[AVTCORE] [Cryptex] PR for recommending Cryptex over RFC 6904

Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com> Tue, 02 August 2022 09:43 UTC

Return-Path: <sergio.garcia.murillo@gmail.com>
X-Original-To: avt@ietfa.amsl.com
Delivered-To: avt@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AB69DC1907AA for <avt@ietfa.amsl.com>; Tue, 2 Aug 2022 02:43:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.107
X-Spam-Level:
X-Spam-Status: No, score=-2.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fZ6Ljl1JfwZT for <avt@ietfa.amsl.com>; Tue, 2 Aug 2022 02:43:56 -0700 (PDT)
Received: from mail-pf1-x433.google.com (mail-pf1-x433.google.com [IPv6:2607:f8b0:4864:20::433]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 34B77C14CF14 for <avt@ietf.org>; Tue, 2 Aug 2022 02:43:56 -0700 (PDT)
Received: by mail-pf1-x433.google.com with SMTP id b133so13072711pfb.6 for <avt@ietf.org>; Tue, 02 Aug 2022 02:43:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112; h=to:subject:message-id:date:from:mime-version:from:to:cc; bh=vPE5q8a39a4UARQAOJNm5L9IPOgbXO6SqhtVgOgZ+hA=; b=dsh96yKBdefcRob/33o6J3Pt2os0Rv8ZW1+vl4Cdp77Oo/J1yKKjpjTCsY6ARBwHWw YMm6uGANpOZ3ukDU+8w5PjWvZtrCr0e7syM3LFVh3g+3KPAKdJwhfrKi7UfVln78rySA Ns4Fz+J49yZkmHwKvAC2K879UWzibavOHgWn1sf8oGBQ5qCwQJFlVCQYF5oM808soDxO cT8gX8m2zoIH0Qmfk4MExhdPc+JWCLbCT6DIZJNrfohTA7FKCxgATPHPLWJZ9cyMX7QF crKtk5hDdZgMngZ/Smnk6VMqOhe+GTTSLCDYKhVz5uWZupG0l4A5I8Tu1oqy86w2Pmv9 wg0w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=to:subject:message-id:date:from:mime-version:x-gm-message-state :from:to:cc; bh=vPE5q8a39a4UARQAOJNm5L9IPOgbXO6SqhtVgOgZ+hA=; b=4oligvlq7S20G/4tIW91WXS9tRtFYJF/iLt6ElHRnqsn0oi6IvgMWfzvB98dNhR8NF dDdW9eFDGJTN2RZpHwQJgHbb0qaFtT6Yvb5tMTnzmRO8mq27qI0Q4rcws8eObzzNurv7 R+OG8bbaVksuip2JMwYkmDSWtvu0l/kVlJRbfTn6GluV6TkW44T1ojPXZDX6KRJe1u1I Yk9+xf7oSywO5+Av2yyFr093ptu9od811+Lsua/g45zgJdrXnh5VCpQxYhXV8VIXiPyF eDN+XRsjcmFDsv4ZJnxt4SiYS8tLaO/IW72/6FADrZGH8OsR4afT2r7mgTqKb2OSx6Ir 11qQ==
X-Gm-Message-State: ACgBeo3yqoPe1Btk3jsaAX6FlnasAJExaYJ38332r6CtyuDc4KZZ1aAX rOiU2Bx0YuKURifEjbI3uUuyVKDFA+7FaVbTbSWfF2YuJIoD6g==
X-Google-Smtp-Source: AA6agR51Y7ZH5fwuiy+69za0XG4C3zd0mF/FSsOX8M8fJxLhtHFned3IeNVVuTGFNR7b52VsaWSzL2ak67PXyaMuKwI=
X-Received: by 2002:a65:4605:0:b0:41c:3d73:9385 with SMTP id v5-20020a654605000000b0041c3d739385mr4545362pgq.168.1659433435086; Tue, 02 Aug 2022 02:43:55 -0700 (PDT)
MIME-Version: 1.0
From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
Date: Tue, 2 Aug 2022 11:43:37 +0200
Message-ID: <CA+ag07b4ponWbj65UOpVPB2yT5AdUWdbCkSSkk7h7Btcdm99dg@mail.gmail.com>
To: IETF AVTCore WG <avt@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000006d43e805e53ef420"
Archived-At: <https://mailarchive.ietf.org/arch/msg/avt/jDG_atSH5Qekyh46tbECW82-Wdw>
Subject: [AVTCORE] [Cryptex] PR for recommending Cryptex over RFC 6904
X-BeenThere: avt@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Audio/Video Transport Core Maintenance <avt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/avt/>
List-Post: <mailto:avt@ietf.org>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 02 Aug 2022 09:43:56 -0000

Hi all,

As discussed during the last AVTCORE meeting, I have prepared a PR for
adding the recommendation of using Cryptex over RFC6904 adding an exception
in the case of some of the header extensions should be sent in clear for
RTP middleboxes processing:

If both Cryptex and the Encryption of Header Extensions mechanism defined
in {{RFC6904}} are supported by both the sender and receiver, it is
RECOMMENDED to use Cryptex over {{RFC6904}} so all the header extensions
and CSRCS are encrypted, except when some of the header extensions should
be sent in clear so they are processable by RTP middleboxes, in which case,
it SHOULD use {{RFC6904}} instead.

https://github.com/juberti/cryptex/pull/111

Would be great if someone could review the wording as I think it could be
simplified.

I will be on vacation from next week, so I will merge the PR and submit a
final draft by the end of this week if I don't receive any further feedback
on the draft.

Best regards
Sergio