Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not-mandatory-14.txt> (Securing the RTP Protocol Framework: Why RTP Does Not Mandate a Single Media Security Solution) to Informational RFC
Bernard Aboba <bernard_aboba@hotmail.com> Fri, 06 December 2013 15:30 UTC
Return-Path: <bernard_aboba@hotmail.com>
X-Original-To: avt@ietfa.amsl.com
Delivered-To: avt@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CA9EC1ADA5D; Fri, 6 Dec 2013 07:30:46 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RpmhG07AxGsL; Fri, 6 Dec 2013 07:30:45 -0800 (PST)
Received: from blu0-omc2-s28.blu0.hotmail.com (blu0-omc2-s28.blu0.hotmail.com [65.55.111.103]) by ietfa.amsl.com (Postfix) with ESMTP id 0562F1AC863; Fri, 6 Dec 2013 07:30:44 -0800 (PST)
Received: from BLU169-W109 ([65.55.111.72]) by blu0-omc2-s28.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Fri, 6 Dec 2013 07:30:41 -0800
X-TMN: [qA/OrMoukjn2OkIYLy57eRgwo6V1fS9T]
X-Originating-Email: [bernard_aboba@hotmail.com]
Message-ID: <BLU169-W109A0CACEE0605DA8F317F893D60@phx.gbl>
Content-Type: multipart/alternative; boundary="_1aaffa13-2edb-403f-975a-771f5ef3d1f3_"
From: Bernard Aboba <bernard_aboba@hotmail.com>
To: Colin Perkins <csp@csperkins.org>, Cullen Jennings <fluffy@cisco.com>
Date: Fri, 06 Dec 2013 07:30:40 -0800
Importance: Normal
In-Reply-To: <89E376B0-5555-40D8-A59E-0286CABC856C@csperkins.org>
References: <20131122220752.31098.83432.idtracker@ietfa.amsl.com>, <1286562B-6C43-4ADC-8999-C70CA356F587@cisco.com>, <89E376B0-5555-40D8-A59E-0286CABC856C@csperkins.org>
MIME-Version: 1.0
X-OriginalArrivalTime: 06 Dec 2013 15:30:41.0010 (UTC) FILETIME=[1F0B2D20:01CEF298]
Cc: "ietf@ietf.org" <ietf@ietf.org>, "avt@ietf.org WG" <avt@ietf.org>
Subject: Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not-mandatory-14.txt> (Securing the RTP Protocol Framework: Why RTP Does Not Mandate a Single Media Security Solution) to Informational RFC
X-BeenThere: avt@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Audio/Video Transport Core Maintenance <avt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/avt/>
List-Post: <mailto:avt@ietf.org>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Dec 2013 15:30:47 -0000
Colin said: > I'm confused about your objection, since this draft states that we need to do exactly as you propose. [BA] I agree with Colin. The document is consistent with the Danvers Doctrine and more recently expressed sentiments. >From Section 6: Given the variability of the classes of application that use RTP, and the variety of the currently available security mechanisms described in [I-D.ietf-avtcore-rtp-security-options], no one set of MTI security options can realistically be specified that apply to all classes of RTP applications. Documents that define an interoperable class of applications using RTP are subject to [RFC3365], and so need to specify MTI security mechanisms. This is because such specifications do fully specify interoperable applications that use RTP. Examples of such documents under development in the IETF at the time of this writing are the RTCWEB Security Architecture [I-D.ietf-rtcweb-security-arch] and the Real Time Streaming Protocol 2.0 (RTSP) [I-D.ietf-mmusic-rfc2326bis]. It is also expected that a similar document will be produced for voice-over-IP applications using SIP and RTP.
- [AVTCORE] Last Call: <draft-ietf-avt-srtp-not-man… The IESG
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Cullen Jennings (fluffy)
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Roni Even
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Colin Perkins
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Bernard Aboba
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Cullen Jennings (fluffy)
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Cullen Jennings (fluffy)
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Martin Thomson
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Colin Perkins
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Martin Thomson
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Cullen Jennings (fluffy)
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Pete Resnick
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Colin Perkins
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Richard Barnes
- Re: [AVTCORE] Last Call: <draft-ietf-avt-srtp-not… Dale R. Worley