IETF Logo Mail Archive

Re: [AVT] FW: New Version Notificationfor draft-begen-avt-rtp-cnames-01

"Dan Wing" <dwing@cisco.com> Thu, 20 May 2010 23:03 UTC

Return-Path: <dwing@cisco.com>
X-Original-To: avt@core3.amsl.com
Delivered-To: avt@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 262FA3A67B5 for <avt@core3.amsl.com>; Thu, 20 May 2010 16:03:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -9.287
X-Spam-Level:
X-Spam-Status: No, score=-9.287 tagged_above=-999 required=5 tests=[AWL=-0.547, BAYES_20=-0.74, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EpC1GR-giUBE for <avt@core3.amsl.com>; Thu, 20 May 2010 16:03:11 -0700 (PDT)
Received: from sj-iport-6.cisco.com (sj-iport-6.cisco.com [171.71.176.117]) by core3.amsl.com (Postfix) with ESMTP id E4FB53A67B2 for <avt@ietf.org>; Thu, 20 May 2010 16:03:10 -0700 (PDT)
Authentication-Results: sj-iport-6.cisco.com; dkim=neutral (message not signed) header.i=none
X-IronPort-AV: E=Sophos;i="4.53,273,1272844800"; d="scan'208";a="532953972"
Received: from sj-core-2.cisco.com ([171.71.177.254]) by sj-iport-6.cisco.com with ESMTP; 20 May 2010 23:03:04 +0000
Received: from dwingwxp01 ([10.32.240.196]) by sj-core-2.cisco.com (8.13.8/8.14.3) with ESMTP id o4KN34Mu026833; Thu, 20 May 2010 23:03:04 GMT
From: Dan Wing <dwing@cisco.com>
To: 'Roni Even' <Even.roni@huawei.com>, "'Ali C. Begen (abegen)'" <abegen@cisco.com>, avt@ietf.org
References: <04CAD96D4C5A3D48B1919248A8FE0D540C044FF3@xmb-sjc-215.amer.cisco.com><046601caf6e7$633c3990$c4f0200a@cisco.com> <01fc01caf7ea$ebdcbb40$c39631c0$%roni@huawei.com>
Date: Thu, 20 May 2010 16:03:04 -0700
Message-ID: <0cd401caf870$9aac01f0$c4f0200a@cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
In-Reply-To: <01fc01caf7ea$ebdcbb40$c39631c0$%roni@huawei.com>
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3350
Thread-Index: AcrsX4HHCnbPB7dpQ0+55RZub3M3ZgAAGcuQAqCX8hAAQSpLcAAiF1Sw
Cc: draft-begen-avt-rtp-cnames@tools.ietf.org
Subject: Re: [AVT] FW: New Version Notificationfor draft-begen-avt-rtp-cnames-01
X-BeenThere: avt@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Audio/Video Transport Working Group <avt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/avt>
List-Post: <mailto:avt@ietf.org>
List-Help: <mailto:avt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 May 2010 23:03:12 -0000

 

> -----Original Message-----
> From: avt-bounces@ietf.org [mailto:avt-bounces@ietf.org] On 
> Behalf Of Roni Even
> Sent: Thursday, May 20, 2010 12:06 AM
> To: 'Dan Wing'; 'Ali C. Begen (abegen)'; avt@ietf.org
> Cc: draft-begen-avt-rtp-cnames@tools.ietf.org
> Subject: Re: [AVT] FW: New Version Notificationfor 
> draft-begen-avt-rtp-cnames-01
> 
> Hi,
> 
> > 
> > * Question: Are there any ideas on the table for generating a unique
> > identifier that wouldn't be useful for traffic analysis?  That is, a
> > unique
> > identifier that is generated on each call?  For example, a BASE64-
> > encoded
> > SHA1-HMAC of one of the three pieces of information 
> currently suggested
> > in the
> > memo (IPv6 address, unique FQDN, UUID), where the 'secret' 
> is changed
> > for
> > every new RTP session?  This seems it could eliminate 
> traffic analysis
> > concerns.
> > 
> 
> RFC 3550 says that one of the usage of RTCP is for monitoring and "To
> facilitate third-party monitoring, the CNAME SHOULD be 
> suitable for either a program or a person to locate the source." 


Two points about that:

  o  This requirement is at odds with the need, in some RTP
     applicatoins, to thwart traffic analysis.  
  o  I find it VERY confusing to need to read both RFC3550's
     section on CNAMEs and draft-begen-avt-rtp-cnames and reach 
     some create my own Vulcan mind meld.  This is unnecessarily
     confusing.  It would be far cleaner to have one canonical
     place to read about CNAMEs.  

     So, can we pull all of the requirements and justification
     text for those requirements into draft-begen-avt-rtp-cnames,
     and have that supercede RFC3550's suggestions and
     requirements about CNAMEs?

> 
> 
> Other comments
> 
> 1. For the UUID I assume the proposal is to use the string 
> representation of the UUID maybe as a URN. 

The CNAME doesn't need the 9 characters of "urn:uuid:", though.

> 2. As for the structure of CNAME, section 6.5.1 of RFC 3550 
> has the cname
> composed of user and domain name. it also says that
> "The user name SHOULD be in a form that a program such as 
> "finger" or "talk"
> could use, i.e., it typically is the login name rather than 
> the personal
> name.  The host name is not necessarily identical to the one in the
> participant's electronic mail address. "
> Maybe this document should recommend how to create a unique 
> host part of the
> CNAME and not the whole CNAME.

I don't know how to do that, but maybe someone else does.

-d


> Regards
> Roni Even
> 
> 
> 
> _______________________________________________
> Audio/Video Transport Working Group
> avt@ietf.org
> https://www.ietf.org/mailman/listinfo/avt

v2.23.0 | Report a Bug | By Email