{"draft":"draft-ietf-stir-rfc4474bis-16","doc_id":"RFC8224","title":"Authenticated Identity Management in the Session Initiation Protocol (SIP)","authors":["J. Peterson","C. Jennings","E. Rescorla","C. Wendt"],"format":["ASCII","HTML"],"page_count":"46","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"Secure Telephone Identity Revisited","abstract":"The baseline security mechanisms in the Session Initiation Protocol\r\n(SIP) are inadequate for cryptographically assuring the identity of\r\nthe end users that originate SIP requests, especially in an\r\ninterdomain context.  This document defines a mechanism for securely\r\nidentifying originators of SIP requests.  It does so by defining a\r\nSIP header field for conveying a signature used for validating the\r\nidentity and for conveying a reference to the credentials of the\r\nsigner.\r\n\r\nThis document obsoletes RFC 4474.","pub_date":"February 2018","keywords":["SIP","Secure Origin Identification","Communication Security","RTCWeb","Certificates","Real-Time Communication"],"obsoletes":["RFC4474"],"obsoleted_by":[],"updates":[],"updated_by":["RFC8946"],"see_also":[],"doi":"10.17487\/RFC8224","errata_url":"https:\/\/www.rfc-editor.org\/errata\/rfc8224"}