IETF Logo Mail Archive

Re: [dispatch] Updated PERC Charter proposal

Paul Kyzivat <pkyzivat@alum.mit.edu> Wed, 03 June 2015 15:57 UTC

Return-Path: <pkyzivat@alum.mit.edu>
X-Original-To: dispatch@ietfa.amsl.com
Delivered-To: dispatch@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1755B1A9119 for <dispatch@ietfa.amsl.com>; Wed, 3 Jun 2015 08:57:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.235
X-Spam-Level:
X-Spam-Status: No, score=-1.235 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_SOFTFAIL=0.665] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cr2G3UqRraCD for <dispatch@ietfa.amsl.com>; Wed, 3 Jun 2015 08:57:16 -0700 (PDT)
Received: from resqmta-ch2-11v.sys.comcast.net (resqmta-ch2-11v.sys.comcast.net [IPv6:2001:558:fe21:29:69:252:207:43]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D16201A90FD for <dispatch@ietf.org>; Wed, 3 Jun 2015 08:57:16 -0700 (PDT)
Received: from resomta-ch2-08v.sys.comcast.net ([69.252.207.104]) by resqmta-ch2-11v.sys.comcast.net with comcast id brwC1q0052Fh1PH01rxGem; Wed, 03 Jun 2015 15:57:16 +0000
Received: from Paul-Kyzivats-MacBook-Pro.local ([50.138.229.151]) by resomta-ch2-08v.sys.comcast.net with comcast id brxF1q00m3Ge9ey01rxFQS; Wed, 03 Jun 2015 15:57:16 +0000
Message-ID: <556F23DB.8060306@alum.mit.edu>
Date: Wed, 03 Jun 2015 11:57:15 -0400
From: Paul Kyzivat <pkyzivat@alum.mit.edu>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.10; rv:31.0) Gecko/20100101 Thunderbird/31.7.0
MIME-Version: 1.0
To: dispatch@ietf.org
References: <CAHBDyN6BeyL-wh_=t7jN+tfhTTnZK0uTBra-F7MR11x9eFkGpg@mail.gmail.com> <D188F24E.14D48%goran.ap.eriksson@ericsson.com> <55683230.3020600@ericsson.com> <CAHBDyN68U=KiyM8aTzbmmFzN9cZJ_MgZs00VPCODyufMn=JpUA@mail.gmail.com> <556C2A44.8010805@ericsson.com> <D193CBFB.32759%rmohanr@cisco.com> <CABcZeBMGUG0A8ypCz2kF8hqfsKemXK4CX8ujLFOi2HjGWunJ9g@mail.gmail.com> <556DDC0C.3010107@andyet.net> <CABcZeBPtc-Wp=4WSc_NXCZM+SSY6o0eFDbnPE+zCLTB_LY7PvQ@mail.gmail.com> <556DF837.8050704@alum.mit.edu>, <D1946A1E.32827%rmohanr@cisco.com> <A634ECAF-9D68-41B7-85C6-F521F5BC821B@MRS> <556EFA0E.8050408@ericsson.com>
In-Reply-To: <556EFA0E.8050408@ericsson.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 8bit
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20140121; t=1433347036; bh=I+6ltf8vUjfExh0LXSit8j/NoYfvQohy03djdNEyI9c=; h=Received:Received:Message-ID:Date:From:MIME-Version:To:Subject: Content-Type; b=qfwsI2jfFfj0H0Q5n7KPz4c2fLlZgWwTxv7G+5FvIqIGH6NPr1nXSy25+uqx2A5rb AaYB1HdwqhEL9c8MLLqfuTXI8zFexRJ1HZdesQGm1wYnUWp2gCF/JX4oMgCD+0thyg bgS0+k4CpYyynvxQyJ1X8EopwRNr57d3LuwogzU9f/qZWgtXVoGCRNYRRqZodtf28t 90rce2pP8Ng1UCk3WIcm/MGqKq6BKCjRFilFiaxftr7UMf24ZQKBzbOsyFIKeShnxx Bdp4F5a2cVJBngbLkuG7UNDDxV1iXZ7xvx++nNI8AiNjE86EWEQ84N58x8Z4eKcX6O Wfa1LRUanC7ew==
Archived-At: <http://mailarchive.ietf.org/arch/msg/dispatch/W0Dq0Q_3BPDuqz3NQ7TLM5THU3Y>
Subject: Re: [dispatch] Updated PERC Charter proposal
X-BeenThere: dispatch@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DISPATCH Working Group Mail List <dispatch.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dispatch>, <mailto:dispatch-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dispatch/>
List-Post: <mailto:dispatch@ietf.org>
List-Help: <mailto:dispatch-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dispatch>, <mailto:dispatch-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 03 Jun 2015 15:57:18 -0000

On 6/3/15 8:58 AM, Magnus Westerlund wrote:
> Hutton, Andrew skrev den 2015-06-03 10:42:
>> I agree there is some value in exploring the recording use case it is
>> one of the first questions everybody asks when discussing PERC.
>
>  From my perspective there are two ways of doing recording of media
> content in PERC.
>
> 1. Invite the recorder as a full fledged authenticated session
> participant that use the normal way of getting the keys to the media as
> any other endpoint.
>
> 2. The recorder only stores the encrypted media content, thus being a
> semi-trusted entity to that are allowed to get a copy or be integrated
> into the central forwarders. At the time one wants to access the
> recorded content one will have to request the relevant keys from the
> key-management function, that will also have to have stored the relevant
> group keys for the session to enable decryption.
>
> I would claim that the second one is the securer, and enables better
> tracking of who access recordings of a secured conference.

These sound reasonable to me. IIUC, (2) could be complicated because 
each time a new participant joins or leaves there must be new keys.

	Thanks,
	Paul

>> Hope we are allowed to consider this.
>
> The charter talks about informing and coordinating with SIPREC. This to
> have an exchange about the possibilities. However, it is not a work item
> of the PERC WG to specify a solution for recording. I would expect any
> technical work on solving PERC recording would need to be chartered in
> the most relevant WG. I think the ones interested in recording should be
> active in the WG work to ensure that the developed solution do support
> recording. If there are contention between the goals, then we will need
> to have a serious discussion. But, remember that we have clear goals of
> ensuring end to end security, thus compromises to the security model to
> fit recording will be unlikely to be accepted.
>
> Cheers
>
> Magnus Westerlund
>
> ----------------------------------------------------------------------
> Services, Media and Network features, Ericsson Research EAB/TXM
> ----------------------------------------------------------------------
> Ericsson AB                 | Phone  +46 10 7148287
> Färögatan 6                 | Mobile +46 73 0949079
> SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
> ----------------------------------------------------------------------
>
> _______________________________________________
> dispatch mailing list
> dispatch@ietf.org
> https://www.ietf.org/mailman/listinfo/dispatch
>

v2.23.0 | Report a Bug | By Email