IETF Logo Mail Archive

Re: [bfcpbis] Benjamin Kaduk's No Objection on draft-ietf-bfcpbis-rfc4583bis-26: (with COMMENT)

Christer Holmberg <christer.holmberg@ericsson.com> Wed, 05 December 2018 10:36 UTC

Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: bfcpbis@ietfa.amsl.com
Delivered-To: bfcpbis@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B1782130DEF for <bfcpbis@ietfa.amsl.com>; Wed, 5 Dec 2018 02:36:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.759
X-Spam-Level:
X-Spam-Status: No, score=-5.759 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-1.46, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com header.b=dDNLHmTm; dkim=pass (1024-bit key) header.d=ericsson.com header.b=ZSi0iLSQ
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7UECoV8OcBPN for <bfcpbis@ietfa.amsl.com>; Wed, 5 Dec 2018 02:36:53 -0800 (PST)
Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 174FF130DF4 for <bfcpbis@ietf.org>; Wed, 5 Dec 2018 02:36:52 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; d=ericsson.com; s=mailgw201801; c=relaxed/simple; q=dns/txt; i=@ericsson.com; t=1544006210; x=1546598210; h=From:Sender:Reply-To:Subject:Date:Message-ID:To:CC:MIME-Version:Content-Type: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date:Resent-From: Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:In-Reply-To:References:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=SkKaie6v4OHzT32qMtqlufxJPqgSS4KfF2aWrgh3jII=; b=dDNLHmTms+hKmJJ2HRkPjFj8HQvIk0KZp3+txpNPGc6JQ9AkNsNvlqfb164rwjwd D58u0Z8yhEtVuttuLTQKSmCKCqC7CutZ+cBUd1fRibOqVsMYTZgIpalF4qbHIv8u BR1KXGytVyKW9GYAeRMlM2V07Wauzmi3ZVmfw3fDJPA=;
X-AuditID: c1b4fb30-39c4e9e0000043c4-e9-5c07aa427e96
Received: from ESESBMB504.ericsson.se (Unknown_Domain [153.88.183.117]) by sesbmg22.ericsson.net (Symantec Mail Security) with SMTP id 29.A9.17348.24AA70C5; Wed, 5 Dec 2018 11:36:50 +0100 (CET)
Received: from ESESBMR501.ericsson.se (153.88.183.129) by ESESBMB504.ericsson.se (153.88.183.171) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3; Wed, 5 Dec 2018 11:36:26 +0100
Received: from ESESSMB504.ericsson.se (153.88.183.165) by ESESBMR501.ericsson.se (153.88.183.129) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3; Wed, 5 Dec 2018 11:36:26 +0100
Received: from EUR03-AM5-obe.outbound.protection.outlook.com (153.88.183.157) by ESESSMB504.ericsson.se (153.88.183.165) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1466.3 via Frontend Transport; Wed, 5 Dec 2018 11:36:26 +0100
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=SkKaie6v4OHzT32qMtqlufxJPqgSS4KfF2aWrgh3jII=; b=ZSi0iLSQQO3R5nqYqaw+pS4vTHqeNkapJBwZRAKPRFjQnpy7VnVtNHxB/heHnfo3WLke7RytulPTs8OjBwFuaiJPN79sU3MF4GfM1JgUUleIyC8HjmXE1OipxQSynzcFSEYKdy4FiQgBnAuycUEU6/Vuc0bsFPMwZC7TmOkbL1k=
Received: from AM6PR07MB5621.eurprd07.prod.outlook.com (20.178.91.14) by AM6PR07MB4663.eurprd07.prod.outlook.com (20.177.39.12) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1404.17; Wed, 5 Dec 2018 10:36:25 +0000
Received: from AM6PR07MB5621.eurprd07.prod.outlook.com ([fe80::a5dd:4302:feec:e113]) by AM6PR07MB5621.eurprd07.prod.outlook.com ([fe80::a5dd:4302:feec:e113%3]) with mapi id 15.20.1382.023; Wed, 5 Dec 2018 10:36:25 +0000
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: "Charles Eckel (eckelcu)" <eckelcu@cisco.com>, Benjamin Kaduk <kaduk@mit.edu>
CC: "bfcpbis@ietf.org" <bfcpbis@ietf.org>, "mary.ietf.barnes@gmail.com" <mary.ietf.barnes@gmail.com>, The IESG <iesg@ietf.org>, "draft-ietf-bfcpbis-rfc4583bis@ietf.org" <draft-ietf-bfcpbis-rfc4583bis@ietf.org>
Thread-Topic: [bfcpbis] Benjamin Kaduk's No Objection on draft-ietf-bfcpbis-rfc4583bis-26: (with COMMENT)
Thread-Index: AQHUjDeNJYj0YvLoRkeeWdulSFyGfaVwFdUA
Date: Wed, 05 Dec 2018 10:36:25 +0000
Message-ID: <CF3B0A92-4497-41F1-8E8F-66C6327BA46E@ericsson.com>
References: <4809F8B5-F43F-49B0-A638-68935FC5BC5B@cisco.com>
In-Reply-To: <4809F8B5-F43F-49B0-A638-68935FC5BC5B@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.13.0.181109
authentication-results: spf=none (sender IP is ) smtp.mailfrom=christer.holmberg@ericsson.com;
x-originating-ip: [89.166.49.243]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM6PR07MB4663; 6:KIeJ8hViW9AHP4TX7STIpcBxIHOMTcR3ZGJu/YpCLcevTAWWlvuKIAIkSzi1zTgTtF03m8O4JJO4GRIFSY1ugtvry66bWR4kcIvPQEUY4zl+LFqyPDj+yeZEMJSPvGWxABLdb51YOtoIbYGECLIZuM6kY6nSU716rkWuRJbYRvJiLAd/JRXDkqfZat9fJT5jYb2Q2Fwg9Xz2/S8WW6eqkkWkUnDxwRQUOcVfhBSXLOfMrRupWRY7syMhg83uLBZ1TOWH49cjtak6QQ/bLzveTjTUo5sk+xCVWQuaINbmGYHhFb7vjgxv1t8/S+V2FZzQhZmPuLrMi9gdGUeoDGp/GiVFXjYjynm8UTaM/BVQf6JgoXcj2aft3SAg0HPiLrzTsNeALjRNuxO7Ul5dwqfwOvW9WJOF3yxKEBVnl9ImtzPSkBNQynvFGhhsAdGCWHPMUESxlGhap7l51JrynZVTBw==; 5:qqlhLit0VA2RjGRGLVPzr6tm1LZ1/bYwy50PnpP+L/D/WCiXAtaT9MevXlO9GlqqO4kTuU2djBbGXNwrT7Q00RoYYM5E+EYmdl9y+9bAuFlSb0Ps5WWkgYFVS9yAJLI1abiXmCB9R0OS+iRNpOj77kkgJluu6ZZTmDGwFgzuaXI=; 7:MAnnce/Grrz1Cq1+tLC6JATcK7FRrbsl304iwA8gpE02u7ePZ1UoCjW9hcfa8IIHs2Pj0qSyiF7zsbUD9XcsLr8RqaKdKchR6MOLIWI7Yj6OeZAkX8aw/7TAj35RdVLxbgElPmZKQ53bQfNN4Iox7Q==
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: 5c525b6c-9ee6-4522-816a-08d65a9d81d5
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390098)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600074)(711020)(2017052603328)(7153060)(7193020); SRVR:AM6PR07MB4663;
x-ms-traffictypediagnostic: AM6PR07MB4663:
x-microsoft-antispam-prvs: <AM6PR07MB46632CF3F632C3C63F7EA86C93A80@AM6PR07MB4663.eurprd07.prod.outlook.com>
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(8211001083)(6040522)(2401047)(8121501046)(5005006)(93006095)(93001095)(3002001)(3231455)(999002)(944501520)(52105112)(10201501046)(148016)(149066)(150057)(6041310)(20161123562045)(20161123564045)(20161123560045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123558120)(201708071742011)(7699051)(76991095); SRVR:AM6PR07MB4663; BCL:0; PCL:0; RULEID:; SRVR:AM6PR07MB4663;
x-forefront-prvs: 08770259B4
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(346002)(39860400002)(136003)(366004)(376002)(396003)(199004)(189003)(6486002)(66066001)(58126008)(97736004)(39060400002)(4326008)(110136005)(2171002)(6436002)(53936002)(33656002)(68736007)(6246003)(186003)(82746002)(7736002)(6116002)(305945005)(3846002)(6512007)(99286004)(5660300001)(14454004)(229853002)(316002)(478600001)(54906003)(476003)(11346002)(8676002)(486006)(26005)(44832011)(446003)(76176011)(2616005)(102836004)(6506007)(36756003)(8936002)(83716004)(2906002)(71200400001)(71190400001)(86362001)(25786009)(105586002)(106356001)(81156014)(81166006)(256004)(14444005); DIR:OUT; SFP:1101; SCL:1; SRVR:AM6PR07MB4663; H:AM6PR07MB5621.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-microsoft-antispam-message-info: jbRAE4H/m7Us1yGSAlLRq15a38SWQPs53F6Ww9WuX7kwx0XKSx9x8aZS5gKn1P3da54kw7UEFnJyjmvtGb2+x7dWkvxVfnU/89YkPUjrPGXeeefIRwNY0wRi/94h1yox9HGp9JLVOlQ9+F4vrhWn9We+PcousxfGK6fa/4dwlxFSZkw2KtQ/Rbwrfo1nGeugKy+Mr9zuTs1+RS/HiU+Hjq0pS5iUQ9nfre6nL4AuIqU65+LkPzuu22RToCYkWg9Q166E/X4OvF0LUS0hnGegMVViCP8c9oKZgh9FrfK5Yky2G8LyXldtlaA1pfDYbzZIRod5P7CVtSc7Klwg5VzFY2pQusED+gb7fmVxA5z1pcM=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="utf-8"
Content-ID: <29236F0733B41D48B644672DFDB69739@eurprd07.prod.outlook.com>
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: 5c525b6c-9ee6-4522-816a-08d65a9d81d5
X-MS-Exchange-CrossTenant-originalarrivaltime: 05 Dec 2018 10:36:25.2641 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR07MB4663
X-OriginatorOrg: ericsson.com
X-Brightmail-Tracker: H4sIAAAAAAAAA02Sa0iTURjHOe9l77vl6rS8PCl9cNmHDC9p0Atpap8GoRQGqRm12uslr2wq 6oeQytRNUknLzWpKI3WEc17IxDItl2mpaZh0QadCGKmRRZRmub0r+vb7P8/vPOc8cFhSZqG9 2dTMHF6dqUyXiySUPu5ebsAhM5MY/K5rM7feMkBwuqZFhmszfBVxtWtVJNdo1RPcSm8vGSlS VK9aacV9w3tGYTL9IBQXng+QR6gESZiKT0/N49VBB09LUmomJuls08583fhDqgi1yrVIzALe BzevdCAtkrAy/ARB/dQvUgjfEFxd1TP/QoltlhbCbQKql7qdgcKVJEzcKCWETiUB+lt1rml2 BCNrZZQWsawIc6Bb3+O40R3HQk/1JedcEr9GcLn3EeNwtuFz8H1ok+Ckgb2hgRQ4BIwdbwkH U9gPGrVzIgdLcQT0TZYzDpbhMLC0fnE6YhwOC8s9yMEIe26MvOusk9gL3swbCWFrDKaeUVJg D1iYW6cd7IGDoHioghHOKqHXPONyfOHFkt11dgeMG3XOHQFPimDWaHVJAfC5psbF0dBcfo0S pDEEZcN22rEkYH8om8oTnDQonu+iK1Go4b/3GTYsEu8GS3eQUFZA5+gYJbAvVOvsjMG5/lZ4 pp+n6hFtRh4aXnMmIzkkJJBXp57VaLIyAzP5nDa08Y36OlaDu9DCh6h+hFkkd5MWaplEGa3M 0xRk9CNgSbm7tClsoyRVKQsKeXXWKXVuOq/pRz4sJfeScjHtCTKcrMzh03g+m1f/7RKs2LsI bVdNK/vIenJ6pLikaqnd94Fvlw+ejPZ5FfRS1R9uLOzYFbeUf2wG+PjcwZ0VkbPt2baT5rJh v9rgGPNy/PEIXcVoVWyoW0Cd9cD1JMvTExkfV/Ba+ODh/TFJi/T57M5RbqT2TkuYpFT2u4pz s1kuqqzNwctHxT8fb4kSfbJ5yilNinKvP6nWKP8AGHQ/PkIDAAA=
Archived-At: <https://mailarchive.ietf.org/arch/msg/bfcpbis/NLoLQa9pHakFdSlB9olU2OvOtQU>
Subject: Re: [bfcpbis] Benjamin Kaduk's No Objection on draft-ietf-bfcpbis-rfc4583bis-26: (with COMMENT)
X-BeenThere: bfcpbis@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: BFCPBIS working group discussion list <bfcpbis.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bfcpbis/>
List-Post: <mailto:bfcpbis@ietf.org>
List-Help: <mailto:bfcpbis-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bfcpbis>, <mailto:bfcpbis-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Dec 2018 10:36:55 -0000

Hi,
        
        ....
        
            >>>>> An attacker able to view the SDP exchanges can determine which media flows
            >>>>> contain which content, which could exacerbate existing metadata leakage
            >>>>> channels in some circumstances.
            >>>>>     
            >>>>> I am not sure how that is related to the BFCP SDP negotiation?
            >>>>
            >>>> exchange but the actual media flows are secured with (D)TLS and not visible
            >>>> to the attacker.  The (D)TLS flows will leak some information via packet
            >>>> size/timing, perhaps allowing for traffic analysis to determine what sorts
            >>>> of media flows are going where.  The new attributes in the BFCP SDP
            >>>> negotiation can make this sort of traffic analysis more effective.  I would
            >>>> be fairly receptive if you wanted to say that this is not more noteworthy
            >>>> than for normal SDP security considerations, though.
            >>>
            >>> In general I agree with you that non-protected SDP attributes can help in traffic analysis, but 
            >>> the BFCP attributes only provide information about the BFCP stream itself - they don't even indicate which 
            >>> media streams will be controlled by BFCP to begin with (that is negotiated on BFCP level).
            >>
            >> But, I could add something like:
            >>
            >> "The SDP attributes defined in this specification do not add additional security considerations to the generic 
            >> security considerations for protecting SDP attributes [RFC3264]. The attributes do not reveal information 
            >> about the content of individual BFCP controlled media streams, nor do they reveal which media streams 
            >> will be BFCP controlled." 
            >
            >[cue] I don't think I agree with this last part. The info in SDP does indicate which media streams will be 
            >controlled using BFCP. For example,
            >
            > m=application 50000 TCP/TLS/BFCP *
            > a=setup:actpass
            > a=connection:new
            > a=fingerprint:sha-256 \
            > 19:E2:1C:3B:4B:9F:81:E6:B8:5C:F4:A5:A8:D8:73:04: \
            > BB:05:2F:70:9F:04:A9:0E:05:E9:26:33:E8:70:88:A2
            > a=floorctrl:c-only s-only
            > a=confid:4321
            > a=userid:1234
            > a=floorid:1 mstrm:10
            > a=floorid:2 mstrm:11
            > a=bfcpver:1 2
            > m=audio 50002 RTP/AVP 0
            > a=label:10
            > m=video 50004 RTP/AVP 31
            > a=label:11
            >
           > The combination of floorid/mstrm and label attributes indicate that the corresponding audio and 
           > video m-lines are to be controlled via BFCP.

You are right.

So, something like:

        "The generic security considerations associated with SDP attributes are defined in [RFC3264]. While the 
          defined in this specification do not reveal information about the content of individual BFCP controlled 
          media streams, they do reveal which media streams will be BFCP controlled."
        
        Regards,
        
        Christer

v2.23.0 | Report a Bug | By Email