Re: [MMUSIC] draft-dtls-sdp: Allow offerer to establish DTLS association before it has received the SDP answer?

Roman Shpount <roman@telurix.com> Mon, 05 June 2017 16:58 UTC

MIME-Version: 1.0
In-Reply-To: <6125EAB1-A827-4E0F-B756-78F85BB411CD@iii.ca>
References: <D551D683.1D429%christer.holmberg@ericsson.com> <22C94242-218F-4724-AE92-E0B1E8DC2C82@nostrum.com> <21E8BA9D-E442-4DBC-8A7D-CEDFD5F54F8B@iii.ca> <CAD5OKxujAuzJt4QD6JXKHkVd4JB_nO5Th6KXjavMBww=W4644Q@mail.gmail.com> <6125EAB1-A827-4E0F-B756-78F85BB411CD@iii.ca>
From: Roman Shpount <roman@telurix.com>
Date: Mon, 05 Jun 2017 12:58:37 -0400
Message-ID: <CAD5OKxutcpUzh1yLA2kukmYmiHQg3+6fuXbaD0w73gzsAHEXzg@mail.gmail.com>
To: Cullen Jennings <fluffy@iii.ca>
Cc: Ben Campbell <ben@nostrum.com>, Eric Rescorla <ekr@rtfm.com>, Martin Thomson <martin.thomson@gmail.com>, Christer Holmberg <christer.holmberg@ericsson.com>, mmusic-chairs@ietf.org, mmusic <mmusic@ietf.org>
Content-Type: multipart/alternative; boundary="f403045c5a0c0d81dc0551396ae8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/mmusic/bJa-2yS7E7zYRZFGfkM1wZtqhzk>
Subject: Re: [MMUSIC] draft-dtls-sdp: Allow offerer to establish DTLS association before it has received the SDP answer?
Precedence: list

On Mon, Jun 5, 2017 at 10:03 AM, Cullen Jennings <fluffy@iii.ca> wrote:

>
> > On May 31, 2017, at 4:51 PM, Roman Shpount <roman@telurix.com> wrote:
> >
> > 1. Starting DTLS handshake until the corresponded answer is received is
> NOT RECOMMENDED since it can result in unauthenticated media. If
> unauthenticated media is played to the end user, in cases such as early
> media in SIP calls, this should be indicated to the end user.
>
> No. Doing the handshake as quickly as possible is recommend - it's what
> you do with the media before you know who you are talking to that is the
> issue you are concerned with. And knowing who you are talking often
> involves much more than checking the fingerprint. So I don't agree this is
> not recommended.
>

There are also implementation issues with getting media and not playing it.
End point will still need to either buffer or somehow process the received
packets so that playback can be started when the answer is received. If
handshake is delayed until answer is received, none of this is an issue, so
implementation is simpler.

More importantly, I do not think new systems should be built without ICE. I
understand there are legacy implementations which use symmetric UDP for
media. In such cases it is allowed to complete handshake. Such solutions
are legacy and building new systems like this are not recommended. It is
recommended that new systems should implement full ICE, consent to send,
and do not complete DTLS handshake before an answer SDP is received.

Regards,
_____________
Roman Shpount

[MMUSIC] draft-dtls-sdp: Allow offerer to establi… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Eric Rescorla
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Roman Shpount
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Eric Rescorla
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Martin Thomson
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Cullen Jennings
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Martin Thomson
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Martin Thomson
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Eric Rescorla
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Martin Thomson
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg
[MMUSIC] Fwd: draft-dtls-sdp: Allow offerer to es… Ben Campbell
Re: [MMUSIC] Fwd: draft-dtls-sdp: Allow offerer t… Cullen Jennings
Re: [MMUSIC] Fwd: draft-dtls-sdp: Allow offerer t… Roman Shpount
Re: [MMUSIC] Fwd: draft-dtls-sdp: Allow offerer t… Christer Holmberg
Re: [MMUSIC] Fwd: draft-dtls-sdp: Allow offerer t… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Cullen Jennings
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Roman Shpount
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Flemming Andreasen
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Roman Shpount
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Eric Rescorla
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Cullen Jennings
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Roman Shpount
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Paul Kyzivat
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Roman Shpount
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Cullen Jennings
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Roman Shpount
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Cullen Jennings
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Roman Shpount
Re: [MMUSIC] draft-dtls-sdp: Allow offerer to est… Christer Holmberg