Francois, thanks for the note!
Sorry, since I had forgotten the possibility of the private network proxy being compromised: - If it is a financial institution , it is an open door to steal money, - If it is a law enforcement organization, the agents will get killed, - SIPS for proxies is just as bad for any private network as well as for service providers and their customers. >From this perspective, any intermediary is either an invitation for some bad or outright dangerous behavior. SIPS cannot obfuscate that the only security is e2e. Any intermediary is vulnerability. Henry ________________________________ From: Francois Audet [mailto:[EMAIL PROTECTED] Sent: Friday, August 17, 2007 5:41 PM To: Henry Sinnreich; [EMAIL PROTECTED]; Dean Willis; Richard Barnes Cc: sip List; Sandy Murphy Subject: RE: [Sip] Question on SIP Security considerations forfuture extensions Which service providers in the middle? :^) All that is needed is an IP network. ________________________________ From: Henry Sinnreich [mailto:[EMAIL PROTECTED] Sent: Friday, August 17, 2007 15:38 To: Audet, Francois (SC100:3055); [EMAIL PROTECTED]; Dean Willis; Richard Barnes Cc: sip List; Sandy Murphy Subject: RE: [Sip] Question on SIP Security considerations forfuture extensions >There are many cases where I'd put a lot more trust in the proxies than "the guys at the end of the lines". The guys are you and me :-) If it's an enterprise network, then the enterprise network is the endpoint and we agree here. Now what about all those service provider networks in the middle? Henry
_______________________________________________ Sip mailing list https://www1.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use [EMAIL PROTECTED] for questions on current sip Use [EMAIL PROTECTED] for new developments on the application of sip
