Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP
T H Panton <tim@phonefromhere.com> Mon, 11 July 2016 16:33 UTC
Return-Path: <tim@phonefromhere.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2571912D5CA for <mmusic@ietfa.amsl.com>; Mon, 11 Jul 2016 09:33:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.619
X-Spam-Level:
X-Spam-Status: No, score=-2.619 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 40dAFHwTTYpZ for <mmusic@ietfa.amsl.com>; Mon, 11 Jul 2016 09:33:31 -0700 (PDT)
Received: from smtp001.apm-internet.net (smtp001-out.apm-internet.net [85.119.248.222]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DA9CA12D5AE for <mmusic@ietf.org>; Mon, 11 Jul 2016 09:33:30 -0700 (PDT)
Received: (qmail 98660 invoked from network); 11 Jul 2016 16:33:28 -0000
X-AV-Scan: clean
X-APM-Authkey: 83769/0 8895
Received: from unknown (HELO zimbra003.verygoodemail.com) (85.119.248.218) by smtp001.apm-internet.net with SMTP; 11 Jul 2016 16:33:28 -0000
Received: from zimbra003.verygoodemail.com (localhost [127.0.0.1]) by zimbra003.verygoodemail.com (Postfix) with ESMTPS id E16A518A0347; Mon, 11 Jul 2016 17:33:24 +0100 (BST)
Received: from zimbra003.verygoodemail.com (localhost [127.0.0.1]) by zimbra003.verygoodemail.com (Postfix) with ESMTPS id CF8EA18A0627; Mon, 11 Jul 2016 17:33:24 +0100 (BST)
Received: from [192.67.4.33] (unknown [192.67.4.33]) by zimbra003.verygoodemail.com (Postfix) with ESMTPSA id AD37F18A0347; Mon, 11 Jul 2016 17:33:24 +0100 (BST)
Content-Type: multipart/alternative; boundary="Apple-Mail=_4D84090A-9399-4B02-8FA3-F1FE227809B0"
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: T H Panton <tim@phonefromhere.com>
In-Reply-To: <CAD5OKxsA8UOE83GP67h0NB9H3Lqmw0eC6nhjB=A=7GwdeZf3fw@mail.gmail.com>
Date: Mon, 11 Jul 2016 17:33:23 +0100
Message-Id: <7DF2166A-3AF4-4591-AB25-8C5415875E8D@phonefromhere.com>
References: <CABcZeBOM1KoXpXFhvjS753EVpsMENWVen3CCdFj8ry36vPH0dg@mail.gmail.com> <CAD5OKxt2+YAJfR1q4qyhv_0D7AqMmrsTENTGNw-_vo9Dzr-ejA@mail.gmail.com> <16EBD211-7FAD-43F1-A855-639EC17A17FE@cisco.com> <CAD5OKxsA8UOE83GP67h0NB9H3Lqmw0eC6nhjB=A=7GwdeZf3fw@mail.gmail.com>
To: Roman Shpount <roman@telurix.com>
X-Mailer: Apple Mail (2.3124)
Archived-At: <https://mailarchive.ietf.org/arch/msg/mmusic/7wQToio-8r3jLGIumdXcXPRniCI>
Cc: Cullen Jennings <fluffy@cisco.com>, RTCWeb IETF <rtcweb@ietf.org>, mmusic WG <mmusic@ietf.org>
Subject: Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 11 Jul 2016 16:33:34 -0000
> On 11 Jul 2016, at 17:19, Roman Shpount <roman@telurix.com> wrote: > > I would definitely like to proceed with this. There are certain issues related to forking and new associations being setup by the answering party, but I think they are resolvable. On the other hand, the benefits of reduced call setup up time definitely make this worthwhile. As I said (remotely) at the last meeting, I am distinctly _unkeen_ on the aesthetics of this - it ties us to ever uglier and larger SDP, it breaks software layer separation in the stacks, it will no doubt presume a single DTLS implementation, it will be _fun_ to test, and I anticipate it will open some ugly attack vectors to the javascript kiddies. Last I heard EKR was going to experiment with it and come back with a view on how (in)accurate my doom-saying was. I haven't heard the reply... - If folks want a corridor conversation about this next week in Berlin, I'll be there. T. > > _____________ > Roman Shpount > > On Mon, Jul 11, 2016 at 8:22 AM, Cullen Jennings <fluffy@cisco.com <mailto:fluffy@cisco.com>> wrote: > > Quick questions for folks … is an idea that we should explore a bit deeper before making decisions about it? or should we not proceed? or should we proceed? Just looking for feedback on where this should go next > > Thanks, Cullen > > >> On Apr 18, 2016, at 7:59 AM, Roman Shpount <roman@telurix.com <mailto:roman@telurix.com>> wrote: >> >> On Mon, Apr 4, 2016 at 9:10 AM, Eric Rescorla <ekr@rtfm.com <mailto:ekr@rtfm.com>> wrote: >> I wanted to call your attention to a draft I just published with a possibly stupid >> idea. >> >> https://tools.ietf.org/html/draft-rescorla-dtls-in-sdp-00 <https://tools.ietf.org/html/draft-rescorla-dtls-in-sdp-00> >> >> A nontrivial fraction of call setup time in WebRTC is the DTLS handshake. >> This document describes how to piggyback the first few handshake messages >> in the SDP offer/answer exchange, thus reducing latency. >> >> Comments welcome. >> >> >> One other issue I thought off was that with DTLS SDP either offerer or answerer can start a new DTLS association. When answerer starts a new session it will have exactly the same problems as forking, since this will create multiple DTLS sessions with the same client random. This can be solved with some sort of fallback mechanism to either regular DTLS setup or to sending a ClientHello in the answer. >> >> Regards, >> _____________ >> Roman Shpount >> >> _______________________________________________ >> rtcweb mailing list >> rtcweb@ietf.org <mailto:rtcweb@ietf.org> >> https://www.ietf.org/mailman/listinfo/rtcweb <https://www.ietf.org/mailman/listinfo/rtcweb> > > > _______________________________________________ > mmusic mailing list > mmusic@ietf.org <mailto:mmusic@ietf.org> > https://www.ietf.org/mailman/listinfo/mmusic <https://www.ietf.org/mailman/listinfo/mmusic> > > > _______________________________________________ > rtcweb mailing list > rtcweb@ietf.org <mailto:rtcweb@ietf.org> > https://www.ietf.org/mailman/listinfo/rtcweb <https://www.ietf.org/mailman/listinfo/rtcweb>
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Christer Holmberg
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP T H Panton
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Roman Shpount
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Cullen Jennings
- [MMUSIC] Tunnelling DTLS in SDP Eric Rescorla
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Roman Shpount
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Martin Thomson
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Christer Holmberg
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Justin Uberti
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP pfh
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Matthew Kaufman
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Tim Panton
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Tim Panton
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Peter Thatcher
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Roman Shpount
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Eric Rescorla
- Re: [MMUSIC] [rtcweb] Tunnelling DTLS in SDP Iñaki Baz Castillo