Authenticated Identity Management in the Session Initiation Protocol (SIP)
draft-jennings-stir-rfc4474bis-01

Document Type Replaced Internet-Draft (individual)
Last updated 2014-06-24 (latest revision 2014-02-14)
Replaces draft-jennings-dispatch-rfc4474bis
Replaced by draft-ietf-stir-rfc4474bis
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-stir-rfc4474bis
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-jennings-stir-rfc4474bis-01.txt

Abstract

The baseline security mechanisms in the Session Initiation Protocol (SIP) are inadequate for cryptographically assuring the identity of the end users that originate SIP requests, especially in an interdomain context. This document defines a mechanism for securely identifying originators of SIP requests. It does so by defining new SIP header fields for conveying a signature used for validating the identity, and for conveying a reference to the credentials of the signer.

Authors

Jon Peterson (jon.peterson@neustar.biz)
Cullen Jennings (fluffy@iii.ca)
Eric Rescorla (ekr@rtfm.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)