[AVTCORE] Document Action: 'Securing the RTP Protocol Framework: Why RTP Does Not Mandate a Single Media Security Solution' to Informational RFC (draft-ietf-avt-srtp-not-mandatory-16.txt)

The IESG <iesg-secretary@ietf.org> Thu, 23 January 2014 17:12 UTC

Return-Path: <iesg-secretary@ietf.org>
X-Original-To: avt@ietfa.amsl.com
Delivered-To: avt@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4346F1A0103; Thu, 23 Jan 2014 09:12:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zUW9zYDHjN32; Thu, 23 Jan 2014 09:12:32 -0800 (PST)
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 072D31A00F4; Thu, 23 Jan 2014 09:12:30 -0800 (PST)
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 4.90.p2
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20140123171230.28712.46658.idtracker@ietfa.amsl.com>
Date: Thu, 23 Jan 2014 09:12:30 -0800
Cc: avtcore chair <avtcore-chairs@tools.ietf.org>, avtcore mailing list <avt@ietf.org>, RFC Editor <rfc-editor@rfc-editor.org>
Subject: [AVTCORE] Document Action: 'Securing the RTP Protocol Framework: Why RTP Does Not Mandate a Single Media Security Solution' to Informational RFC (draft-ietf-avt-srtp-not-mandatory-16.txt)
X-BeenThere: avt@ietf.org
X-Mailman-Version: 2.1.15
List-Id: Audio/Video Transport Core Maintenance <avt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/avt/>
List-Post: <mailto:avt@ietf.org>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Jan 2014 17:12:35 -0000

The IESG has approved the following document:
- 'Securing the RTP Protocol Framework: Why RTP Does Not Mandate a Single
   Media Security Solution'
  (draft-ietf-avt-srtp-not-mandatory-16.txt) as Informational RFC

This document is the product of the Audio/Video Transport Core
Maintenance Working Group.

The IESG contact persons are Richard Barnes and Gonzalo Camarillo.

A URL of this Internet Draft is:
http://datatracker.ietf.org/doc/draft-ietf-avt-srtp-not-mandatory/




Technical Summary

This memo discusses the problem of securing real-time multimedia sessions, and explains why the Real-time Transport Protocol (RTP), and the associated RTP Control Protocol (RTCP), do not mandate a single media security mechanism.  Guidelines for designers and reviewers of future RTP extensions are provided, to ensure that appropriate security mechanisms are mandated, and that any such mechanisms are specified in a manner that conforms with the RTP architecture.


Working Group Summary

This document was already in IESG review and there were concerns from the Security area suggesting that there will be also a document describing the security options. It came back to the AVTcore WG and there is also the security option document that complements this document.
It was reviewed by the WG members and the WG security experts and there are no issues from the WG that is worth noting.
 

Document Quality

This document is an informational document and I would like to mention that Dan Wing and Alan Johnston did a review and made helpful comments that helped with the quality of the document.
There are of course implementations of the media security solutions including SRTP with SDES and DTLS SRTO but this document is only explain why we do not mandate a single solution.


Personnel

Document Shepherd is Roni Even and the responsible AD is Richard Barnes.