Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS
Justin Uberti <juberti@google.com> Mon, 23 March 2015 22:18 UTC
Return-Path: <juberti@google.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A6D3B1A1BCB for <mmusic@ietfa.amsl.com>; Mon, 23 Mar 2015 15:18:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.188
X-Spam-Level:
X-Spam-Status: No, score=-0.188 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, J_CHICKENPOX_110=0.6, J_CHICKENPOX_14=0.6, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1YGUccmDkJJU for <mmusic@ietfa.amsl.com>; Mon, 23 Mar 2015 15:18:04 -0700 (PDT)
Received: from mail-ig0-x22f.google.com (mail-ig0-x22f.google.com [IPv6:2607:f8b0:4001:c05::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 507281A1B79 for <mmusic@ietf.org>; Mon, 23 Mar 2015 15:18:04 -0700 (PDT)
Received: by igcqo1 with SMTP id qo1so51895870igc.0 for <mmusic@ietf.org>; Mon, 23 Mar 2015 15:18:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=ZshhvGc8pdVz+p19XZWtokoYxo7sDsPy00s1YJ2P9r0=; b=Pa/8vodf0YME2E2foteU5WNe98QqXiejO3rjzcGOVNm+w88MsbADb3fwWKElhXKxFn iqiJ5qDMH5Z85vQA+mmPCddcEpeFEJBhE2/vp1XCNAplOT6whTlqEWs6mlxWJZTtyNc0 UYaSi7ZLxavWGRHbqGglw74zLRZSu3XrE25GVahYYEqrSWbzW8t2RUJyRKLbhdg9Tsk6 Z6Mf12x/BSJBbc015rNPcrSV6v9EdJvZljS7bwsKHIYJ5E6cKCjUd8A3vRbGY1N6+lXe ClL5BtbEH+Gvc/MscpcQNNAnjTpMvDcVINsq8ySp8HnXwLFiFwIgX1R9+5FAMJ9vYg42 ZvOg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=ZshhvGc8pdVz+p19XZWtokoYxo7sDsPy00s1YJ2P9r0=; b=ESDVx2qqo8ReQsgdjfhzBB63C7XX/PkM1OLKrPOLAx2Tm9Z/PDSC+/a0jz8zp4zxh9 GZg/TZeanInr/0gVjv5Kbn8DxgqXakkYh2vRQ/mWEDTX0bSmGaq76TUgccfktUaL60H+ hUHIt6WpdgHMQJqqiiFo+Zjr1UVqsGpTbZ5eXUWyAPeNy/hYFhtsFqA7JzDCeY/x2U22 H6nTK8kUpdFTaw4uupcrnr+QcpOLZvmBv5zQVI5a1FjWCRFxaon27E5zq+0k394tbPJX SJBfRqv6PJw0skbFKXaeVVxa/0PYysfwNLMafXFK2LjpCZUhicbF+TrOAa8vhJImfIrr 3tOg==
X-Gm-Message-State: ALoCoQlilLp4aTmH0+H2qpSrR1ZHFieE87WjWBhitFHCvv3G9ZchMkxprGrYv5BINSyYnzmwDpWs
X-Received: by 10.50.32.7 with SMTP id e7mr17716077igi.21.1427149083790; Mon, 23 Mar 2015 15:18:03 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.64.64.42 with HTTP; Mon, 23 Mar 2015 15:17:43 -0700 (PDT)
In-Reply-To: <CAD5OKxva22u=wxUrxKyUJ86On=bOw0o7170suVXk4QngoFdz-Q@mail.gmail.com>
References: <550E0F1A.2090303@ericsson.com> <BLU406-EAS2095DB481DB8142DA8BC0BB930C0@phx.gbl> <7594FB04B1934943A5C02806D1A2204B1D7729E2@ESESSMB209.ericsson.se> <CAD5OKxtB5qWQ1yYdGEOdKD55y0HPTGkY_hP0uV=PXEkRnZfcBg@mail.gmail.com> <CAOJ7v-0pQ=smq1EzpMrQBULm+mjscDXf=fpapdvMWtVX4FkWVw@mail.gmail.com> <CAD5OKxu5LVFGqyixLzG4W-FBYRa9VFm6NmAdCmD0_ccDrOJo2A@mail.gmail.com> <CAOJ7v-3NWNu8SLzv1VMuvj-FoAmUCfZ=f+Pa7ggLjPRctnhQhw@mail.gmail.com> <CAD5OKxva22u=wxUrxKyUJ86On=bOw0o7170suVXk4QngoFdz-Q@mail.gmail.com>
From: Justin Uberti <juberti@google.com>
Date: Mon, 23 Mar 2015 17:17:43 -0500
Message-ID: <CAOJ7v-04VuYP7WYZFUf_M==gftEZAF2Vsyd4UReeYnUimzXysQ@mail.gmail.com>
To: Roman Shpount <roman@telurix.com>
Content-Type: multipart/alternative; boundary="047d7b10cbf12e81620511fc0ae6"
Archived-At: <http://mailarchive.ietf.org/arch/msg/mmusic/UgvEdXvmUDE_5n06lBVFeN1KtIY>
Cc: mmusic <mmusic@ietf.org>, Ari Keränen <ari.keranen@ericsson.com>, "draft-uberti-mmusic-nombis@tools.ietf.org" <draft-uberti-mmusic-nombis@tools.ietf.org>, Christer Holmberg <christer.holmberg@ericsson.com>
Subject: Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 23 Mar 2015 22:18:05 -0000
On Mon, Mar 23, 2015 at 5:04 PM, Roman Shpount <roman@telurix.com> wrote: > > On Mon, Mar 23, 2015 at 5:54 PM, Justin Uberti <juberti@google.com> wrote: > >> >> No, ICE restart does not rehandshake (it's orthogonal). There is >> currently no SDP parameter defined that allows for a rehandshake, except >> for offering a new fingerprint; use of the a=connection attribute is >> explicitly forbidden by 5763. >> > > I think this was changed in the latest data channel draft, where it is > specified that fingerprint must not change unless the underlying transport > changes as well. The problem is that you cannot start a new DTLS session > unless it can be de-muxed from the previous sessions based on the transport > parameters. This means a new "virtual" channel for each new DTLS setup. > Which in turn means that there should be a way to identify which "virtual" > channel each packet belongs to based on the 5-tuple, with information > received during ICE handshake used to associate each 5-tuple with the > specific "virtual" channel. More then one 5-tuple can form a single virtual > channels but each 5-tuple can belong to one "virtual" channel at any given > time. > > >> >>> When you say m= line, how would the end point associate received packets >>> with the specific m= line? To handle forks this has to be local m= line and >>> remote m=line pair, but what does this translate into on the RTP/DTLS >>> transport layer? Do you propose to associate based on remote ufrag, local >>> ufrag and the set of local candidates associated with this m= line? Would >>> it not be simpler to prohibit ufrag reuse? >>> >> >> For unbundled cases this is non-ambiguous. For bundled cases, there is >> the mid header extension. >> >>> >>> > How does the mid header extension helps with DTLS packet de-multiplexing > in cases of DTLS-SRTP handshake or data channel? > This would only be an issue if multiple DTLS connections were multiplexed over a single ICE transport. I'm not aware of any need for this, compared to the clear need for muxing multiple RTP streams.
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Ari Keränen
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Justin Uberti
- [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Ari Keränen
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Bernard Aboba
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Christer Holmberg
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Roman Shpount
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Justin Uberti
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Jonathan Lennox
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Christer Holmberg
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Simon Perreault
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Roman Shpount
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Justin Uberti
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Roman Shpount
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Justin Uberti
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Roman Shpount
- Re: [MMUSIC] draft-uberti-mmusic-nombis and (D)TLS Justin Uberti