROTECTED] > Sent: Monday, June 19, 2006 4:43 PM > To: Nataraju A B > Cc: 'Clinkert Jack-G3295C'; [email protected] > Subject: RE: [Sip-implementors] SIP authentication credentials > > On Mon, 2006-06-19 at 11:32 +0530, Nataraju A B wrote: > > > I personally feel its better to cache the credentials for a short > > duration. Hence we can reduce the request/response transactions if the > > messaging happens very often. Once the time expired then that set of > > credentials become stale, after that message would be authenticated as > > new requests. > > If you mean that the server should not check credentials for some > requests, that is certainly within the rules (whether or not it is a > good idea depends on circumstances). > [ABN] I mean to say, client/server can cache the credentials for some time so that the credentials carried in the next incoming request matches the cached credentials, then client/server can assume it's an authenticated request and no need to authenticate that request. > > Just for instance, assume (OMA POC) client is synchronizing with server, > > this generate a series of HTTP requests. If the credentials were cached, > > then it reduces a large % of messaging. > > If the client and server are doing things correctly, any number of > messages in HTTP and any number in the same dialog in SIP can be > authenticated with only one challenge and one extra request. > [ABN] True, but we can reduce the too many message transactions if we can cache the credentials for a short time...
> -- > Scott Lawrence tel:+1-781-938-5306;ext=162 or sip:[EMAIL PROTECTED] > sipXpbx project coordinator - SIPfoundry http://www.sipfoundry.org/sipX > Chief Architect - Pingtel Corp. http://www.pingtel.com/ _______________________________________________ Sip-implementors mailing list [email protected] https://lists.cs.columbia.edu/cucslists/listinfo/sip-implementors
