[VOIPSEC] spam and enum
sachin.joglekar at gmail.com
Fri Sep 1 17:52:19 BST 2006
On 9/1/06, Dan Wing <dwing at fuggles.com> wrote:
> Strong identity (sip-identity for SIP, DKIM for email) allows you to
> build whitelists and blackslists -- lists of people you know.
> Then, you need a way to allow people you _don't_ know to still contact
> you. That's the harder problem, and there are several proposals on
> the table for how to solve that.
Without strong identity, anyone can spoof their identity and make
> your whitelist or blacklist useless, and you can't build a system
> that relies on strong identity.
Can you point out those proposals to solve the harder problem? White/black
lists combined with strong identity may work well for individual users, but
isn't being able to receive calls from people you don't know critical to
many businesses? Additionally, how does authentication help us find out
caller's intention behind calling? (i.e. spam or not).
> Voipsec mailing list
> Voipsec at voipsa.org
More information about the Voipsec