I don't know, but my proxie's administrator is a lot more competent and
trusworthy at setting up security properly than the average Joe on the
internet. And I don't know what IT person would be stupid enough to
trust its users.
Now, perhaps savvy users would want their own overlay of end-to-end
security. That would be fine too.
________________________________
From: Henry Sinnreich [mailto:[EMAIL PROTECTED]
Sent: Sunday, August 19, 2007 11:19
To: Audet, Francois (SC100:3055); [EMAIL PROTECTED]; Dean
Willis; Richard Barnes
Cc: sip List; Sandy Murphy
Subject: RE: [Sip] Question on SIP Security considerations
forfuture extensions
Francois, thanks for the note!
Sorry, since I had forgotten the possibility of the private
network proxy being compromised:
- If it is a financial institution , it is an open door
to steal money,
- If it is a law enforcement organization, the agents
will get killed,
- SIPS for proxies is just as bad for any private
network as well as for service providers and their customers.
From this perspective, any intermediary is either an invitation
for some bad or outright dangerous behavior.
SIPS cannot obfuscate that the only security is e2e. Any
intermediary is vulnerability.
Henry
________________________________
From: Francois Audet [mailto:[EMAIL PROTECTED]
Sent: Friday, August 17, 2007 5:41 PM
To: Henry Sinnreich; [EMAIL PROTECTED]; Dean Willis; Richard
Barnes
Cc: sip List; Sandy Murphy
Subject: RE: [Sip] Question on SIP Security considerations
forfuture extensions
Which service providers in the middle? :^)
All that is needed is an IP network.
________________________________
From: Henry Sinnreich [mailto:[EMAIL PROTECTED]
Sent: Friday, August 17, 2007 15:38
To: Audet, Francois (SC100:3055); [EMAIL PROTECTED];
Dean Willis; Richard Barnes
Cc: sip List; Sandy Murphy
Subject: RE: [Sip] Question on SIP Security
considerations forfuture extensions
>There are many cases where I'd put a lot more trust in
the proxies than "the guys at the end of the lines".
The guys are you and me :-)
If it's an enterprise network, then the enterprise
network is the endpoint and we agree here.
Now what about all those service provider networks in
the middle?
Henry
_______________________________________________
Sip mailing list https://www1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use [EMAIL PROTECTED] for questions on current sip
Use [EMAIL PROTECTED] for new developments on the application of sip
