Re: [MMUSIC] Comments on draft-zhou-mmusic-sdes-keymod-01
Bernard Aboba <bernard_aboba@hotmail.com> Mon, 17 September 2012 16:42 UTC
Return-Path: <bernard_aboba@hotmail.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 49D4721F8714 for <mmusic@ietfa.amsl.com>; Mon, 17 Sep 2012 09:42:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.18
X-Spam-Level:
X-Spam-Status: No, score=-102.18 tagged_above=-999 required=5 tests=[AWL=0.418, BAYES_00=-2.599, HTML_MESSAGE=0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9Y+4gY6Pxzui for <mmusic@ietfa.amsl.com>; Mon, 17 Sep 2012 09:42:21 -0700 (PDT)
Received: from blu0-omc2-s12.blu0.hotmail.com (blu0-omc2-s12.blu0.hotmail.com [65.55.111.87]) by ietfa.amsl.com (Postfix) with ESMTP id 7E0E821F8711 for <mmusic@ietf.org>; Mon, 17 Sep 2012 09:42:21 -0700 (PDT)
Received: from BLU002-W35 ([65.55.111.72]) by blu0-omc2-s12.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Mon, 17 Sep 2012 09:42:19 -0700
Message-ID: <BLU002-W355F7F20FD0A6D75062BD893950@phx.gbl>
Content-Type: multipart/alternative; boundary="_f2a59468-9932-4044-9592-4b64c3d1ea3c_"
X-Originating-IP: [24.16.96.166]
From: Bernard Aboba <bernard_aboba@hotmail.com>
To: Eric Rescorla <ekr@rtfm.com>, "mmusic@ietf.org" <mmusic@ietf.org>
Date: Mon, 17 Sep 2012 09:42:19 -0700
Importance: Normal
In-Reply-To: <CABcZeBOuqNbaB6gqae6G_W1L_4t6kc6uOdAqBCu0SaiyH0e=8Q@mail.gmail.com>
References: <CABcZeBOuqNbaB6gqae6G_W1L_4t6kc6uOdAqBCu0SaiyH0e=8Q@mail.gmail.com>
MIME-Version: 1.0
X-OriginalArrivalTime: 17 Sep 2012 16:42:19.0954 (UTC) FILETIME=[67973920:01CD94F3]
Subject: Re: [MMUSIC] Comments on draft-zhou-mmusic-sdes-keymod-01
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mmusic>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Sep 2012 16:42:22 -0000
I agree. Since the (only) major advantage of SDES is its widespread deployment, it makes little sense to introduce patches that are unlikely to be widely implemented, particularly when they introduce other security problems. > From: ekr@rtfm.com > Date: Mon, 17 Sep 2012 09:29:33 -0700 > To: mmusic@ietf.org > Subject: [MMUSIC] Comments on draft-zhou-mmusic-sdes-keymod-01 > > This document describes an extension to SDES to address the fact that > in the case of retargeting/forking multiple targets get to see the > SDES key which the offerer will use for sending data. The proposal > here is to add an extension which can be sent by the answerer to > modify the key provided by the offerer. > > > This whole line of development doesn't seem like a very good idea. > During the RTPSEC work, we considered this problem and a bunch of > related problems with SDES (e.g., early media) and concluded that a > media-plane key establishment protocol was the right approach to > addressing this problem, among others. I don't see a lot of point in > doing piecemeal patches to SDES in an attempt to band-aid it's > fundamental problems. > > > This particular design seems particularly problematic in that > it allows an on-path proxy to force the offerer into using a > specific key. The general pattern would look like this: > > Alice Proxy Bob > > OFFER with K1 + keymod ---> > OFFER w/ K2 ------------> > <----------------- ANSWER > <- ANSWER with Keymod for K2 > > > With conventional SDES, the proxy gets to see the SDES key but > not to modify it. Obviously, he can change the key in flight, > but the sender will still use the old key. This design would > further weaken even the limited set of protections provided > by SDES. > > > -Ekr > _______________________________________________ > mmusic mailing list > mmusic@ietf.org > https://www.ietf.org/mailman/listinfo/mmusic
- [MMUSIC] Comments on draft-zhou-mmusic-sdes-keymo… Eric Rescorla
- Re: [MMUSIC] Comments on draft-zhou-mmusic-sdes-k… Bernard Aboba
- Re: [MMUSIC] Comments on draft-zhou-mmusic-sdes-k… zhou.sujing