Media Session Authorization

Document Type Expired Internet-Draft (individual)
Last updated 2006-02-01
Stream (None)
Intended RFC status (None)
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


In many VoIP networks today, firewalls and session border controllers are used at the edge of an administrative domain to allow authorized UDP media flows to enter or leave the network. This document introduces a new mechanism to authorize a UDP media flow. This mechanism works with encrypted hop-by-hop signaling, end-to-end authenticated signaling, and multihomed networks. The media authorization is performed using an Interactive Connectivity Establishment-capable endpoint and a calling signaling device that authorizes a firewall to permit a flow.


Dan Wing (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)