Re: [clue] AD evaluation: draft-ietf-clue-datachannel
Christer Holmberg <christer.holmberg@ericsson.com> Sun, 12 June 2016 17:42 UTC
Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: clue@ietfa.amsl.com
Delivered-To: clue@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9E81212D0F9 for <clue@ietfa.amsl.com>; Sun, 12 Jun 2016 10:42:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.221
X-Spam-Level:
X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M4RDEr3Eqaer for <clue@ietfa.amsl.com>; Sun, 12 Jun 2016 10:41:59 -0700 (PDT)
Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2ED9612B060 for <clue@ietf.org>; Sun, 12 Jun 2016 10:41:58 -0700 (PDT)
X-AuditID: c1b4fb30-f79486d0000069d0-31-575d9ee4aea2
Received: from ESESSHC007.ericsson.se (Unknown_Domain [153.88.183.39]) by sesbmg22.ericsson.net (Symantec Mail Security) with SMTP id 3D.E8.27088.4EE9D575; Sun, 12 Jun 2016 19:41:56 +0200 (CEST)
Received: from ESESSMB209.ericsson.se ([169.254.9.154]) by ESESSHC007.ericsson.se ([153.88.183.39]) with mapi id 14.03.0294.000; Sun, 12 Jun 2016 19:41:56 +0200
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: Alissa Cooper <alissa@cooperw.in>, CLUE <clue@ietf.org>
Thread-Topic: [clue] AD evaluation: draft-ietf-clue-datachannel
Thread-Index: AQHRw0jEzMDcqoc03UWFCfk39MSmIJ/mDfyg
Date: Sun, 12 Jun 2016 17:41:55 +0000
Message-ID: <7594FB04B1934943A5C02806D1A2204B3804C7E2@ESESSMB209.ericsson.se>
References: <7C34ECF9-51B4-4E0C-B24B-508C468ABCA0@cooperw.in>
In-Reply-To: <7C34ECF9-51B4-4E0C-B24B-508C468ABCA0@cooperw.in>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [153.88.183.148]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrNLMWRmVeSWpSXmKPExsUyM2K7uu6TebHhBlcPmFpMP/OX0WL/qcvM DkweX568ZPJYsuQnUwBTFJdNSmpOZllqkb5dAlfG8bfTGQtOylcs/ZbewDhVsouRk0NCwESi 48h7ZghbTOLCvfVsXYxcHEICRxgl2nbcZ4VwljBKzH01G6iKg4NNwEKi+582SIOIgLXEkgfr GEFsYQE7icnTTjBCxO0lvjcuZIGwjSQ+NX1lB7FZBFQluvYcB7N5BXwlvrx+DlYvJGAr8fPN BFYQmxNozodzi8EOYgQ66PupNUwgNrOAuMStJ/OZIA4VkFiy5zzU0aISLx//Y4WwlSQalzxh hajXkViw+xMbhK0tsWzha2aIvYISJ2c+YZnAKDoLydhZSFpmIWmZhaRlASPLKkbR4tTipNx0 IyO91KLM5OLi/Dy9vNSSTYzAKDm45bfBDsaXzx0PMQpwMCrx8D7ojAkXYk0sK67MPcQowcGs JMLrPjs2XIg3JbGyKrUoP76oNCe1+BCjNAeLkjiv/0vFcCGB9MSS1OzU1ILUIpgsEwenVANj 6c0s2UMHVHoDvtyu0aqNqbmw36bRzaPx09R1HctNHuy6suqQkEaH/sP9z17ZS8lw55Wquq2L iXTTzPjLG2Z5WU7sV3jxohqWJfaGuU4Wc8Mq16qd/MnkV2a/p6gtL+5C4KIwwbQNuXOldQP/ JG498+HiQ2Nl/WtLy9IC5jWWTX90LyvgeoESS3FGoqEWc1FxIgDzcl26jgIAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/clue/HYtibDkAtRLCzGZbM-OwmWjLQSo>
Subject: Re: [clue] AD evaluation: draft-ietf-clue-datachannel
X-BeenThere: clue@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: CLUE - ControLling mUltiple streams for TElepresence <clue.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/clue>, <mailto:clue-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/clue/>
List-Post: <mailto:clue@ietf.org>
List-Help: <mailto:clue-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/clue>, <mailto:clue-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 12 Jun 2016 17:42:01 -0000
Hi Alissa,
Thanks for your comments! See inline.
> I will note that the security considerations here ultimately rely on draft-ietf-rtcweb-security and draft-ietf-rtcweb-security-arch, which are not finished yet. This
> means it is hard to fully evaluate this spec at this time. We can proceed with IETF LC after discussion of the questions below, but I would suggest either not
> proceeding further than that until those documents are done, or developing specific text for this document that documents the security considerations if you don't want to wait.
I am ok waiting for the generic rtcweb-security drafts to be finished. After that it will be easier to see what/if CLUE data channel specific security text we need to add.
-------------
Questions:
1) In Section 3.2.5, the text says "Other features of [RFC5061] MUST NOT be used." Can you clarify what "other features" this is in reference to? Is this just about the ability to set a primary IP address, or something else? I think it would help to be more specific here.
The text refers to the new 'Supported Extensions Parameter' parameter, a generic mechanism for signalling support of SCTP extensions, defined in RFC 5061.
I more or less copied the text from draft-ietf-rtcweb-data-channel:
"o The dynamic address reconfiguration extension defined in [RFC5061]
MUST be used to signal the support of the stream reset extension
defined in [RFC6525]. Other features of [RFC5061] are OPTIONAL."
So, I guess we could simply refer to that text, and say something like:
"As defined in [ref-to-draft-rtcweb-data-channel], the dynamic address reconfiguration extension
('Supported Extensions Parameter' parameter) defined in [RFC5061] must be used to signal the
support of the stream reset extension defined in [RFC6525]. Other features of [RFC5061]
MUST NOT be used for CLUE data channels."
Now, if you think that the 'Supported Extensions Parameter' parameter shall be spelt out explicitly, I guess that comment should also be given for draft-ietf-rtcweb-data-channel.
-------------
2) I think Section 3.3 needs to be more clear about whether it is specifying things for all WebRTC data channels, or just for CLUE data channels. 3.3.1 uses the term WebRTC data channel when I would have expected it to use the term CLUE data channel.
I can change to "CLUE data channel" in section 3.3.1.
In section 3.3.1.1 I think we shall keep "WebRTC data channel", because the text is about WebRTC data channels in general.
-------------
> 3) IF DCEP is out of scope, why do you then say that this specification relies on the security properties of draft-ietf-rtcweb-data-protocol?
DCEP used to be in scope, and when we made it out of scope it seems like I forgot to remove the text from the security considerations. I will remove the text.
-------------
Nits:
> - Sec. 1
>
> I find it a bit odd to say that DCEP is out of scope here but not mention that negotiation of the CLUE data channel is defined in
> draft-ietf-clue-signaling. I think at a minimum a reference to the signaling doc is needed, and would also recommend dropping
> the note about DCEP unless you think you really need it.
The negotiating of the CLUE data channel is defined in draft-ietf-mmusic-data-channel-sdpneg, which the does does reference.
draft-ietf-clue-signaling is more about negotiating the CLUE session in general.
I suggest to keep the test as it is.
-------------
> - Sec 3.2.3
>
> s/A CLUE entity MUST NOT use the partial reliability and limited retransmission SCTP extensions/A CLUE entity MUST NOT use the partial reliability or limited retransmission SCTP extensions
Will fix as suggested.
-------------
I've created a pull request with the suggested changes:
https://github.com/cdh4u/draft-clue-datachannel/tree/alissa_comments
Thanks!
Regards,
Christer
- Re: [clue] AD evaluation: draft-ietf-clue-datacha… Christer Holmberg
- Re: [clue] AD evaluation: draft-ietf-clue-datacha… Alissa Cooper
- [clue] AD evaluation: draft-ietf-clue-datachannel Alissa Cooper
- Re: [clue] AD evaluation: draft-ietf-clue-datacha… Christer Holmberg