su, 2008-06-08 kello 22:08 +0200, ext cco kirjoitti: > now, the call flows given as an example would function when the > challenge (nonce) does not explicitly depend on the user which is > actually trying to register itself, being generated > (periodically) by the sip proxy itself; that is they are o.k. for an > HTTP digest MD5 auth. as spec. in rfc 3261/rfc 2617. but they do NOT seem to > function in the real world when AKA is used, because: > > 1. the challenge is user specific. > 2. the "network" authenticates itself to the UE as well in case of AKA.
In an environment with plain RFC3310, an extra round trip would be required. The main user of this spec, namely 3GPP fixes this by requiring the presence of the Authorization field in the initial REGISTER. Cheers, Aki _______________________________________________ Sip mailing list https://www.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use [EMAIL PROTECTED] for questions on current sip Use [EMAIL PROTECTED] for new developments on the application of sip
