Re: [AVTCORE] SRTP: Retransmission or replay attacking? How to discriminate in e2ae environment?
Magnus Westerlund <magnus.westerlund@ericsson.com> Tue, 30 October 2012 09:06 UTC
Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: avt@ietfa.amsl.com
Delivered-To: avt@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 951E921F84A5 for <avt@ietfa.amsl.com>; Tue, 30 Oct 2012 02:06:45 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -106.249
X-Spam-Level:
X-Spam-Status: No, score=-106.249 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HELO_EQ_SE=0.35, RCVD_IN_DNSWL_MED=-4, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dL9UrOiOAmaM for <avt@ietfa.amsl.com>; Tue, 30 Oct 2012 02:06:44 -0700 (PDT)
Received: from mailgw1.ericsson.se (mailgw1.ericsson.se [193.180.251.45]) by ietfa.amsl.com (Postfix) with ESMTP id D423821F849A for <avt@ietf.org>; Tue, 30 Oct 2012 02:06:37 -0700 (PDT)
X-AuditID: c1b4fb2d-b7f1e6d000002d2c-af-508f989bc3d4
Received: from esessmw0197.eemea.ericsson.se (Unknown_Domain [153.88.253.125]) by mailgw1.ericsson.se (Symantec Mail Security) with SMTP id 96.C7.11564.B989F805; Tue, 30 Oct 2012 10:06:35 +0100 (CET)
Received: from [127.0.0.1] (153.88.115.8) by esessmw0197.eemea.ericsson.se (153.88.115.88) with Microsoft SMTP Server id 8.3.279.1; Tue, 30 Oct 2012 10:06:34 +0100
Message-ID: <508F9899.5000102@ericsson.com>
Date: Tue, 30 Oct 2012 10:06:33 +0100
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:16.0) Gecko/20121010 Thunderbird/16.0.1
MIME-Version: 1.0
To: avt@ietf.org
References: <DE315914FFC19345B99B2A4B7F595ED00E426885@CNSHJMBX03.ad4.ad.alcatel.com>
In-Reply-To: <DE315914FFC19345B99B2A4B7F595ED00E426885@CNSHJMBX03.ad4.ad.alcatel.com>
X-Enigmail-Version: 1.4.5
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 8bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrBJMWRmVeSWpSXmKPExsUyM+Jvre7sGf0BBj09KhYve1ayOzB6LFny kymAMYrLJiU1J7MstUjfLoErY+mG8oLP/BXPps5jamB8x9PFyMkhIWAi0d20kRnCFpO4cG89 WxcjF4eQwElGid2T7rBDOMsZJR7PvcgCUsUroC3R9X4VI4jNIqAqsf7YTjYQm03AQuLmj0Yg m4NDVCBY4nlHMUS5oMTJmU/AWkUEBCRWbP8LZgsLZEscXLKPFcQWEgiROHLqGCNIK6dAqMS5 eUoQ90hKvH3/Cuw2ZgE9iSlXWxghbHmJ5q2zmSFatSUamjpYJzAKzkKybRaSlllIWhYwMq9i ZM9NzMxJLzfcxAgMvYNbfuvuYDx1TuQQozQHi5I4L1fSfn8hgfTEktTs1NSC1KL4otKc1OJD jEwcnFINjAH7GO62lFXOeTZb5Xbj/4MNK4uFrucs/6k1g/GnMM/dpqOyGQJsty+t0Ip8KcR3 1WHh+hunZnjyxl9kk2VbH3yXIXyDWfTz/sl3VirsMThixnb2kF7JywlsDPG51gVV39qk99px nvR3lHNRn5x6NonNTotjZcSEe57zN+Tl5bz76dOmw7e9UImlOCPRUIu5qDgRAAblrdwLAgAA
Subject: Re: [AVTCORE] SRTP: Retransmission or replay attacking? How to discriminate in e2ae environment?
X-BeenThere: avt@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Audio/Video Transport Core Maintenance <avt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/avt>
List-Post: <mailto:avt@ietf.org>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Oct 2012 09:06:45 -0000
On 2012-10-30 06:57, HE Bing wrote: > Dear all, > > RTP/SAVTF is adopted in WebRTC. > For video stream, SRTP sender will do retransmission for the SRTP > packets indicated by RTCP FB NACK packets. The retransmitted SRTP > packets are exactly identical to the original packets (one exception is > Google Chrome WebRTC use RTP header extension per RFC 5450 so that every > retransmitted SRTP packet has different header extension from the > original one) I would like to point out that for RTP retransmission it is expected that RFC 4588 is used for the retransmitted packets. That specification exist to address the issue that retransmitting an RTP packet as an identical copy doesn't work as it destroys all the statistics and tracking of packets as well as the below SRTP replay issue. > > Now we see a problem in valid e2ae environment that can be simplified as > below: > *A* (Browser)<---(SRTP, SRTCP)--->*IMS boder*<---((RTP, RTCP)--->*B* > (IMS client) > Where IMS border works in RTP transparent forwarding mode with > additional encryption/decryption on browser side. > > If an A party originated packet was lost on the way from IM border to B > party, this packet will be *marked as received in* IMS border SRTP > *replay-check list*. Upon receipt of the RTCP FB NACK packet originated > by B party, A will resend the packet which will be *discarded* by IMS > border when doing replay checking job. > > Is there any way to resolve this issue? Use RFC 4588 retransmission payload and this issue goes away. Cheers Magnus Westerlund ---------------------------------------------------------------------- Multimedia Technologies, Ericsson Research EAB/TVM ---------------------------------------------------------------------- Ericsson AB | Phone +46 10 7148287 Färögatan 6 | Mobile +46 73 0949079 SE-164 80 Stockholm, Sweden| mailto: magnus.westerlund@ericsson.com ----------------------------------------------------------------------