Re: [AVTCORE] Suite B Profile for DTLS-SRTP Internet-Draft

["Igoe, Kevin M." <kmigoe@nsa.gov>]

Thanks for sparing the time to review this.  At this late date we'll
keep going as an individual submission.  With a bit of luck this 
will be finished before the snow flies.

> -----Original Message-----
> From: Magnus Westerlund [mailto:magnus.westerlund@ericsson.com]
> Sent: Friday, June 10, 2011 11:29 AM
> To: Igoe, Kevin M.
> Cc: Glen Zorn; avt@ietf.org
> Subject: Re: [AVTCORE] Suite B Profile for DTLS-SRTP Internet-Draft
> 
> Hi Igor,
> 
> I have now actually reviewed your document in a bit more detail. And I
> am sorry for having confused the matter a bit. I didn't quite
> understand
> the purpose of this document initially. But it is clear to me now that
> your draft doesn't define new components to SRTP.
> 
> My understanding is that it really only specifies the DTLS-SRTP
> protection profile and acceptable procedures to meet the suite-B
> requirements when it comes to the DTLS procedures.
> 
> Thus I don't think it is necessary for us to have it as a WG item.
> Although I think it would be good that you inform the WG on the
> progress
> and let us know about any ongoing last calls.
> 
> Do you plan to continue to publish this as an individual submission
> directly to the Area Director, or find a WG home for it?
> 
> 
> 
> As an suggestion for how to improve the document, I note that you
> appear
> to be lacking an IANA consideration section. You need such a one to
> request that the 4 specified DTLS-SRTP protection profiles are
> registered.
> 
> Best Regards
> 
> Magnus
> 
> 
> 
> 
> On 2011-06-01 20:58, Igoe, Kevin M. wrote:
> > Our intent wasn't to break new ground by introducing a new primitives
> (GCM)
> >
> > and DTLS) into SRTP, but rather to follow in the footsteps of an
> > existing  work:
> >
> >
> >
> > For GCM we have:
> >
> > ---------------------------------------------------------------------
> ----
> >
> > Network Working Group                                          D.
> McGrew
> >
> > Internet Draft                                       Cisco Systems,
> Inc.
> >
> > Intended Status: Informational                          January 26,
> 2011
> >
> > Expires: July 30, 2011
> >
> >
> >
> >
> >
> >     AES-GCM and AES-CCM Authenticated Encryption in Secure RTP (SRTP)
> >
> >                       draft-ietf-avt-srtp-aes-gcm-01
> >
> >
> >
> > Abstract
> >
> >
> >
> >    This document defines how AES-GCM, AES-CCM, and other
> Authenticated
> >
> >    Encryption with Associated Data (AEAD) algorithms, can be used to
> >
> >    provide confidentiality and data authentication mechanisms in the
> >
> >    SRTP protocol.
> >
> > ---------------------------------------------------------------------
> ----
> >
> > (This had an earlier incarnation as draft-mcgrew-srtp-aes-gcm-01, but
> this
> >
> > draft eventually expired.)
> >
> >
> >
> > For DTLS we have:
> >
> > ---------------------------------------------------------------------
> ----
> >
> > Internet Engineering Task Force (IETF)                         D.
> McGrew
> >
> > Request for Comments: 5764                                 Cisco
> Systems
> >
> > Category: Standards Track                                    E.
> Rescorla
> >
> > ISSN: 2070-1721                                               RTFM,
> Inc.
> >
> >                                                                 May
> 2010
> >
> >
> >
> >
> >
> >   Datagram Transport Layer Security (DTLS) Extension to Establish
> Keys
> >
> >            for the Secure Real-time Transport Protocol (SRTP)
> >
> >
> >
> > Abstract
> >
> >
> >
> >    This document describes a Datagram Transport Layer Security (DTLS)
> >
> >    extension to establish keys for Secure RTP (SRTP) and Secure RTP
> >
> >    Control Protocol (SRTCP) flows.  DTLS keying happens on the media
> >
> >    path, independent of any out-of-band signalling channel present.
> >
> > ---------------------------------------------------------------------
> >
> >
> >
> > There is an existing Suite B for TLS (currently undergoing a "bis"):
> >
> > ---------------------------------------------------------------------
> >
> > Network Working Group                                          M.
> Salter
> >
> > Request for Comments: 5430                      National Security
> Agency
> >
> > Category: Informational                                      E.
> Rescorla
> >
> >                                                        Network
> Resonance
> >
> >                                                               R.
> Housley
> >
> >                                                           Vigil
> Security
> >
> >                                                               March
> 2009
> >
> >
> >
> >
> >
> >            Suite B Profile for Transport Layer Security (TLS)
> >
> >
> >
> > Status of This Memo
> >
> >
> >
> >    This memo provides information for the Internet community.  It
> does
> >
> >    not specify an Internet standard of any kind.  Distribution of
> this
> >
> >    memo is unlimited.
> >
> > ---------------------------------------------------------------------
> -
> >
> >
> >
> >
> >
> > We wish only to show how to put these three documents together to get
> >
> > Suite B for DTLS-SRTP.
> >
> >
> >
> > Do you still think we should go thru avtcore?
> 
> --
> 
> Magnus Westerlund
> 
> ----------------------------------------------------------------------
> Multimedia Technologies, Ericsson Research EAB/TVM
> ----------------------------------------------------------------------
> Ericsson AB                | Phone  +46 10 7148287
> Färögatan 6                | Mobile +46 73 0949079
> SE-164 80 Stockholm, Sweden| mailto: magnus.westerlund@ericsson.com
> ----------------------------------------------------------------------