Re: AW: [MMUSIC] Working group last call:draft-ietf-mmusic-securityprecondition-00.txt
Flemming Andreasen <fandreas@cisco.com> Wed, 05 October 2005 20:12 UTC
Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1ENFct-0001I6-NC; Wed, 05 Oct 2005 16:12:31 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1ENEqd-0000Dv-UC for mmusic@megatron.ietf.org; Wed, 05 Oct 2005 15:22:40 -0400
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id PAA12575 for <mmusic@ietf.org>; Wed, 5 Oct 2005 15:22:38 -0400 (EDT)
Received: from sj-iport-4.cisco.com ([171.68.10.86]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1ENEzY-0005Mf-Op for mmusic@ietf.org; Wed, 05 Oct 2005 15:31:54 -0400
Received: from sj-core-3.cisco.com ([171.68.223.137]) by sj-iport-4.cisco.com with ESMTP; 05 Oct 2005 12:22:29 -0700
Received: from xbh-sjc-211.amer.cisco.com (xbh-sjc-211.cisco.com [171.70.151.144]) by sj-core-3.cisco.com (8.12.10/8.12.6) with ESMTP id j95JLUWV019921; Wed, 5 Oct 2005 12:22:20 -0700 (PDT)
Received: from xfe-sjc-211.amer.cisco.com ([171.70.151.174]) by xbh-sjc-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.211); Wed, 5 Oct 2005 12:22:25 -0700
Received: from [10.21.81.54] ([10.21.81.54]) by xfe-sjc-211.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.211); Wed, 5 Oct 2005 12:22:25 -0700
Message-ID: <434427EF.7050602@cisco.com>
Date: Wed, 05 Oct 2005 15:22:23 -0400
From: Flemming Andreasen <fandreas@cisco.com>
User-Agent: Mozilla Thunderbird 1.0 (Windows/20041206)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: Stach Thomas <thomas.stach@siemens.com>
Subject: Re: AW: [MMUSIC] Working group last call:draft-ietf-mmusic-securityprecondition-00.txt
References: <649A59E9F7977F449E5792357A9DDB2CB356CB@nets13ha.ww300.siemens.net>
In-Reply-To: <649A59E9F7977F449E5792357A9DDB2CB356CB@nets13ha.ww300.siemens.net>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
X-OriginalArrivalTime: 05 Oct 2005 19:22:25.0173 (UTC) FILETIME=[1DEC1450:01C5C9E2]
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 36c793b20164cfe75332aa66ddb21196
Content-Transfer-Encoding: quoted-printable
X-MIME-Autoconverted: from 8bit to quoted-printable by ietf.org id PAA12575
Cc: Colin Perkins <csp@csperkins.org>, dwing@cisco.com, IETF MMUSIC working group <mmusic@ietf.org>
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
Sender: mmusic-bounces@ietf.org
Errors-To: mmusic-bounces@ietf.org
Stach Thomas wrote: >Hi Fleming and Dan, > >first of all sorry for sending my comments rather late. Nevertheless, I'd like to ask for some clarification since details on the usage of SDP Security Description and Key-Management extensions are rather scarce. You are referencing SDP Security Description [SDESC] and Key-Management extensions [KMGMT] as means to exchange the necessary keys. >Since both IDs say that preconditions are out of scope, I expect the pre-conditions document to specify some necessary details. >I can't find normative text on how to exactly do key exchange in conjunction with the security pre-conditions. > >My problem is how exactly shall one construct the crypto line/key-mgmt line for the second offer/answer exchange? > >The shown examples seem to indicate that in the second offer the same keys shall be sent as in the first offer, which of course makes sense. But since this is marked as an example I can't rely. >I could imagine that in the second offer/answer someone might send some other key material or omit the crypto/key-mgmt line since the keys are already exchanged. > By definition, SIP preconditions follow SIP offer/answer rules, and offer/answer rules imply that each offer and each answer convey the complete set of current media stream parameters, it is not partial, differential, or anything like that, so we cannot omit the crypto/key-mgt lines. >I would rather like to see some normative language that requires a certain behavior. > > In terms of offers and answers containing complete information, that normative text is found in RFC 3264. I'll be happy to add a reference on that point. In terms of the actual value to use in the subsequent offer, we'll add some text (basically saying that in order to satisfy the security precondition, you need to use the same key material etc. in the subsequent offer). >Furthermore, assuming that the second offer contains the same key material as the first, I would also expect to find the same data in the second answer as in the first one, especially when I use Diffie-Hellmann key exchange. > > Offer/answer does not require the same answer to be given, to the same offer, however, in order for the security precondition to be meaningful, we actually want the subsequent answer to contain the same keying material, etc. We'll add some text around that. >Sending again the same MIKEY message in the second offer can interfere with the replay attack handling of MIKEY. Of course we don't want to regard the second message as a replay. >How should that be handled? >Maybe it is fine to e.g. hide the second MIKEY message from the MIKEY handler and just check if it is identical to the first one? >Or I could also imagine that some one updates the time stamp for the second MIKEY message? But will/should that be interpreted as re-keying by the MIKEY handler? Remembering postings on implementor's lists I could imagine other weird interpretations too. > > > There are two issues here really: 1. kmgmt is a container that can be used to carry pretty much anything, so I'm not sure we can come up with a set of procedures that are guaranteed to work for everything here. Some general statements will probably have to be provided with a note that specific requirements above and beyond those may have to be provided by the actual key management protocol being used. In the current document, we have simply noted that the details depend on the actual key management protocol being used, but we can probably say a bit more than that (specifically on subsequent offers and answers). 2. MIKEY is an example of a specific key management protocol used with the kmgmt extensions, and, as you point out, we should probably say something about how to deal with MIKEY in here. If you have any specific suggestions for how to deal with MIKEY here, they would be very welcome. >More comments: >I'm missing RFC2119 as a normative reference although it is mentioned in sec 1. Please add. > >The MIKEY examples show the same key-mgmt lines in the offer and answer which is not the case. > > > Will fix both of these. Thanks for the comments. -- Flemming >Kind Regards > >Thomas > > > > > >>-----Ursprüngliche Nachricht----- >>Von: mmusic-bounces@ietf.org [mailto:mmusic-bounces@ietf.org] >>Im Auftrag von Colin Perkins >>Gesendet: Montag, 01. August 2005 18:05 >>An: IETF MMUSIC working group >>Betreff: [MMUSIC] Working group last >>call:draft-ietf-mmusic-securityprecondition-00.txt >> >>This is to announce a working group last call on the Security >>Preconditions for SDP <draft-ietf-mmusic- >>securityprecondition-00.txt>. Please send any final comments >>on this >>draft to the <mmusic@ietf.org> mailing list by 29th August 2005. >> >>If no substantive issues are raised by that time, we will >>request the >>IETF publish this draft as a Proposed Standard RFC. >> >>Colin >> >> >>_______________________________________________ >>mmusic mailing list >>mmusic@ietf.org >>https://www1.ietf.org/mailman/listinfo/mmusic >> >> >> > > > _______________________________________________ mmusic mailing list mmusic@ietf.org https://www1.ietf.org/mailman/listinfo/mmusic
- AW: [MMUSIC] Working group last call:draft-ietf-m… Stach Thomas
- Re: AW: [MMUSIC] Working group last call:draft-ie… Colin Perkins
- Re: AW: [MMUSIC] Working group last call:draft-ie… Flemming Andreasen