IETF Logo Mail Archive

Re: [MMUSIC] k= and draft-ietf-mmusic-rfc4566bis

Christer Holmberg <christer.holmberg@ericsson.com> Wed, 13 September 2017 10:04 UTC

Return-Path: <christer.holmberg@ericsson.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BE885134202 for <mmusic@ietfa.amsl.com>; Wed, 13 Sep 2017 03:04:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.219
X-Spam-Level:
X-Spam-Status: No, score=-4.219 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F_O3IGvq_Yb0 for <mmusic@ietfa.amsl.com>; Wed, 13 Sep 2017 03:04:56 -0700 (PDT)
Received: from sessmg22.ericsson.net (sessmg22.ericsson.net [193.180.251.58]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 22138133018 for <mmusic@ietf.org>; Wed, 13 Sep 2017 03:04:55 -0700 (PDT)
X-AuditID: c1b4fb3a-9e1d49c0000051a3-4c-59b902c62821
Received: from ESESSHC006.ericsson.se (Unknown_Domain [153.88.183.36]) by sessmg22.ericsson.net (Symantec Mail Security) with SMTP id 2F.9C.20899.6C209B95; Wed, 13 Sep 2017 12:04:54 +0200 (CEST)
Received: from ESESSMB109.ericsson.se ([169.254.9.194]) by ESESSHC006.ericsson.se ([153.88.183.36]) with mapi id 14.03.0352.000; Wed, 13 Sep 2017 11:58:36 +0200
From: Christer Holmberg <christer.holmberg@ericsson.com>
To: Eric Rescorla <ekr@rtfm.com>, Colin Perkins <csp@csperkins.org>
CC: mmusic WG <mmusic@ietf.org>, Paul Kyzivat <pkyzivat@alum.mit.edu>
Thread-Topic: [MMUSIC] k= and draft-ietf-mmusic-rfc4566bis
Thread-Index: AQHTKIyuJzGoax9hl0ur9AF8dFJN8aKw3csAgABPUICAABvEgIAAYeUAgAAQ5QCAAPMpAA==
Date: Wed, 13 Sep 2017 09:58:35 +0000
Message-ID: <D5DEDCD5.21595%christer.holmberg@ericsson.com>
References: <619B81B4-C645-4F2F-9B4B-A4D1D95AC440@iii.ca> <CAA4Mczv3Fo=KDu3mqv1KSjO98LcdHnHX5X9rMaaQi7ofVGBNRA@mail.gmail.com> <D1D3622B-443F-4610-AB6C-370A6A70DCAC@csperkins.org> <a9fb09c2-1df6-adb7-5037-4c3c20172a3e@ntlworld.com> <FE94E577-EAD6-4A62-82FB-F317C3AACBC9@iii.ca> <391958c8-7881-1223-f8c1-44ba55138af6@alum.mit.edu> <D2EF444B-7855-4DC9-9BA1-93E295ADA202@csperkins.org> <CABcZeBMjTXbhUo8K+-KmRWMU+W4bV=hGLWmmOerhQvs1XzHgrg@mail.gmail.com>
In-Reply-To: <CABcZeBMjTXbhUo8K+-KmRWMU+W4bV=hGLWmmOerhQvs1XzHgrg@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/14.7.6.170621
x-originating-ip: [153.88.183.18]
Content-Type: multipart/alternative; boundary="_000_D5DEDCD521595christerholmbergericssoncom_"
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFtrHIsWRmVeSWpSXmKPExsUyM2K7iu4xpp2RBneOSVksf3mC0WLF63Ps FlOXP2axWLHhAKsDi8ff9x+YPKbdv8/msWTJTyaPyY/bmANYorhsUlJzMstSi/TtErgy1l94 wVIw3bli3p8zbA2MrZZdjBwcEgImEnOWZ3YxcnEICRxhlJjcMpcFwlnCKPH+w2x2kCI2AQuJ 7n/aXYycHCICzhJnd65iBLGZBVwlJs74DWYLC1hKTF58mAmixkri99rHzBB2mMTm+/sYQcaw CKhKXD0TChLmFbCW+H/wJyPEqovMEv+fTQGr4RQIlDh/A2wMo4CYxPdTa5ggVolL3HoyH8yW EBCQWLLnPDOELSrx8vE/VhBbVEBPYvbGQywQcUWJj6/2QZ2ZINH59wYrxF5BiZMzn7BMYBSd hWTsLCRls5CUQcQNJN6fm88MYWtLLFv4GsrWl9j45SwjhG0t8XzTZ1ZkNQsYOVYxihanFhfn phsZ6aUWZSYXF+fn6eWllmxiBMbqwS2/rXYwHnzueIhRgINRiYd39fUdkUKsiWXFlbmHGCU4 mJVEeI99AgrxpiRWVqUW5ccXleakFh9ilOZgURLnddh3IUJIID2xJDU7NbUgtQgmy8TBKdXA uJJ3zYqLlUm7LTldJ+7QCg6emN4rti378NbOhQ2Xzxw+q/HkY3pw1A3PJ/XfTp9kPvZ28Vfe wpMbvptHnXDv6dlR9ThCMSJ93/PvzT5lzP9lpUU1nv4V+rXs6G2VRTo8V7wOyHi937yt/MUx bo3dF4sqBBcGMK/YdofhttvthLdN7cc5DU8UrVRiKc5INNRiLipOBACxMJnL0QIAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/mmusic/Mg57AT5djjuoz0cx7H3KQ6LRSlk>
Subject: Re: [MMUSIC] k= and draft-ietf-mmusic-rfc4566bis
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Sep 2017 10:04:58 -0000

Hi,

I support the approach below too.

However, I think we should have a little more text: saying that k= is included for legacy reasons, that one must not include it in SDP, and if received must accept and discard it.

…or something like that.

Regards,

Christer

From: mmusic <mmusic-bounces@ietf.org<mailto:mmusic-bounces@ietf.org>> on behalf of Eric Rescorla <ekr@rtfm.com<mailto:ekr@rtfm.com>>
Date: Wednesday 13 September 2017 at 01:33
To: Colin Perkins <csp@csperkins.org<mailto:csp@csperkins.org>>
Cc: "mmusic@ietf.org<mailto:mmusic@ietf.org>" <mmusic@ietf.org<mailto:mmusic@ietf.org>>, "pkyzivat@alum.mit.edu<mailto:pkyzivat@alum.mit.edu>" <pkyzivat@alum.mit.edu<mailto:pkyzivat@alum.mit.edu>>
Subject: Re: [MMUSIC] k= and draft-ietf-mmusic-rfc4566bis

This seems like a fine resolution to me.

On Tue, Sep 12, 2017 at 2:32 PM, Colin Perkins <csp@csperkins.org<mailto:csp@csperkins.org>> wrote:

> On 12 Sep 2017, at 16:42, Paul Kyzivat <pkyzivat@alum.mit.edu<mailto:pkyzivat@alum.mit.edu>> wrote:
>
> On 9/12/17 10:03 AM, Cullen Jennings wrote:
>> First, I don't feel strongly about this and glad to go with whatever Colin wants ... but what I was thinking ....
>> k= is still defined by RFC4566 and things that implement RFC4566 still use it. I don't think we have an IANA table for this but if we do, the IANA registry still lists it with the reference for it as RFC4566.
>> This bis draft becomes a new RFCAAAA and RFCAAAA does not mention k= one way or another. If something that implements RFCAAAA receives a k= line, it gets treated just like any other unknown line and is ignored.
>> There not enough advice on how to use the k= stuff to expect interoperable implementation of any type of security that the IETF would currently consider acceptable to publish as a standard. Anyone who uses k= is very unlikely to be upgrading their software to RFCAAAA. I just don't see anything good that comes of putting this in the new RFC and it just adds to the confusion of how to secure RTP.
>
> One thing: if all mention of k= is removed from the bis, then in the (far) someone who is defining a new line might choose k= for it. (Admittedly this is pretty far fetched.)
>
> I think a cleaner way to handle this would be to deprecate k= in the bis.

I’d not object if the text in 4566bis was changed to:

================
5.12.  Encryption Keys ("k=")

      k=<method>
      k=<method>:<encryption key>


  The “k=“ line is obsolete and MUST NOT be used.

5.13.  Attributes (“a=“)
…
================

…or something similar. I just don’t think we can remove it entirely.


--
Colin Perkins
https://csperkins.org/




_______________________________________________
mmusic mailing list
mmusic@ietf.org<mailto:mmusic@ietf.org>
https://www.ietf.org/mailman/listinfo/mmusic

v2.23.0 | Report a Bug | By Email