draft-ietf-stir-certificates-17.txt   draft-ietf-stir-certificates-18.txt 
Network Working Group J. Peterson Network Working Group J. Peterson
Internet-Draft Neustar Internet-Draft Neustar
Intended status: Standards Track S. Turner Intended status: Standards Track S. Turner
Expires: June 17, 2018 sn3rd Expires: June 21, 2018 sn3rd
December 14, 2017 December 18, 2017
Secure Telephone Identity Credentials: Certificates Secure Telephone Identity Credentials: Certificates
draft-ietf-stir-certificates-17 draft-ietf-stir-certificates-18
Abstract Abstract
In order to prevent the impersonation of telephone numbers on the In order to prevent the impersonation of telephone numbers on the
Internet, some kind of credential system needs to exist that Internet, some kind of credential system needs to exist that
cryptographically asserts authority over telephone numbers. This cryptographically asserts authority over telephone numbers. This
document describes the use of certificates in establishing authority document describes the use of certificates in establishing authority
over telephone numbers, as a component of a broader architecture for over telephone numbers, as a component of a broader architecture for
managing telephone numbers as identities in protocols like SIP. managing telephone numbers as identities in protocols like SIP.
skipping to change at page 1, line 36 skipping to change at page 1, line 36
Internet-Drafts are working documents of the Internet Engineering Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF). Note that other groups may also distribute Task Force (IETF). Note that other groups may also distribute
working documents as Internet-Drafts. The list of current Internet- working documents as Internet-Drafts. The list of current Internet-
Drafts is at http://datatracker.ietf.org/drafts/current/. Drafts is at http://datatracker.ietf.org/drafts/current/.
Internet-Drafts are draft documents valid for a maximum of six months Internet-Drafts are draft documents valid for a maximum of six months
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference time. It is inappropriate to use Internet-Drafts as reference
material or to cite them other than as "work in progress." material or to cite them other than as "work in progress."
This Internet-Draft will expire on June 17, 2018. This Internet-Draft will expire on June 21, 2018.
Copyright Notice Copyright Notice
Copyright (c) 2017 IETF Trust and the persons identified as the Copyright (c) 2017 IETF Trust and the persons identified as the
document authors. All rights reserved. document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents Provisions Relating to IETF Documents
(http://trustee.ietf.org/license-info) in effect on the date of (http://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents publication of this document. Please review these documents
skipping to change at page 13, line 21 skipping to change at page 13, line 21
similar identifiers for service providers. SPCs can be used to similar identifiers for service providers. SPCs can be used to
indirectly name all of the telephone numbers associated with that indirectly name all of the telephone numbers associated with that
identifier for a service provider. identifier for a service provider.
2. Telephone numbers can be listed in a range (in the 2. Telephone numbers can be listed in a range (in the
TelephoneNumberRange format), which consists of a starting TelephoneNumberRange format), which consists of a starting
telephone number and then an integer count of numbers within the telephone number and then an integer count of numbers within the
range, where the valid boundaries of ranges may vary according to range, where the valid boundaries of ranges may vary according to
national policies. The count field is only applicable to start national policies. The count field is only applicable to start
fields' whose values do not include "*" or "#" (i.e., a fields' whose values do not include "*" or "#" (i.e., a
TelephoneNumber that does not include "*" or "#"). count never TelephoneNumber that does not include "*" or "#"). count MUST
makes the number increase in length (i.e., a TelephoneNumberRange NOT make the number increase in length (i.e., a
with TelephoneNumber=10 with a count=91 will address numbers TelephoneNumberRange with TelephoneNumber=10 with a count=91 is
10-99); formally, given the inputs count and TelephoneNumber of invalid); formally, given the inputs count and TelephoneNumber of
length D the end of the TelephoneNumberRange is: length D TelephoneNumber + count MUST be less than 10^D.
MIN(TelephoneNumber + count, 10^D - 1).
3. A single telephone number can be listed (as a TelephoneNumber). 3. A single telephone number can be listed (as a TelephoneNumber).
Note that because large-scale service providers may want to associate Note that because large-scale service providers may want to associate
many numbers, possibly millions of numbers, with a particular many numbers, possibly millions of numbers, with a particular
certificate, optimizations are required for those cases to prevent certificate, optimizations are required for those cases to prevent
the certificate size from becoming unmanageable. In these cases, the the certificate size from becoming unmanageable. In these cases, the
TN Authorization List may be given by reference rather than by value, TN Authorization List may be given by reference rather than by value,
through the presence of a separate certificate extension that permits through the presence of a separate certificate extension that permits
verifiers to either (1) securely download the list of numbers verifiers to either (1) securely download the list of numbers
 End of changes. 4 change blocks. 
10 lines changed or deleted 9 lines changed or added

This html diff was produced by rfcdiff 1.46. The latest version is available from http://tools.ietf.org/tools/rfcdiff/