IETF Logo Mail Archive

Re: [P2PSIP] HIP vs. TLS/DTLS/SRTP (was HIP pros and cons)

Eric Rescorla <ekr@networkresonance.com> Sun, 23 December 2007 22:18 UTC

Return-path: <p2psip-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1J6Z9S-0003go-NJ; Sun, 23 Dec 2007 17:18:30 -0500
Received: from [10.90.34.44] (helo=chiedprmail1.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1J6Z9R-0003bE-30 for p2psip@ietf.org; Sun, 23 Dec 2007 17:18:29 -0500
Received: from [74.95.2.173] (helo=romeo.rtfm.com) by chiedprmail1.ietf.org with esmtp (Exim 4.43) id 1J6Z9Q-0005qQ-KA for p2psip@ietf.org; Sun, 23 Dec 2007 17:18:29 -0500
Received: from romeo.rtfm.com (localhost.rtfm.com [127.0.0.1]) by romeo.rtfm.com (Postfix) with ESMTP id 78A7A5081A; Sun, 23 Dec 2007 14:18:06 -0800 (PST)
Date: Sun, 23 Dec 2007 14:18:06 -0800
From: Eric Rescorla <ekr@networkresonance.com>
To: Miika Komu <miika@iki.fi>
Subject: Re: [P2PSIP] HIP vs. TLS/DTLS/SRTP (was HIP pros and cons)
In-Reply-To: <Pine.SOL.4.64.0712232352470.25393@kekkonen.cs.hut.fi>
References: <476697F2.4080903@uni-tuebingen.de> <0F3808C7-7BFA-4874-8105-A7AE3F4606A5@magma.ca> <20071218084807.4047C33C69@delta.rtfm.com> <Pine.SOL.4.64.0712232239250.25393@kekkonen.cs.hut.fi> <20071223213331.979885081A@romeo.rtfm.com> <Pine.SOL.4.64.0712232352470.25393@kekkonen.cs.hut.fi>
User-Agent: Wanderlust/2.14.0 (Africa) Emacs/21.3 Mule/5.0 (SAKAKI)
MIME-Version: 1.0 (generated by SEMI 1.14.6 - "Maruoka")
Content-Type: text/plain; charset="US-ASCII"
Message-Id: <20071223221806.78A7A5081A@romeo.rtfm.com>
X-Spam-Score: 0.1 (/)
X-Scan-Signature: 52f7a77164458f8c7b36b66787c853da
Cc: P2PSIP Mailing List <p2psip@ietf.org>, Henry Sinnreich <hsinnrei@adobe.com>, Philip Matthews <philip_matthews@magma.ca>
X-BeenThere: p2psip@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Peer-to-Peer SIP working group discussion list <p2psip.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/p2psip>, <mailto:p2psip-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/p2psip>
List-Post: <mailto:p2psip@ietf.org>
List-Help: <mailto:p2psip-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/p2psip>, <mailto:p2psip-request@ietf.org?subject=subscribe>
Errors-To: p2psip-bounces@ietf.org

At Mon, 24 Dec 2007 00:02:22 +0200 (EET),
Miika Komu wrote:
> 
> On Sun, 23 Dec 2007, Eric Rescorla wrote:
> 
> >> On Tue, 18 Dec 2007, Eric Rescorla wrote:
> >>
> >>> At Mon, 17 Dec 2007 17:30:24 -0500,
> >>> Philip Matthews wrote:
> >>>> In all three proposals, media packets would flow directly between the
> >>>> X and Y, and not hop-by-hop around the overlay. So when ESP was used,
> >>>> there would be no need to use STRP for media, or TLS or DTLS for
> >>>> signaling.
> >>>
> >>> This is arguably a bug, not a feature.
> >>>
> >>> SRTP was explicitly designed to have very low overhead: just the
> >>> bits of the authentication tag itself, with no header, etc. The
> >>> rationale for this design was that RTP packets tend to be very
> >>> small and so the overhead for the header, IV, etc. was significant.
> >>> In cases where that type of constraint applies, then wrapping the
> >>> RTP in ESP would be bad.
> >>
> >> I think the difference is around 18 bytes:
> >>
> >> http://dasan.sejong.ac.kr/~wisa04/ppt/1A1.ppt
> >>
> >> In practice, the difference is insignificant according to these results:
> >>
> >> Bilien et at: Secure VoIP: call establishment and media protection:
> >> http://www.minisip.org/publications/secvoip-minisip-camera.pdf
> >
> > I don't see that this paper is at all relevant to the question of whether 18
> > bytes of per-packet overhead is significant. In any case, if you want
> > to argue this point, I would advise you to take it up in AVT, since
> > low overhead was one of the principal design considerations for
> > SRTP.
> 
> I find this answer unsatisfying for three reasons.

I wasn't aware it was my job to satisfy you.


> First, I don't think 
> that the SRTP has been fixed for this working group unless I have 
> mistaken. 

Sure. Go ahead and explain to the RAI, SEC, and TSV ADs and
the AVT chairs that you propose that RTP security for P2PSIP
will be using a different set of security mechanisms from
those used for ordinary SIP-based VoIP. Let me know what
they say.


> Secondly, I find the paper highly relevant to the original 
> discussion. Thirdly, SRTP RFC does not discuss the differences between 
> IPsec and SRTP, but merely mentions it in one sentence. Looking forward 
> for more accurate references to SRTP, preferably with some performance 
> results.

As I recall, this was extensively discussed on the AVT mailing list
during the period when RTP was being designed. As I said in my
previous message, this is primarily a topic for the AVT WG.

-Ekr

_______________________________________________
P2PSIP mailing list
P2PSIP@ietf.org
https://www1.ietf.org/mailman/listinfo/p2psip

v2.23.0 | Report a Bug | By Email