[OpenSIPS-Devel] Presence Subscriptions from External Domains
Olle E. Johansson
oej at edvina.net
Thu Aug 26 13:34:34 CEST 2010
26 aug 2010 kl. 12.46 skrev Adrian Georgescu:
> Hello,
>
> I have a question maybe someone can help or comment.
>
> How can one protect in the real world against faking the identity of presence subscriptions originating from foreign domains?
>
> The scenario is:
>
> Once userA at domainA accepts presence subscriptions from userB at domainB and his pre-rules is updated with this information, nobody stops somebody else to impersonate userB at domainB to send subscribe messages from any source and presenting the same From header.
>
> How can the server that serves domainA check for the real identity of the foreign subscriber?
>
> Can anyone comment what would be a good practical solution?
No, what you're talking about is trust between domains. SIP identity is trying to get a grip on that, as well as a few other identity solutions, including S/MIME in the good ol' RFC 3261.
/O
More information about the Devel
mailing list