IETF Logo Mail Archive

Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS

Roman Shpount <roman@telurix.com> Mon, 23 March 2015 15:24 UTC

Return-Path: <roman@telurix.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 26B011A9038 for <mmusic@ietfa.amsl.com>; Mon, 23 Mar 2015 08:24:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.778
X-Spam-Level:
X-Spam-Status: No, score=-0.778 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, J_CHICKENPOX_14=0.6, J_CHICKENPOX_55=0.6, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5i_AmTFmvTXj for <mmusic@ietfa.amsl.com>; Mon, 23 Mar 2015 08:24:31 -0700 (PDT)
Received: from mail-ie0-f170.google.com (mail-ie0-f170.google.com [209.85.223.170]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D52481A8F4D for <mmusic@ietf.org>; Mon, 23 Mar 2015 08:24:30 -0700 (PDT)
Received: by iecvj10 with SMTP id vj10so38326034iec.0 for <mmusic@ietf.org>; Mon, 23 Mar 2015 08:24:30 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=/XVIeeDzOftVDvEDSkYNvwneXlQ8zxbern2qQCs/kTg=; b=CwmdVD1siTVi4NqlHH8QicaITTfS7g9uSpROE7r/EePI/C82VzRRf5wEL6o240oD9O VQ8N6BL31j99DCzqd4Pi8LMsoySvYwpGkDKn9PQjsNePmYcvQTODM5Hu4dlWyNjnXTrF 9QegMj0Kp2cmgw9HzOV92T8Hk2D6vD60pldwy2M3Jy1vsgBguoqUu9aQQDAKnPspAszZ 1m/QBv4F9c0VNB584M9h+BbcNruqC6pr8cotGYVR2xuBEuBlP+fnmVjaWdIpZGgWUV/d yoEpLCRKXTZI7kYhPPOvfHHrrpgFJmsEjbgBgX1UOo4jJVhrZGPJXdz37vR+73K9uiy2 Du/w==
X-Gm-Message-State: ALoCoQmGwzp5VKNF94ScGqMDQaK3eaA6Ve+qUQJ5+K+4j3R4PTTe3Tn8qp7C0eMRKOGvT6q6VpXN
X-Received: by 10.107.46.155 with SMTP id u27mr73287289iou.87.1427124270374; Mon, 23 Mar 2015 08:24:30 -0700 (PDT)
Received: from mail-ig0-f174.google.com (mail-ig0-f174.google.com. [209.85.213.174]) by mx.google.com with ESMTPSA id c41sm804210ioj.2.2015.03.23.08.24.28 for <mmusic@ietf.org> (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 23 Mar 2015 08:24:29 -0700 (PDT)
Received: by igbud6 with SMTP id ud6so45338331igb.1 for <mmusic@ietf.org>; Mon, 23 Mar 2015 08:24:28 -0700 (PDT)
MIME-Version: 1.0
X-Received: by 10.50.254.4 with SMTP id ae4mr15196373igd.10.1427124268300; Mon, 23 Mar 2015 08:24:28 -0700 (PDT)
Received: by 10.36.20.10 with HTTP; Mon, 23 Mar 2015 08:24:28 -0700 (PDT)
In-Reply-To: <CAOJ7v-0pQ=smq1EzpMrQBULm+mjscDXf=fpapdvMWtVX4FkWVw@mail.gmail.com>
References: <550E0F1A.2090303@ericsson.com> <BLU406-EAS2095DB481DB8142DA8BC0BB930C0@phx.gbl> <7594FB04B1934943A5C02806D1A2204B1D7729E2@ESESSMB209.ericsson.se> <CAD5OKxtB5qWQ1yYdGEOdKD55y0HPTGkY_hP0uV=PXEkRnZfcBg@mail.gmail.com> <CAOJ7v-0pQ=smq1EzpMrQBULm+mjscDXf=fpapdvMWtVX4FkWVw@mail.gmail.com>
Date: Mon, 23 Mar 2015 11:24:28 -0400
Message-ID: <CAD5OKxu5LVFGqyixLzG4W-FBYRa9VFm6NmAdCmD0_ccDrOJo2A@mail.gmail.com>
From: Roman Shpount <roman@telurix.com>
To: Justin Uberti <juberti@google.com>
Content-Type: multipart/alternative; boundary="001a11343b921001d50511f64390"
Archived-At: <http://mailarchive.ietf.org/arch/msg/mmusic/E1TfH1lyTURAR1gWjVnNHJj8P4k>
Cc: mmusic <mmusic@ietf.org>, Ari Keränen <ari.keranen@ericsson.com>, "draft-uberti-mmusic-nombis@tools.ietf.org" <draft-uberti-mmusic-nombis@tools.ietf.org>, Christer Holmberg <christer.holmberg@ericsson.com>
Subject: Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Mar 2015 15:24:32 -0000

On Sun, Mar 22, 2015 at 11:56 PM, Justin Uberti <juberti@google.com> wrote:

> Alas, an ICE ufrag doesn't uniquely identify an ICE virtual connection;
> with ICE forking you can have N virtual connections from the same ufrag.
>
> A lfrag:rfrag tuple is closer, but even this does not work, because a) an
> ICE restart changes lfrag/rfrag without invalidating the connection, and b)
> because a ufrag can be shared across multiple m= lines (and thereby ICE
> connections).
>
> The closest thing is m-line, keeping in mind that bundled m-lines use the
> virtual connection of the m-line onto which they are bundled.
>
>
Would ICE restart cause new DTLS handshake? If it does not, what is the
appropriate transport parameter change that will cause the new DTLS
handshake?

When you say m= line, how would the end point associate received packets
with the specific m= line? To handle forks this has to be local m= line and
remote m=line pair, but what does this translate into on the RTP/DTLS
transport layer? Do you propose to associate based on remote ufrag, local
ufrag and the set of local candidates associated with this m= line? Would
it not be simpler to prohibit ufrag reuse?

P.S. If ICE restart would cause the new DTLS connection to be established
this would either mean the same candidates cannot be used after ICE restart
or that an end point can receive packets for several unrelated DTLS
connections over the same 5-tuple. Same old mess all over again.
_____________
Roman Shpount

v2.23.0 | Report a Bug | By Email