IETF Logo Mail Archive

Re: [MMUSIC] AD evaluation: draft-ietf-mmusic-latching-04

Alissa Cooper <alissa@cooperw.in> Tue, 01 April 2014 18:30 UTC

Return-Path: <alissa@cooperw.in>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 87BE41A088C for <mmusic@ietfa.amsl.com>; Tue, 1 Apr 2014 11:30:24 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VN9DcsVyMGXE for <mmusic@ietfa.amsl.com>; Tue, 1 Apr 2014 11:30:22 -0700 (PDT)
Received: from out4-smtp.messagingengine.com (out4-smtp.messagingengine.com [66.111.4.28]) by ietfa.amsl.com (Postfix) with ESMTP id 15B441A0505 for <mmusic@ietf.org>; Tue, 1 Apr 2014 11:30:21 -0700 (PDT)
Received: from compute6.internal (compute6.nyi.mail.srv.osa [10.202.2.46]) by gateway1.nyi.mail.srv.osa (Postfix) with ESMTP id 3619420A6D for <mmusic@ietf.org>; Tue, 1 Apr 2014 14:30:18 -0400 (EDT)
Received: from frontend1 ([10.202.2.160]) by compute6.internal (MEProxy); Tue, 01 Apr 2014 14:30:18 -0400
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d=cooperw.in; h=date :subject:from:to:cc:message-id:references:in-reply-to :mime-version:content-type:content-transfer-encoding; s=mesmtp; bh=CkrBp2e2/AqD9iqjIjMkwfo6CS0=; b=ydxD9lWADbrwgTSoDsHfHvpu1jVE F+Dz7xzgHxZ/1AFJgSdA8sbT1w+DCDWIdN2S8tDjB6mvkeX94kFMylqC/wje6/Ei IH1WuNYcvvjS3LJBfSvxq2wnFO+ukUSH3xbiHb++/G/Xm4/K5tDmpCKCrI3A7xGE swsc49VfQcnOVsw=
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=date:subject:from:to:cc:message-id :references:in-reply-to:mime-version:content-type :content-transfer-encoding; s=smtpout; bh=CkrBp2e2/AqD9iqjIjMkwf o6CS0=; b=Qem4YX/gw2U1UzSO9kWYJSUFsY2OzR8RGiwVq5APA5jGQ95ZEXIKQX M/wd6Pf57d7zRzAPXdgRb7zNRVH+J6Ntof2bgHrZ69HVEMVqjzthbgsAgHTTzVe9 /Kk1uUukNBxAhCo47/SN24TZ4atHEQWrvbUW+eBxf78AcdjXb2zlU=
X-Sasl-enc: dkF5VdZwy6uV4EgSSUiE7K4A/cGrfzo3m1Pk7V/wOIKQ 1396377017
Received: from [171.68.18.132] (unknown [171.68.18.132]) by mail.messagingengine.com (Postfix) with ESMTPA id F3897C007AA; Tue, 1 Apr 2014 14:30:16 -0400 (EDT)
User-Agent: Microsoft-MacOutlook/14.3.9.131030
Date: Tue, 01 Apr 2014 11:30:13 -0700
From: Alissa Cooper <alissa@cooperw.in>
To: Emil Ivov <emcho@jitsi.org>
Message-ID: <CF6053C5.2F454%alissa@cooperw.in>
Thread-Topic: [MMUSIC] AD evaluation: draft-ietf-mmusic-latching-04
References: <CF489B5D.25EB0%alissa@cooperw.in> <CAPvvaaKM7S0jRA1dQgCZLGfg4ryNRriMfvSM3V6sD+=3TX4Jzw@mail.gmail.com>
In-Reply-To: <CAPvvaaKM7S0jRA1dQgCZLGfg4ryNRriMfvSM3V6sD+=3TX4Jzw@mail.gmail.com>
Mime-version: 1.0
Content-type: text/plain; charset="US-ASCII"
Content-transfer-encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/mmusic/fIm_yryoxDwAyaa05ZY8t4qt_4I
Cc: draft-ietf-mmusic-latching@tools.ietf.org, mmusic <mmusic@ietf.org>
Subject: Re: [MMUSIC] AD evaluation: draft-ietf-mmusic-latching-04
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 01 Apr 2014 18:30:24 -0000

Hi Emil,

Thanks for responding. Comments inline.

On 3/19/14 1:51 AM, "Emil Ivov" <emcho@jitsi.org> wrote:

>Hey Alissa,
>
>Apologies for the delay. My mail filters were somewhat messed up and I
>missed on some of the MMUSIC traffic.
>
>More inline.
>
>On Fri, Mar 14, 2014 at 8:41 PM, Alissa Cooper <alissa@cooperw.in> wrote:
>> I have reviewed this draft in preparation for IETF LC. I have one issue
>>that
>> I'd like to see the group discuss before issuing the LC: Section 1 says
>>"the
>> latching mechanism is considered inappropriate for general use on the
>> Internet unless all security considerations are taken into account and
>> solved." But given the lack of mitigations for attacks originating from
>> behind large-scale NATs as described in Section 5, it's not obvious to
>>me
>> that that condition can realistically be met.
>
>The draft suggests use of SRTP for authenticating media which does
>resolve the security issues (from a privacy/confidentiality
>perspective). 

I was more concerned with the DoS aspect.

>That's part of section 5:
>
>   Naturally, SRTP [RFC3711] would help mitigate such threats and should
>   be used independently of HNT.  For example, in cases where end-to-end
>   encryption is used it would still be possible for an attacker to
>   hijack a session despite the use of SRTP and perform a denial of
>   service attack.  However, media integrity would not be compromised.
>
>How does this sound to you?
>
>Now that I am reading it actually, I am thinking that there's no need
>for such a DoS to have permanent consequences. As long as an SRTP
>supporting SBC continues to latch to any new source until it
>authenticates one, then things should be fine.
>
>If this sounds reasonable, we will update the text in the next iteration.

Could you propose the text change on the list and we can hash it out here?

>
>Also it is worth reminding that the above threats apply mostly to
>generic Internet deployments. Many people using latching today, do so
>in controlled environments, where that kind of hijacking could not
>occur.

This was my point in raising the question about the characterization in
section 1. I think something like the following might capture the
situation better:

OLD:
Due to the security issues presented in Section 5, the latching mechanism
is considered inappropriate for general use on the Internet unless all
security considerations are taken into account and solved.


NEW:
Due to the security issues presented in Section 5, the latching mechanism
is considered inappropriate for general use on the Internet, and in
controlled environments unless all security considerations are taken into
account and solved.



>
>> There is an in-text reference to "[tcp-splicing]," but there is no such
>> reference in the references section.
>
>Oh right! Do we have a good reference about this at the IETF?
>Otherwise we could just go for something like this:
>
>"TCP Splice for application layer proxy performance" DA Maltz, P
>Bhagwat - Journal of High Speed Networks, 1999 - IOS Pressure

I think that's fine. I'm not aware of an IETF spec.

Alissa

>
>Emil
>
>-- 
>https://jitsi.org

v2.31.3 | Report a Bug | By Email | System Status