Re: [MMUSIC] Handling of unverified data and media

Martin Thomson <martin.thomson@gmail.com> Mon, 13 March 2017 00:33 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92E3C12944D for <mmusic@ietfa.amsl.com>; Sun, 12 Mar 2017 17:33:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jYp5dBmmuOHf for <mmusic@ietfa.amsl.com>; Sun, 12 Mar 2017 17:33:30 -0700 (PDT)
Received: from mail-qk0-x22d.google.com (mail-qk0-x22d.google.com [IPv6:2607:f8b0:400d:c09::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8C7BE129410 for <mmusic@ietf.org>; Sun, 12 Mar 2017 17:33:30 -0700 (PDT)
Received: by mail-qk0-x22d.google.com with SMTP id v125so208012904qkh.2 for <mmusic@ietf.org>; Sun, 12 Mar 2017 17:33:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=Fvi98iJ5qnx92E6lmvQuhFYPREyZd/HA7Ih/VLcRmj8=; b=M9BkZwvGhXQyQpvRQFhPD/31shqDlY9O18Fm2gez5PNMGHhsLiAMPCLSKWXRRxDhIu Qu9ydomNa74lqNulOVELWCy0mND9rDjXh4WwaefmfzhHk1LvJDVF+QznxEDoHILoShv5 E82alfy2QL2A7OMYsAzpiuEVeAGM/Qdp3Hj0/5PfIgVgcgu8C/4ZPlv+yY/ypyu4KMBY LsHWLAI/KGv6CgUfzuf/YaRRE89A1jCJOC7bFLbP20jmU7MWRelOjMrLgTkZflQLETE7 TayG0xRr1O+vxZ0rGkreuCssCVpBnoiPZ7e4rtzVTN2GoXLfJ+ps7TiGnckS7qS1g6fp HccQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=Fvi98iJ5qnx92E6lmvQuhFYPREyZd/HA7Ih/VLcRmj8=; b=X4cyLRDTri3dQeleRErQqlkXDatftRLW5GFOWmpcCk9sSyvIfMohHT4+4wyKxN4gyk zTyPo5otJQ7eSxfg2KT5RXyBtWFFNS8FNG3mmF+fH93RlcTu3RmbqmygFlA3i8rl291+ 48pM89p0YA1N4EOnFLa7upnwIP/DCTFcMY/U5neFhUJ3WVNU0Jz9gTW8oTI4qIMJS9pg XYizF9Znp+0hWLTa6K1UJeAmItKuIJ3M5r7fCa87N4Mf58szxVJvKuszQIgqve7AXAYa f7eLlgxlB2u2vlCnM1YWgvFUySd5LPi3is8cjwa6/oQamWJKIclkPEudf8yvI3i7A/22 fiFw==
X-Gm-Message-State: AMke39m8bQmCRuH86ZE/xrDAY+HdQ8fbA2vju+wocgxZ+Sti6/eet2AtIfBBw61/z7BtUGVClG45+D5IiHe99A==
X-Received: by 10.55.185.131 with SMTP id j125mr28633192qkf.115.1489365209738; Sun, 12 Mar 2017 17:33:29 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.140.27.194 with HTTP; Sun, 12 Mar 2017 17:33:29 -0700 (PDT)
In-Reply-To: <CABcZeBO9MP0fqg=ubpgU8+3L9koB5grCyp-O8hS9Pis942-rhA@mail.gmail.com>
References: <CAOW+2dseq8AmLKXFGUaiss8ahpkY1ZzYUD_KdirFE1rskfvqjw@mail.gmail.com> <CABkgnnUc-XsYivUzSs6W4it_Krykr-reJMDJXqKf5FvGw_NBPg@mail.gmail.com> <CAD5OKxvXTsTPaKFNdwS6tPBTAksD=jgiAFGuGMgbepOtBoFT+Q@mail.gmail.com> <CABcZeBO9MP0fqg=ubpgU8+3L9koB5grCyp-O8hS9Pis942-rhA@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Mon, 13 Mar 2017 11:33:29 +1100
Message-ID: <CABkgnnVUEGG=xOV6PkhWvkUpxO8yseTRk04rxoWB+PF6H=DUBw@mail.gmail.com>
To: Eric Rescorla <ekr@rtfm.com>
Content-Type: text/plain; charset=UTF-8
Archived-At: <https://mailarchive.ietf.org/arch/msg/mmusic/09ig14WW7cVVXJePf2OAFC7DzCw>
Cc: Flemming Andreasen <fandreas@cisco.com>, "hta@google.com" <hta@google.com>, mmusic WG <mmusic@ietf.org>
Subject: Re: [MMUSIC] Handling of unverified data and media
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Mar 2017 00:33:31 -0000

On 11 March 2017 at 11:01, Eric Rescorla <ekr@rtfm.com> wrote:
> I haven't spent too much time on it, but it seems like it ought to be safe
> to hold
> anything you receive prior to getting the fingerprint. It might be better,
> as MT
> suggests, to discard the datachannel data, but I'm not sure why it would be
> necessary.


I didn't consider holding data, which should be fine.  If the
fingerprint later turns out to be bad, then it's easy to pretend you
were hit by a spate of packet loss than hold arbitrary amounts of
(potential) junk.