IETF Logo Mail Archive

Re: [MMUSIC] [rtcweb] Draft new: draft-wang-mmusic-encrypted-ice-candidates

Iñaki Baz Castillo <ibc@aliax.net> Tue, 12 November 2019 16:10 UTC

Return-Path: <ibc@aliax.net>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CE68212009C for <mmusic@ietfa.amsl.com>; Tue, 12 Nov 2019 08:10:12 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=aliax-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tlw8B8OM6uTN for <mmusic@ietfa.amsl.com>; Tue, 12 Nov 2019 08:10:10 -0800 (PST)
Received: from mail-vk1-xa30.google.com (mail-vk1-xa30.google.com [IPv6:2607:f8b0:4864:20::a30]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 51C9E12004A for <mmusic@ietf.org>; Tue, 12 Nov 2019 08:10:10 -0800 (PST)
Received: by mail-vk1-xa30.google.com with SMTP id t184so4573699vka.1 for <mmusic@ietf.org>; Tue, 12 Nov 2019 08:10:10 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=aliax-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=JPXEr/lFCD5EV199rQ0vo9MiJC/OE1FvtmhLFz9x+IQ=; b=ds4JCYQT4bBQUTbCGuw050CoLFV6c2Pog+V0DYI/0+F8rPseqvR//blmYumhJYu+Ir Ic+IMDRioJpnQHPxK28oZMf6Ft1yQLDzpGACmif4VVDL6pK+snxnH6EE+I4c6lUoMVkd 3a+jGTH8no/KTmAulJVx1TO45OGctvl2HZmkfcQit+flsfIdiQvjsNmKog+/bUCgFfYD ySeNlDrn+uSMTQ8Qq2R4Nt+qIbIxpE7w0CdBU2vaLjqiGNb8fV9rZvJ2LPt9ZRlwB6eb L7cBV/MD58mzmarqXFsHWeVsNHpGiU5xnzG+0A5reE4qAapkpmEAKbUjqCOHC7jXgS2a cbVA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=JPXEr/lFCD5EV199rQ0vo9MiJC/OE1FvtmhLFz9x+IQ=; b=niLa9moc5rf4UHqXdis/YW1Ny68EnbLNJUTFFYhrN5oap2dyvlyTJBXSnG0O1sn7vD WHeJNTGGp8hH2fgSBTN3XEoi3A7qiApJfHoL1Y5swhRuxRgF7DGUFyvZWQhFRe1TM08m AtnL4CiIR7s/6gqnSMoIUa+6mWnoC/mC22eKgQtq2wkm8f0i/YiTu/mwuw+tutkPEnyJ ApNidtCd7sTEFEW7DMVpfcETSmO6t1JJF5sZ+ADGFM2R6UCcDbwtV2ajqJtNpMNRM7UD fxye9xFLS75IJmInT0ht5I1HcNJMUPekvf83uelWmkpeMAQpvGORmPb4MznaljTeUNtR Awlw==
X-Gm-Message-State: APjAAAUlTLcXINvQX9Zqu1qemkN/7EeXnybjDSvbmINb5v6LcclKUcPM TR3OKYz5/6vO6at7jCeDO6l0Fmx0oKnGOLOT3y7LJw==
X-Google-Smtp-Source: APXvYqzcIqeP4tDAI9eZH7FDBcxMg07BIYsvHVxsdn6HbqilVj7iyxJHhiLfqnt46kKsvgdRiurua0jsN1mxwFFOzZQ=
X-Received: by 2002:a1f:14d4:: with SMTP id 203mr21371719vku.40.1573575008982; Tue, 12 Nov 2019 08:10:08 -0800 (PST)
MIME-Version: 1.0
References: <CA+m752++Frkcq00Lcg0x6is+cWtg2NNf6unWdEiaG1JwTfNMQw@mail.gmail.com> <20191111090356.mfkn2nbzim7xvhg4@38f9d359441f.ant.amazon.com>
In-Reply-To: <20191111090356.mfkn2nbzim7xvhg4@38f9d359441f.ant.amazon.com>
From: Iñaki Baz Castillo <ibc@aliax.net>
Date: Tue, 12 Nov 2019 17:09:57 +0100
Message-ID: <CALiegfm5_y3kExjP-Hd-y+t73Oo6YaROcOLfArVDa-84f_T7Mg@mail.gmail.com>
To: Sean DuBois <sean@pion.ly>
Cc: Qingsi Wang <qingsi=40google.com@dmarc.ietf.org>, Alex Drake <alexdrake@google.com>, RTCWeb IETF <rtcweb@ietf.org>, mmusic@ietf.org
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/mmusic/nIXxzAYbwkmIMXabhYJDIlbouMU>
Subject: Re: [MMUSIC] [rtcweb] Draft new: draft-wang-mmusic-encrypted-ice-candidates
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Nov 2019 16:10:13 -0000

On Mon, 11 Nov 2019 at 10:04, Sean DuBois <sean@pion.ly> wrote:

> Have you thought about/explored encrypting the entire SessionDescription?

We can already use TLS (HTTPS or WSS) to exchange SDPs (or
"parameters" that the receiver will use to build a "remote SDP"). We
don't need yet another encryption layer to transmit a "blob" /
"string" between endpoints.


> There might be some issues I am not aware of, but it would give us some
> other nice things!
>
> * No more SDP munging (or at least make it harder)
>    - People shoot themselves in the foot constantly by editing things

We don't do it for fun.

>    - Will push people to communicate API needs more, instead of more hacks

Breaking the existing ability (even if hacky) to set stereo, inband
FEC, DTX, etc. for OPUS transmission by making it impossible does not
seem a good idea. Yes, a better and real API is needed, but that does
not justify breaking the only way we have to do it nowadays.




-- 
Iñaki Baz Castillo
<ibc@aliax.net>

v2.23.0 | Report a Bug | By Email