IETF Logo Mail Archive

[AVTCORE] Re: STUN SHA-256 usage in WebRTC (ICE and TURN)

Philipp Hancke <philipp.hancke@googlemail.com> Wed, 29 April 2026 17:23 UTC

Return-Path: <philipp.hancke@googlemail.com>
X-Original-To: avt@mail2.ietf.org
Delivered-To: avt@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 25B79E5D7410 for <avt@mail2.ietf.org>; Wed, 29 Apr 2026 10:23:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1777483414; bh=9peI6zfs3/83mepTXyPtXZNVHXjmpo5xprv3UqjJcDI=; h=References:In-Reply-To:From:Date:Subject:To:Cc; b=xRif/2dzORQPiptxYhWmJHvpWX81pdZeqZia29woXdPhZXpDVM9e8DOrTsUUdy8Gi /HVigjWN8XOYDDuXb71fWQwzibUHvKqQhNYkwqSCyuOSN4vOI2Zft35yl+fTsjgivC quh4oEi3fpFE2XqgpDd4pX3Tah10cYwPLPRbSqE4=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.098
X-Spam-Level:
X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=googlemail.com
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k4w5oZ1YK8Sm for <avt@mail2.ietf.org>; Wed, 29 Apr 2026 10:23:33 -0700 (PDT)
Received: from mail-qt1-x834.google.com (mail-qt1-x834.google.com [IPv6:2607:f8b0:4864:20::834]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id F3A00E5D7394 for <avt@ietf.org>; Wed, 29 Apr 2026 10:23:31 -0700 (PDT)
Received: by mail-qt1-x834.google.com with SMTP id d75a77b69052e-50d75bfb259so91672231cf.1 for <avt@ietf.org>; Wed, 29 Apr 2026 10:23:31 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1777483405; cv=none; d=google.com; s=arc-20240605; b=lSp0qFPScdypVOI+4fKzLSABci3+Nb05T7/sxJ+1TMotkzhC2moch0xMhKnf2NLo3I FC2dPDvtD+WBkFhWTZGqbiNSole3KV5n4bVLXOwqHDfUCob8z6MQcU/jXzgXpqAugqaJ l4+FTXc6zSktJu5Zh+AsDDNYffEbwlhO8d+JJRSBcKyvUuiWxva8FFjdLSDsuG4aT9DB BrsRyIV8r9zRHqaZuUa5Re8z7FotUP5k+SwzzKWE0c8uOc47Lzyw87hUZTYaYs8Vs+sp 1vYRBEpcP2R6Gp5gu7q5KsaDDRKD5XxSXVG/JJzRgYzDnA4jGa+2KfHgcVvnyG5qDsBn cP2A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20240605; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:dkim-signature; bh=9peI6zfs3/83mepTXyPtXZNVHXjmpo5xprv3UqjJcDI=; fh=AbzXTwh9ygy8Dhlgaq6bIVYD4Wwa0MKwqCJsnjC7b60=; b=RSgtwVPVvJx7xNYFcfewNFKslTWGN3lMi98ZzkiYy6v8BodNaWJAjcQoluw6PS04T7 /NdjpIkzPCbRygKt5apF6CgkzmqOoEIRv9RSNnSu+hHQmzKyMLDTrE/Rn2is5UkjiEM0 xUX4kkKKLvkJLbWIuTaA8UW+yoTKpjJBCQBviDRXz0LQ3akYneEoR9zUqohtlmq4lepJ RtIh1M7DopKnc8+0erDvml1aZCwQbVpGa+bvwVY4VFexy6y8qUf3ye2RHGiuirDVaIOA vJc0bW1aqu2QsfESaYY9RDEcuhcLPgHhprLkmhsMyy0bq2eb4Z0VSVnSfzef3V+yYAMv dkZg==; darn=ietf.org
ARC-Authentication-Results: i=1; mx.google.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20251104; t=1777483405; x=1778088205; darn=ietf.org; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:from:to:cc:subject:date:message-id:reply-to; bh=9peI6zfs3/83mepTXyPtXZNVHXjmpo5xprv3UqjJcDI=; b=JpjAQ9se+CJdir9kY/jf+NKS4jUY6tRd4xj/jpcdtjEqGo18fKpViTZC3rseFEfzGc tTiqTrpSmY9vVGQPrWXYv25I8+N35VbtnaLJb1bWilvbod/0Bo0kNq4tmlO8sJQIXmqf Wmql3a2YhzTxjF1VrEzfJaZAO4jnFPxcou7TW3l+LRiDYjXIx4XEkPyjFY63GNNEm617 JAgChhxf6Cf7AlwbJ9CbEdhHPUWSVWJZBzRYxeOjq8SbFnrTWc02yYyLQh8JgyOfsT4X TjIaHVznSXGWILv/yOxG8C6lRVsQPSeQWjoh+LxLjNrP4Br7M/oXtPKqVncBLd3vtSdz IFLg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1777483405; x=1778088205; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-gg:x-gm-message-state:from:to:cc:subject:date :message-id:reply-to; bh=9peI6zfs3/83mepTXyPtXZNVHXjmpo5xprv3UqjJcDI=; b=okF7sxFp7U+3/M4uoJq+zaz6xEx9aoL8BZg6GbEnqIjYhcFZzoxuTJB4KfxlF4+72n EPmwlhU2D32Zptl4CFLEmRNp3PvGZIPUb+spmY9O5oAU3oMrD+A6s7sOGQT/WeNqecc/ eMdW99PF8sVxi0YEecAOEr7gLVruzZxdBCDccjwhrWK4VgFkHBds3+Zyhcyea5qt5KAF FNJZ6UCVepaW44AYJ7oYIV72VyercZ2xSthqEMbaHv9GBO2JXyh2oSK/TnSvjy32wMVc ZKmWFWb2UDq091USz8stbq+UfgZzT5GF4lRlb63uqK+CxihOvpzoQC+DP3jY24oy0AMd NIeg==
X-Gm-Message-State: AOJu0YwT47I3lDyGgN+OVNTSGmfjczGmwU+qZeZNW2Eeb3cAhgj3A4Vk CKtMf2sPEkFfBb/M+R8Xe6tPDknuB0E+MiFHvm8nRcf9sh1H/SHdxyVVIh+IUhbXknzDmx18hPl GoFH35LNpxsxIx13/Zwz7DBj5UfmqIVs=
X-Gm-Gg: AeBDievJzIh7DuQ7vJo/X54hwwYx7LBL37Ph2ANWJF+c7gNKkxZ91Jz/dwugBAphro6 75HAWWjGHo1aeCIIldFYhLW8Dn/kUQG+kQnXsUDn6R5K0BLPLwUoluyrZoeqH2dy4gy4WMXCE9k x18zG8HQggMBQyRh1P2XzvLR/1MbeQwQMTdDBa1891BnRI+HAbc23KOKOVa2jF+GSpu6+to6DDd IfaJfLEi03e2OpmcVfwzGYMj+HYjRsP7YAO+0j20BWXDkGJGD/53J233ZYKPemOHZN1iW4/5aOn lietsbRWrBQgY7m52+uSbbcHbVesfF2R85VgRd8+NgQWvxUoxlBwpI0iBFY9nfLkHobUBuNoUxC 7/WWtAviv4HBXIudSCI2o6eStBVTh1uP7T6W+cANvmNdHp6ERnqLert27Lio1gQ==
X-Received: by 2002:a05:622a:1f14:b0:50f:ec27:5d05 with SMTP id d75a77b69052e-5101892192cmr72229661cf.10.1777483405147; Wed, 29 Apr 2026 10:23:25 -0700 (PDT)
MIME-Version: 1.0
References: <CADxkKiLYgvD55xnBQCXMVqrzSepkA5VjLshAheCXtg7+G9BHpg@mail.gmail.com> <CAD5OKxuc-eadFOG8GgqXa9QyJ6THeoRhR2G=q9vRi0_UEjqmJA@mail.gmail.com> <CAD5OKxtNVHPgWnJhsgjf8n0ZUdE0be2QVaAyGe0Q_8vOiXpKTA@mail.gmail.com>
In-Reply-To: <CAD5OKxtNVHPgWnJhsgjf8n0ZUdE0be2QVaAyGe0Q_8vOiXpKTA@mail.gmail.com>
From: Philipp Hancke <philipp.hancke@googlemail.com>
Date: Wed, 29 Apr 2026 19:23:14 +0200
X-Gm-Features: AVHnY4KRXJ0VEE2cPJ6mwIww4eA0bSRntGcWLimkaNmy28oOqJfjF5PJ2Tyz3yU
Message-ID: <CADxkKi+fW0Z209FWzqFE+WyHE6s+TR4tKgbpingJyUeCyR1SPg@mail.gmail.com>
To: Roman Shpount <roman@telurix.com>
Content-Type: multipart/alternative; boundary="000000000000f5472606509c9a28"
Message-ID-Hash: FJ2DC2D5ZHDFURIQ3WF7WXI4CEW2RVNH
X-Message-ID-Hash: FJ2DC2D5ZHDFURIQ3WF7WXI4CEW2RVNH
X-MailFrom: philipp.hancke@googlemail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-avt.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: IETF AVTCore WG <avt@ietf.org>, tsvwg@ietf.org
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [AVTCORE] Re: STUN SHA-256 usage in WebRTC (ICE and TURN)
List-Id: Audio/Video Transport Core Maintenance <avt.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/avt/4-8cfFr6wulBurx93-fFLa3LiLM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/avt>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Owner: <mailto:avt-owner@ietf.org>
List-Post: <mailto:avt@ietf.org>
List-Subscribe: <mailto:avt-join@ietf.org>
List-Unsubscribe: <mailto:avt-leave@ietf.org>

Am Mi., 29. Apr. 2026 um 18:32 Uhr schrieb Roman Shpount <roman@telurix.com
>:

> On Wed, Apr 29, 2026 at 12:20 PM Roman Shpount <roman@telurix.com> wrote:
>
>> It looks like the details of the MESSAGE-INTEGRITY-SHA256 implementation
>> were fully considered. What is described in RFC 8489 is counterproductive.
>> If MESSAGE-INTEGRITY-SHA256 is comprehension-required, including
>> MESSAGE-INTEGRITY also makes STUN messages less secure. It should have been
>> in the comprehension-optional range.
>>
>> You should also consider the increase in STUN message size. Adding
>> optional MESSAGE-INTEGRITY-SHA256 will result in an extra 32 bytes in each
>> STUN request.
>>
>
> I meant to say the details of the MESSAGE-INTEGRITY-SHA256 implementation
> were NOT fully considered.
>

Heh! I assume the RFC is not fixable as an error but requires an update?

The downgrade attack argument is good (applies to most hash agility plans I
have seen though?) but if we need an ice-option or url parameter anyway it
goes away.
This reduces the concern about increasing overhead on initial messages
requests would have to include both variants (4+20 plus 4 + 32) so we are
only increasing packet size by 12 bytes?

Thanks Roman for helping me think!

>

v2.46.0 | Report a Bug | By Email | System Status