IETF Logo Mail Archive

Re: [MMUSIC] Input wanted for draft-ietf-mmusic-sdp-uks

Martin Thomson <martin.thomson@gmail.com> Fri, 15 June 2018 16:14 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D7B41130F74 for <mmusic@ietfa.amsl.com>; Fri, 15 Jun 2018 09:14:15 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1bdlHizho6pX for <mmusic@ietfa.amsl.com>; Fri, 15 Jun 2018 09:14:13 -0700 (PDT)
Received: from mail-ot0-x232.google.com (mail-ot0-x232.google.com [IPv6:2607:f8b0:4003:c0f::232]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 075A5130F0F for <mmusic@ietf.org>; Fri, 15 Jun 2018 09:14:13 -0700 (PDT)
Received: by mail-ot0-x232.google.com with SMTP id 92-v6so11562989otw.9 for <mmusic@ietf.org>; Fri, 15 Jun 2018 09:14:12 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=M5Auji+S4TCsiHBD/6NV2iaKrwBAcpVTOrEIumrnfzo=; b=Tt9Sc1Gu3M/xwpseEfTHs3CwcWF+xKWlhlHhSlfL7RU6+ZR49yMG0KZcA8UenwADqG 1Gxg98jgqYYWD0oYguGXCIesAr9xLY+WTg6bx1erf59FpixC/uKy0BUXFqVtkEujYabr iSl0GDLv8ZnoJmvnxIYyjSBF7+Nh6e1FKxAVEfKMsFs2k5UjdzeXOjUFc05Xkb8iFh5K fic3sdr9FvQP+4VT0plM+vxfY4t68M6E433NJlXrvQJTAoBXqL7jT0dBicZDb4FGQGzr uHF9PUBqCtZ7lOnnGku1fX81vZFuE+/aKJjBJeumByKo09VOUWH3guVX2M2+9gVDM6cU xQBA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc:content-transfer-encoding; bh=M5Auji+S4TCsiHBD/6NV2iaKrwBAcpVTOrEIumrnfzo=; b=VZg1onr+Z6JWYHrvzu5SSPHG73S+A83d+lhgr9MvjIo1wjBtLKX0iVo+6Bv10S5zT/ RXGB3L3h0OafQ3K08moAqVEsD9sKNFBNlenkuNyGMFKsUwFlKPAhza5uz2hVA6oomMRc clCordriUtclE1ItI09xjmYI+mhzLZYB9cj60TCaFglOPZjqoQN/cs92+ClgpOqy0PVA kGn8s1YI9sOoJsqZKu+0Yc6+pg9I/kqUxzynyLwVdUVw94uLDIy2R8cbwMGnl2uJtdxN A7+9mq8wmLbg0TaJIL0eOJMPF7/cnJeCWxgOx0Yf7Epb8CesFQzULbWbRL3oR6ME1qbH XtQQ==
X-Gm-Message-State: APt69E0YUBODzCwOGp4wwimXtK3FuewZ+06TGrskijfLz34RuXrnOa8z ZGCwrOhEmr7O5bGcJpRqORDBqwpcOgs+03QZURA=
X-Google-Smtp-Source: ADUXVKKGc3K7DPvgUM6aS8Pq/8q77Q2hxmnSuTs/M5XByDRfMoMxtsn9JXrK5GoK2VlEQSFYD5AzkLyHhdlVCH/jBFA=
X-Received: by 2002:a9d:4044:: with SMTP id o4-v6mr1304876oti.283.1529079252223; Fri, 15 Jun 2018 09:14:12 -0700 (PDT)
MIME-Version: 1.0
References: <DB7PR07MB3850C6167834ABFD35D598988D950@DB7PR07MB3850.eurprd07.prod.outlook.com> <a3fbc621-c0cd-4d72-ee59-d4c66dcd9c05@cisco.com>
In-Reply-To: <a3fbc621-c0cd-4d72-ee59-d4c66dcd9c05@cisco.com>
From: Martin Thomson <martin.thomson@gmail.com>
Date: Fri, 15 Jun 2018 09:14:03 -0700
Message-ID: <CABkgnnUwZ4-7vvCimxdzF_2HVrK-aSbV0O2ENDHRL19EWKWzLg@mail.gmail.com>
To: Flemming Andreasen <fandreas@cisco.com>
Cc: Bo Burman <bo.burman@ericsson.com>, mmusic@ietf.org, Eric Rescorla <ekr@rtfm.com>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/mmusic/vVma9WOh91YSXbTXPM3vPNPsSq0>
Subject: Re: [MMUSIC] Input wanted for draft-ietf-mmusic-sdp-uks
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 15 Jun 2018 16:14:22 -0000

Thanks for reviewing this Flemming.

This is definitely a difficult attack to understand (and therefore
also explain).  I took a look at the description we have in the draft
and tried to improve it a little.  I pointed out that the basic attack
can be extended to session concatenation in the overview section, and
tweaked the wording in a few places.

However, I don't think that details of signaling would make this
clearer.  Though it's possible that this is eliding a few things that
seem obvious to me.  Of course, I'm too close to this to be sure.
Maybe we can discuss how this works and maybe we can figure out how to
improve the text.

This has been pretty widely reviewed, but I can provide another nudge
for the related working groups to have a look.



On Thu, Jun 14, 2018 at 2:43 PM Flemming Andreasen <fandreas@cisco.com> wrote:
>
> I took a look at the document and have a couple of comments:
>
> I was initially expecting the unknown key share attack to be about what the document refers to as Session Concatenation (in Section 5), however the attack overview in Section 2.1 describes two other attack scenarios instead. I think it would be helpful to be clear on all the attack scenarios up front.
>
> Secondly, I find it very difficult to follow the "two concurrent calls" attack scenario described. The overview is very high-level and the example in Section 2.3 omits too many details for me to fully understand the attack (there seems to be more going on between Mallory and Patsy than explained in the text and there are subtleties around what Mallory actually does with the respective SIP, DTLS and media packets for each session that are not entirely clear to me). Without a solid understanding of the attack, it is difficult to determine if the proposed solution truly mitigates it (I was in fact wondering about how the solution would work with session concatenation in the absence of somehow securely associating the session identifier with a particular SIP signaling session, which the document gets more into later in Section 5).
>
> A similar concern applies to the WebRTC use case, since I'm not familiar with the details of how that works, and hence would benefit from more details.
>
> On that note, there are solution elements here that span TLS/DTLS, SDP, and WebRTC/RTCWeb, and we should ensure those groups review the document as well. Have the authors circulated the document in those groups ?
>
> Thanks
>
> -- Flemming (as individual)
>
>
>
>
> On 5/21/18 9:44 AM, Bo Burman wrote:
>
> WG,
>
>
>
> We have not seen any discussion on the list for this draft since it was submitted late January 2018. Please consider reviewing and commenting if you have interest in progressing the draft. It is a short document (only 13 pages in total).
>
>
>
> Datatracker: https://datatracker.ietf.org/doc/draft-ietf-mmusic-sdp-uks/
>
>
>
> Cheers,
>
> Bo
>
> MMUSIC co-chair
>
>
>
>
>
> _______________________________________________
> mmusic mailing list
> mmusic@ietf.org
> https://www.ietf.org/mailman/listinfo/mmusic
>
>

v2.23.0 | Report a Bug | By Email