IETF Logo Mail Archive

Re: [MMUSIC] draft-dtls-sdp: Allow offerer to establish DTLS association before it has received the SDP answer?

Cullen Jennings <fluffy@iii.ca> Fri, 09 June 2017 13:33 UTC

Return-Path: <fluffy@iii.ca>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7AB011201F2 for <mmusic@ietfa.amsl.com>; Fri, 9 Jun 2017 06:33:02 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.7
X-Spam-Level:
X-Spam-Status: No, score=-4.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-2.8, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ChEGfepM14yE for <mmusic@ietfa.amsl.com>; Fri, 9 Jun 2017 06:33:00 -0700 (PDT)
Received: from smtp66.iad3a.emailsrvr.com (smtp66.iad3a.emailsrvr.com [173.203.187.66]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 06FB41241FC for <mmusic@ietf.org>; Fri, 9 Jun 2017 06:32:59 -0700 (PDT)
Received: from smtp9.relay.iad3a.emailsrvr.com (localhost [127.0.0.1]) by smtp9.relay.iad3a.emailsrvr.com (SMTP Server) with ESMTP id 30FBD5812; Fri, 9 Jun 2017 09:32:57 -0400 (EDT)
X-Auth-ID: fluffy@iii.ca
Received: by smtp9.relay.iad3a.emailsrvr.com (Authenticated sender: fluffy-AT-iii.ca) with ESMTPSA id 8512357AB; Fri, 9 Jun 2017 09:32:56 -0400 (EDT)
X-Sender-Id: fluffy@iii.ca
Received: from [10.1.3.67] (S01065475d0f7dcd1.cg.shawcable.net [70.75.17.123]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384) by 0.0.0.0:587 (trex/5.7.12); Fri, 09 Jun 2017 09:32:57 -0400
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 10.2 \(3259\))
From: Cullen Jennings <fluffy@iii.ca>
In-Reply-To: <CAD5OKxsWM0SevCiMZ9jJQn_PsEp5hhJ=0BODOm_UXa0P_1_nwQ@mail.gmail.com>
Date: Fri, 09 Jun 2017 07:32:55 -0600
Cc: mmusic <mmusic@ietf.org>, Christer Holmberg <christer.holmberg@ericsson.com>
Content-Transfer-Encoding: quoted-printable
Message-Id: <727A5880-BAF5-44FC-8112-6FF5206AEEBC@iii.ca>
References: <D551D683.1D429%christer.holmberg@ericsson.com> <22C94242-218F-4724-AE92-E0B1E8DC2C82@nostrum.com> <21E8BA9D-E442-4DBC-8A7D-CEDFD5F54F8B@iii.ca> <CAD5OKxujAuzJt4QD6JXKHkVd4JB_nO5Th6KXjavMBww=W4644Q@mail.gmail.com> <6125EAB1-A827-4E0F-B756-78F85BB411CD@iii.ca> <CAD5OKxutcpUzh1yLA2kukmYmiHQg3+6fuXbaD0w73gzsAHEXzg@mail.gmail.com> <e80f0fbe-221e-aa9b-33bd-24d2ff50fe84@cisco.com> <6D9B0AD9-F9C9-4DF6-A2AB-D160094E5FE3@iii.ca> <CAD5OKxsZMei6FYDPWVcrjt0X6fy4h_=Odybjczpc8VpEgFSrQg@mail.gmail.com> <46506F82-3944-471C-80E9-D622EB3E1211@iii.ca> <CAD5OKxsWM0SevCiMZ9jJQn_PsEp5hhJ=0BODOm_UXa0P_1_nwQ@mail.gmail.com>
To: Roman Shpount <roman@telurix.com>
X-Mailer: Apple Mail (2.3259)
Archived-At: <https://mailarchive.ietf.org/arch/msg/mmusic/JHTsR6W_a6zKTBGsu2ptdcu7Yfo>
Subject: Re: [MMUSIC] draft-dtls-sdp: Allow offerer to establish DTLS association before it has received the SDP answer?
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Jun 2017 13:33:02 -0000

I'd really really appreciate if you could give me a hint of it you agree with my original points I asked about or which ones you disagree with and why. The three points I am interested in are:

For devices that want to minimize delay in setting up media and avoid media clipping, doing the TLS handshake as soon as possible is good design but in some cases this means the system does  the handshake before the identity of the fingerprint is known. 

If this is done, there is a risk of sending or receiving media before the identity of the remote side is known and the system needs to be designed to deal with theses risks in a way that is appropriate for the system that uses this.  

Receiving media from an unknown sources typically has fairly low risk while sending human generated media, such as the input from a microphone or camera, to a unknown users has much higher privacy risks. 

If we agree on a high level that is reasonable advice to be in this draft, then it's easier to get to the details.  I feel like we are in some weird loop where I keep trying to explain why I don't find the text acceptable and then you propose a change which does not have much to do with what I am concerned about. I suspect you have a strong idea of what you mean by "not secure" and I have no idea what you think being "secure" is in the various contexts of WebRTC, SIP, SIP to PSTN, and other places. 



> On Jun 8, 2017, at 6:36 PM, Roman Shpount <roman@telurix.com> wrote:
> 
> On Thu, Jun 8, 2017 at 8:03 PM, Cullen Jennings <fluffy@iii.ca> wrote:
> 
> > On Jun 8, 2017, at 10:49 AM, Roman Shpount <roman@telurix.com> wrote:
> >
> > We can expand the language regarding unverified DTLS association that end point SHOULD inform the end user when unverified media is played and SHOULD not send user generated media until stream is verified.
> >
> > I also want to add that fingerprints SHOULD be sent over integrity protected signaling channel. I think this should address your concern about the Answer identity. I think specifics of integrity protection of fingerprint delivery is outside of scope of this draft.
> >
> > Would this address your comments?
> 
> No.
> 
> You keep trying to design the overall security of every system that uses this draft in this draft and that won't work. You need to let the system that use this draft define out the security for that system works. All we need here is to define how to set up a DTLS session using TLS. How any systems decides to use identity founds in TLS is complicated and differs for different usages. That's the same here - how the fingerprint are bound to identities changes for different usages of this.  For example, the important part is to know who the media is coming from or going to. In some cases, integrity protection channels from trusted sources might provide that the SIP From  header and fingerprint were matched together and helped solve that. But in some case, for example the work on passport at IETF, it is not the integrity protected channel that that mattered, it was a signature on a the passport object that tied the fingerprint to the identity that is important.
> 
> What would help is if the first thing is do we agree on the points I sent out and if not, lets figure out why, and if yes, then we can work on text.
> 
> You have mentioned that we removed the requirement that session description should be sent over integrity protected channel. This requirement was present in https://tools.ietf.org/html/rfc5763#section-5 and got removed in this draft. I assumed you wanted to bring this back.
> 
> I understand that until answer identity and integrity is verified and until fingerprint is matched, received media is coming from an unverified source and ultimately not secure. Validation of session description identity and integrity is something that is outside of scope of this document. Stating that this document only provides a partial solution and that it SHOULD be used with a signaling channel that provides identity and integrity validation in order to guarantee that data delivered over  DTLS association is secure is very much in scope. It should also be in scope to state that media can be received before DTLS association is verified and that it is up to the application if this media should be played and how to appropriately inform the user.
> 
> I am trying to understand what exactly you are trying to change in my proposal. I am trying to propose something that addresses your points but apparently I am getting wrong. So, can you propose the text? 
> 
> Regarding handling of data, we just finished datachannel related drafts. None of them define how data sent over SCTP association is supposed to be handled before DTLS association is verified. If this information is not present in any of those drafts, should it simply be left undefined?
> 
> Keep in mind that people (like W3C in regard of webrtc) are asking how unverified media and data should be handled. If anything, some guideline should be provided in security considerations section of this draft.
> 
> Regards,
> _____________
> Roman Shpount
>  
> _______________________________________________
> mmusic mailing list
> mmusic@ietf.org
> https://www.ietf.org/mailman/listinfo/mmusic

v2.23.0 | Report a Bug | By Email