IETF Logo Mail Archive

Re: [Perc] Last Call: <draft-ietf-perc-private-media-framework-08.txt> (A Solution Framework for Private Media in Privacy Enhanced RTP Conferencing) to Proposed Standard

Alexandre GOUAILLARD <alex.gouaillard@cosmosoftware.io> Sat, 02 February 2019 10:41 UTC

Return-Path: <alex.gouaillard@cosmosoftware.io>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1881F130DEF for <ietf@ietfa.amsl.com>; Sat, 2 Feb 2019 02:41:02 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.04
X-Spam-Level:
X-Spam-Status: No, score=-2.04 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_MED=-0.142, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cosmosoftware-io.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TT3wKpAbERHW for <ietf@ietfa.amsl.com>; Sat, 2 Feb 2019 02:40:58 -0800 (PST)
Received: from mail-pl1-x642.google.com (mail-pl1-x642.google.com [IPv6:2607:f8b0:4864:20::642]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5831112D4F3 for <ietf@ietf.org>; Sat, 2 Feb 2019 02:40:58 -0800 (PST)
Received: by mail-pl1-x642.google.com with SMTP id u18so4558847plq.7 for <ietf@ietf.org>; Sat, 02 Feb 2019 02:40:58 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cosmosoftware-io.20150623.gappssmtp.com; s=20150623; h=from:mime-version:subject:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=1C2+8bEtbX2Ka7l0cjNCJ/HCivx/pjm/MtVFuB7hmbw=; b=1zjFgpdqNuTgmvQ/Z7KArgiUdVVjcnGJk/gYIOaxmZbu6r1amiQMtuc8uGKo6XMrU4 Mr6VUEbGdVRImIClNxxiVC5u+srCsnC+q5qo2KBvLUOnv/9359WKeENJ3s7I5zEpNUdQ zypxd/4OKVVOAQxIuOG2HLNKQHgnTH9r2eAEuyk1QnFxMjI+yH1eKCpQ6rHW01VQPzUX Nno66CW2YByg/3h57b/ewPeljhgQCOENWVvj8tia1TwgOnd1bjTqIIv6fvM+lOJ9Pgzm +NmKYRAikxLclIrfCzKXNo3okQ/drxxPi6FwP63yTv8Otq2AzAnfTOIAaSo6Pv9sjhBP A1Zg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:mime-version:subject:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=1C2+8bEtbX2Ka7l0cjNCJ/HCivx/pjm/MtVFuB7hmbw=; b=IO02sODpE1v1XIKEgo5R7G2MGJ3vX1S1TtX0Orfm6NA73hjKnaiKJvdeq6vSCILGwe Q/HBr4UQZBPdtU4bzvFyltvK3tI8SqSgCE7kvwWKUw4VUjfs2Oa5vsDdBMtpK3FtdOcJ kDil9+fL7gfWJ/gLsx4Y2sHuVTinIruBXsIR4JZbrWd7v/0Vouhwpa56yVrzeJC7T6RR IIsCwdQCAlIQKCcmDh8PdYkUZpZP21hZkC+kFX2A6OM8FYj5umqRNAepcr/AaFb8739D NSiS3TjU3b/962M7XPqCfRIMbaDlaAHYrFusFTj0/NWpD9UdtAsJ8iPH1N3JQ0QONVEt sIdQ==
X-Gm-Message-State: AJcUukdPHDs47+y7EG/Hdw+KFh1UAA9bfoCHbM4eLP5miLLXwkk/++aW NuiFy5/ZDNPZgS8bs/S9eDYRbQ==
X-Google-Smtp-Source: ALg8bN5Xt31xRSmYnf/AOrMI4c/JQ7ontwX3stntFGrqcUoWSyZhiWsFm+f/SDhOiE2RU4UtvT8n8Q==
X-Received: by 2002:a17:902:2ec1:: with SMTP id r59mr44058510plb.254.1549104057669; Sat, 02 Feb 2019 02:40:57 -0800 (PST)
Received: from [10.113.46.93] ([183.90.36.51]) by smtp.gmail.com with ESMTPSA id f67sm18098359pff.29.2019.02.02.02.40.55 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sat, 02 Feb 2019 02:40:56 -0800 (PST)
From: Alexandre GOUAILLARD <alex.gouaillard@cosmosoftware.io>
X-Google-Original-From: Alexandre GOUAILLARD <Alex.GOUAILLARD@cosmosoftware.io>
Content-Type: multipart/alternative; boundary="Apple-Mail-94EE7229-6067-4173-958A-DC2DB5C6A6AA"
Mime-Version: 1.0 (1.0)
Subject: Re: [Perc] Last Call: <draft-ietf-perc-private-media-framework-08.txt> (A Solution Framework for Private Media in Privacy Enhanced RTP Conferencing) to Proposed Standard
X-Mailer: iPhone Mail (16C101)
In-Reply-To: <5486C91C-48EA-4AA1-85EE-05A0B01C1E70@meetecho.com>
Date: Sat, 02 Feb 2019 17:40:54 +0700
Cc: perc@ietf.org, Emil Ivov <emcho@jitsi.org>, Bernard Aboba <bernard.aboba@gmail.com>, IETF discussion list <ietf@ietf.org>, Emad Omara <emadomara@google.com>, "hta@google.com" <hta@google.com>, Sergio Garcia Murillo <sergio.garcia.murillo@cosmosoftware.io>
Content-Transfer-Encoding: 7bit
Message-Id: <C6FEAEB9-CF8E-48AF-B03F-1406FF9CB303@cosmosoftware.io>
References: <154889546931.10496.2408974719921724953.idtracker@ietfa.amsl.com> <CAOW+2dui_imxyysOCrtdH7OiDcbooi83qtCDifEY3HQ6MpigWA@mail.gmail.com> <CAL02cgSip2cLr8a1+zfK2cg+n8gqUMc9CKPmb7mWd2iLSiRf-g@mail.gmail.com> <8e40d0db-cacb-db93-f2fe-db5b4a7cf7cf@gmail.com> <CAOW+2dtxnSYOPPWxodN633O=dPOQaUnu7eYvgUYkPYRt6iWbaw@mail.gmail.com> <CAPvvaaK_VUXvy2=1TBGfBWWYxiBdXBzuR=Y-rnAdJyg=M8OfQQ@mail.gmail.com> <5486C91C-48EA-4AA1-85EE-05A0B01C1E70@meetecho.com>
To: Lorenzo Miniero <lorenzo@meetecho.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/jeRMkS2R4VCg43cf-JjYnet5TxY>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 02 Feb 2019 10:41:02 -0000

+1 on ssrc rewriting, and on the consensus not reached on this and other topics.

Sent from my iPhone

> On 2 Feb 2019, at 17:18, Lorenzo Miniero <lorenzo@meetecho.com> wrote:
> 
> +1, SSRC rewriting is pretty much fundamental to all SFUs out there.
> 
> Lorenzo
> 
> Il 2 febbraio 2019 10:19:06 CET, Emil Ivov <emcho@jitsi.org> ha scritto:
>> 
>> I want to second that as it is a particularly major problem: not allowing SSRC rewriting makes the entire framework unusable with SFU implementation I represent as well as every other SFU I am familiar with.
>> 
>> I am also not sure that I agree with “SSRC rewriting could not be allowed” is a conclusion that ever had any consensus in PERC, regardless of what WG leadership is trying to make everyone believe.
>> 
>>> On Sat 2 Feb 2019 at 06:21, Bernard Aboba <bernard.aboba@gmail.com> wrote:
>>> Richard said:
>>> 
>>> "Again, the answer is clear here, but the document should be clearer.  The working group discussed SSRC rewriting several times, and concluded that SSRC rewriting could not be allowed in this system.  This decision is reflected, e.g., in the fact that the Double transform does not allow modification of SSRCs."
>>> 
>>> [BA]  Not being able to rewrite SSRCs has some major implications with respect to requirements on PERC endpoints.  Typically today's MDD will switch between the simulcast streams provided by an endpoint, forwarding only a single stream to other participants, based on the bandwidth, resolution and framerates.  If rewriting of SSRCs is not possible, do PERC endpoints need to be able to receive simulcast? If PERC endpoints do need to be able to receive simulcast, what are the requirements for endpoints?  For example, should endpoints expect the MDD to use RID header extensions to identify the incoming simulcast streams? 
>>> 
>>> Receiving of simulcast is tricky because the endpoint is receiving multiple streams with different sequence number spaces which may contain holes because of reordering or loss. This not only complicates the application of RTX, RED and FEC, but also the operation of the endpoint.  As a result, as noted in the WEBRTC specification Section 5.4.1, support for reception of simulcast is optional. I am aware of two ORTC implementations that have attempted to support simulcast reception, neither of which is robust in scenarios with considerable loss and/or reordering.  And neither implementation supports the RID header extension on received simulcast streams.
>>> 
>>> 
>>> 
>>> 
>>>> On Fri, Feb 1, 2019 at 12:23 PM Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com> wrote:
>>>>> On 01/02/2019 17:18, Richard Barnes wrote:
>>>>> So I would propose we add something like the following to this definition: 
>>>>> 
>>>>> "In the context of WebRTC, where control of a session is divided between a JavaScript application and a browser, the browser acts as the Trusted Endpoint for purposes of this framework (just as it acts as the endpoint for DTLS-SRTP in one-to-one calls).
>>>> 
>>>> If we decide to adopt perc (big if) in webrtc, shouldn't this be defined within the https://tools.ietf.org/html/draft-ietf-rtcweb-security-arch-17 doc ?
>>>> 
>>>> 
>>>> 
>>>>    Optimally, we would not rely on trust in any entities other than the
>>>>    browser.  However, this is unfortunately not possible if we wish to
>>>>    have a functional system.  Other network elements fall into two
>>>>    categories: those which can be authenticated by the browser and thus
>>>>    can be granted permissions to access sensitive resources, and those
>>>>    which cannot be authenticated and thus are untrusted.
>>>> 
>>>> 
>>>> WebRTC already IdP as trusted for identity purposes, so it should be up to the RTCWEB group to decide what is a trusted endpoint and what is not in webrtc. As Bernard is stating, we could decide that there are other key management solutions trusted (even in JS or WASM), as for for example is being done in EME:
>>>> 
>>>> https://github.com/WICG/media-capabilities/blob/master/explainer.md#encryption
>>>> 
>>>> Best regards
>>>> 
>>>> Sergio
>>>> 
>>>> _______________________________________________
>>>> Perc mailing list
>>>> Perc@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/perc
>> -- 
>> sent from my mobile
> 
> -- 
> Inviato dal mio dispositivo Android con K-9 Mail. Perdonate la brevità.

v2.23.0 | Report a Bug | By Email