Re: [MEDIACTRL] <encryption> support

Eric Burger <eburger@standardstrack.com> Thu, 10 January 2013 19:28 UTC

Return-Path: <eburger@standardstrack.com>
X-Original-To: mediactrl@ietfa.amsl.com
Delivered-To: mediactrl@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2733621F860A for <mediactrl@ietfa.amsl.com>; Thu, 10 Jan 2013 11:28:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 14kb08HJiN6H for <mediactrl@ietfa.amsl.com>; Thu, 10 Jan 2013 11:28:27 -0800 (PST)
Received: from biz104.inmotionhosting.com (biz104.inmotionhosting.com [74.124.215.15]) by ietfa.amsl.com (Postfix) with ESMTP id 2192921F84CA for <mediactrl@ietf.org>; Thu, 10 Jan 2013 11:28:27 -0800 (PST)
Received: from [12.21.1.3] (port=51522 helo=[172.20.44.29]) by biz104.inmotionhosting.com with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.80) (envelope-from <eburger@standardstrack.com>) id 1TtNnb-0003jw-GV for mediactrl@ietf.org; Thu, 10 Jan 2013 11:28:23 -0800
From: Eric Burger <eburger@standardstrack.com>
Content-Type: multipart/signed; boundary="Apple-Mail=_F5A98D5E-8B9D-4C39-ADC6-594C27995471"; protocol="application/pkcs7-signature"; micalg=sha1
Message-Id: <0B300AA0-397E-4751-9E0B-585A5A369171@standardstrack.com>
Mime-Version: 1.0 (Mac OS X Mail 6.2 \(1499\))
Date: Thu, 10 Jan 2013 14:28:32 -0500
References: <B3EC21B7-1539-49C1-BC17-9771025B0C54@standardstrack.com>
To: mediactrl@ietf.org
In-Reply-To: <B3EC21B7-1539-49C1-BC17-9771025B0C54@standardstrack.com>
X-Mailer: Apple Mail (2.1499)
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - biz104.inmotionhosting.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - standardstrack.com
X-Source:
X-Source-Args:
X-Source-Dir:
Subject: Re: [MEDIACTRL] <encryption> support
X-BeenThere: mediactrl@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Media Control WG Discussion List <mediactrl.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mediactrl>, <mailto:mediactrl-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mediactrl>
List-Post: <mailto:mediactrl@ietf.org>
List-Help: <mailto:mediactrl-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mediactrl>, <mailto:mediactrl-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 10 Jan 2013 19:28:28 -0000

This question has been open for about a month.  To date, we have had seven comments, all positive for the proposal to mandate only DTLS-SRTP.  Therefore, we have more than consensus. Ship it.

On Dec 13, 2012, at 4:55 PM, Eric Burger <eburger@standardstrack.com> wrote:

> Section 5.1.5.21 of http://datatracker.ietf.org/doc/draft-ietf-mediactrl-mrb/ describes an indicator, <encryption>, as to whether or not a Media Server supports SRTP.
> 
> We were thinking there could be some opaque string that would describe the keying mechanism.  However, as numerous ADs have pointed out, there is no IANA registry for such mechanisms.
> 
> I would offer we be pragmatic, and I would like to hear from manufacturers principally but others with skin in the game. Specifically, what if we said there is one and only one official, supported keying mechanism, namely DTLS-SRTP?  While it is true that today most SIP SRTP implementations are SDES, the user community is demanding a move to DTLS-SRTP and DTLS-SRTP will also be the only keying mechanism for RTCWEB.
> 
> So, the proposed text would be:
> 
> 5.1.5.21.  <encryption>
> 
>   The <encryption> element allows a Media Server to declare support for
>   encrypting RTP media streams using RFC 3711 [RFC3711].  The element
>   MAY be present.  If the element is present, then the Media Server supports
>   DTLS-SRTP [RFC 5763].
> 
>   The <encryption> element has no attributes.
> 
> 
> Anyone want to see something different?_______________________________________________
> MEDIACTRL mailing list
> MEDIACTRL@ietf.org
> https://www.ietf.org/mailman/listinfo/mediactrl
> Supplemental Web Site:
> http://www.standardstrack.com/ietf/mediactrl