IETF Logo Mail Archive

Re: [MMUSIC] Generalizing the aggressive nomination bugfix

Dan Wing <dwing@cisco.com> Wed, 12 March 2014 15:17 UTC

Return-Path: <dwing@cisco.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C536E1A073C for <mmusic@ietfa.amsl.com>; Wed, 12 Mar 2014 08:17:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -13.998
X-Spam-Level:
X-Spam-Status: No, score=-13.998 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DATE_IN_PAST_12_24=1.049, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.547, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cI4oVuyv-t1Q for <mmusic@ietfa.amsl.com>; Wed, 12 Mar 2014 08:17:34 -0700 (PDT)
Received: from mtv-iport-4.cisco.com (mtv-iport-4.cisco.com [173.36.130.15]) by ietfa.amsl.com (Postfix) with ESMTP id B10E21A045D for <mmusic@ietf.org>; Wed, 12 Mar 2014 08:17:34 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=6638; q=dns/txt; s=iport; t=1394637449; x=1395847049; h=mime-version:subject:from:in-reply-to:date:cc:message-id: references:to; bh=r4PGqGmTxLOZsHcvYwVGq2iogT5ai8cfJgHmSMOH6io=; b=EQxPVdSiRdME8FmY8awbqul0h4YlBtcA3zDP1BDnqMNTNmNUyLCNeFo+ OxAv+aFzeEPeUREU+m44d1U9Zj7QGjcmUUmbECnXMCEm3U4bjifhikeHc EekNV6oF3ftshW1UP9+s2TO9i4pKXJI2JAfJ515pLGhWQv2ZyE3gdhaPV U=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgkFAEp5IFOrRDoH/2dsb2JhbABagwbCZoEcFnSCJQEBAQMBeQULCw44VwYTG4dWB9IXF45cB4MkgRQEmEWGTIthgy09
X-IronPort-AV: E=Sophos; i="4.97,638,1389744000"; d="scan'208,217"; a="107960295"
Received: from mtv-core-2.cisco.com ([171.68.58.7]) by mtv-iport-4.cisco.com with ESMTP; 12 Mar 2014 15:17:28 +0000
Received: from [10.21.79.5] ([10.21.79.5]) by mtv-core-2.cisco.com (8.14.5/8.14.5) with ESMTP id s2CFGxxv018410; Wed, 12 Mar 2014 15:17:27 GMT
Content-Type: multipart/alternative; boundary="Apple-Mail=_792C02C5-057A-4A7D-B83E-72E7E8073C87"
Mime-Version: 1.0 (Mac OS X Mail 6.6 \(1510\))
From: Dan Wing <dwing@cisco.com>
In-Reply-To: <CAOJ7v-3oi-Qtsk6qiPVsAUfzEQsvgt4h6RhgfKDNUv_-47wpOA@mail.gmail.com>
Date: Tue, 11 Mar 2014 23:49:23 +0000
Message-Id: <BFFAE2A7-089D-452F-867E-BEF622BEFB77@cisco.com>
References: <CAOJ7v-3oi-Qtsk6qiPVsAUfzEQsvgt4h6RhgfKDNUv_-47wpOA@mail.gmail.com>
To: Justin Uberti <juberti@google.com>
X-Mailer: Apple Mail (2.1510)
Archived-At: http://mailarchive.ietf.org/arch/msg/mmusic/aO_8orNHmj-EppkOuL_8D_LCr3U
Cc: "mmusic@ietf.org" <mmusic@ietf.org>
Subject: Re: [MMUSIC] Generalizing the aggressive nomination bugfix
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Mar 2014 15:17:40 -0000

On Mar 10, 2014, at 6:21 AM, Justin Uberti <juberti@google.com> wrote:

> In the WG session on Monday, Ari mentioned that the aggressive nomination bug of controller and controlled not agreeing on the candidate pair to use could be rectified by having the controlled side switch its preferred candidate pair to be the one that it received secure media on (or if not using controlled media, when the controlling side’s ICE checks finally got through).
> 
> I think there is an opportunity here to improve the overall flexibility of ICE. Currently, Regular Nomination allows the controller to have a fair amount of discretion in choosing which candidate pair it wants to pick; it could use metrics such as RTT, or perhaps one of the values mentioned in DISCUSS to make its selection, instead of using the static PRIORITY value. Aggressive Nomination, while faster in initially establishing media, does not afford this same discretion; according to 5245, S 8.1.1.2, ICE uses the highest PRIORITY candidate pair. So it would be great if there was a way to allow the controller have the same discretion for choosing the selected candidate pair, while also doing Aggressive Nomination.
> 
> I think this can easily be done using Ari’s solution in a general way. In short, any time secure media packets are received by the controlled side, it should use that candidate pair to send its own media. (Secure media is needed to prevent an attacker from tricking the controlled side into sending media to an arbitrary address.) If secure media is not used, the controller could include a new attribute, something like a new PREFERRED-CANDIDATE attribute (or perhaps an updated PRIORITY attribute, set to the max ICE priority), to tell the controlled side which candidate pair should be used.
> 
That all sounds good.

> This would allow the controller to do periodic RTT checks, perhaps using the ICE consent mechanism, and dynamically change the media path as needed.
> 

I think we need additional signaling to switch interfaces, because each endpoint needs to participate in the decision (e.g., draft-wing-mmusic-ice-mobility).  For example, the controlling endpoint might have unmetered Internet access, whereas the other endpoint has fast metered Internet (e.g., LTE) and slower unmetered Internet (e.g., DSL) -- but if the controlling endpoint effectively ignores the ICE priorities in favor of round trip time calculations, the controlled endpoint will use LTE.  ICE priorities allows both ends to indicate their preferences.  We might need something more than ICE priorities, too, or a way to strongly say an interface is not preferred (because that interface is metered).

-d

v2.23.0 | Report a Bug | By Email