Re: [Insipid] Eric Rescorla's Discuss on draft-ietf-insipid-logme-marking-12: (with DISCUSS and COMMENT)

Ben Campbell <ben@nostrum.com> Mon, 13 August 2018 21:33 UTC

Return-Path: <ben@nostrum.com>
X-Original-To: insipid@ietfa.amsl.com
Delivered-To: insipid@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A7C791310DA; Mon, 13 Aug 2018 14:33:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.879
X-Spam-Level:
X-Spam-Status: No, score=-1.879 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, T_SPF_HELO_PERMERROR=0.01, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MFOe4oh1lh0A; Mon, 13 Aug 2018 14:33:35 -0700 (PDT)
Received: from nostrum.com (raven-v6.nostrum.com [IPv6:2001:470:d:1130::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 022EF1310BF; Mon, 13 Aug 2018 14:33:34 -0700 (PDT)
Received: from [10.0.1.95] (cpe-70-122-203-106.tx.res.rr.com [70.122.203.106]) (authenticated bits=0) by nostrum.com (8.15.2/8.15.2) with ESMTPSA id w7DLXSfP071769 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NO); Mon, 13 Aug 2018 16:33:30 -0500 (CDT) (envelope-from ben@nostrum.com)
X-Authentication-Warning: raven.nostrum.com: Host cpe-70-122-203-106.tx.res.rr.com [70.122.203.106] claimed to be [10.0.1.95]
From: Ben Campbell <ben@nostrum.com>
Message-Id: <40B37C6B-9A30-47A2-9040-906E3CDEEC44@nostrum.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_F64A0122-9805-4497-9EC7-2201EE001779"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
Date: Mon, 13 Aug 2018 16:33:27 -0500
In-Reply-To: <153419287407.25053.6083538589111644157.idtracker@ietfa.amsl.com>
Cc: The IESG <iesg@ietf.org>, draft-ietf-insipid-logme-marking@ietf.org, insipid@ietf.org, gsalguei@cisco.com, insipid-chairs@ietf.org
To: Eric Rescorla <ekr@rtfm.com>
References: <153419287407.25053.6083538589111644157.idtracker@ietfa.amsl.com>
X-Mailer: Apple Mail (2.3445.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/insipid/5nCfWF2db_FCo5BSv7KT7Tzsi44>
Subject: Re: [Insipid] Eric Rescorla's Discuss on draft-ietf-insipid-logme-marking-12: (with DISCUSS and COMMENT)
X-BeenThere: insipid@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: SIP Session-ID discussion list <insipid.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/insipid>, <mailto:insipid-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/insipid/>
List-Post: <mailto:insipid@ietf.org>
List-Help: <mailto:insipid-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/insipid>, <mailto:insipid-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Aug 2018 21:33:37 -0000


> On Aug 13, 2018, at 3:41 PM, Eric Rescorla <ekr@rtfm.com> wrote:
> 
> S 6.4.2.
>>     store all the SIP messages that are exchanged within a given dialog.
>>     SIP messages can contain the personal identifiers listed in
>>     Section 6.4.1 and additionally a user identity, calling party number,
>>     IP address, hostname, and other user and device related items.  The
>>     SIP message bodies describe the kind of session being set up by the
>>     identified end user and device.
> 
> This seems to have extremely negative consequences when security
> descriptions is used. It seems like you need to prohibit their
> combination or at least call this out.
> 

Oh, that’s a really good point; thanks for catching it :-)

Authors:  Security Descriptions [RFC 4568] typically includes SRTP keys directly in the SIP SDP bodies. SRTP keys _really_ shouldn’t show up in logs, at least without extreme caution. (probably not even then.)

A specific prohibition seems reasonable,  or at least some scary-strong guidance.

Thanks!

Ben.