[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Evaluation: draft-ietf-sip-sctp - The Stream Control Transmission Protocol as a Transport for for the Session Initiation Protocol

To: IESG Scretary <iesg-secretary@ietf.org>
Subject: Re: Evaluation: draft-ietf-sip-sctp - The Stream Control Transmission Protocol as a Transport for for the Session Initiation Protocol
From: "Steven M. Bellovin" <smb@research.att.com>
Date: Wed, 09 Jul 2003 22:12:21 -0400
Cc: Internet Engineering Steering Group <iesg@ietf.org>

In message <200307042234.SAA11116@ietf.org>, IESG Secretary writes:
>
>Last Call to expire on: 2003-07-03
>
>        Please return the full line with your position.
>
>                      Yes  No-Objection  Discuss  Abstain
>Steve Bellovin       [   ]     [   ]     [ x ]     [   ]

The document says "In this case, it is RECOMMENDED that SIP
messages belonging to the same transaction are sent over the same
stream".  TLS won't work unless that's done; it's a MUST, not a SHOULD. 
In fact, that's sufficiently obvious that it wasn't even spelled out 
explicitly in 3436, as best I can tell from a quick glance.

		--Steve Bellovin, http://www.research.att.com/~smb (me)
		http://www.wilyhacker.com (2nd edition of "Firewalls" book)

Prev by Date: Re: Evaluation: draft-ietf-dnsext-ad-is-secure
Next by Date: Re: Evaluation: draft-ietf-dnsext-ad-is-secure
Previous by thread: Re: Evaluation: draft-ietf-dnsext-ad-is-secure
Next by thread: draft of rtg-dir feedback on routing protocol overloading
Index(es):
- Date
- Thread