IETF Logo Mail Archive

Re: [Perc] Drop support for E2E RTP header extensions

Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com> Fri, 12 May 2017 08:24 UTC

Return-Path: <sergio.garcia.murillo@gmail.com>
X-Original-To: perc@ietfa.amsl.com
Delivered-To: perc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3643612E043 for <perc@ietfa.amsl.com>; Fri, 12 May 2017 01:24:16 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4uVSMaaV65pF for <perc@ietfa.amsl.com>; Fri, 12 May 2017 01:24:14 -0700 (PDT)
Received: from mail-wm0-x233.google.com (mail-wm0-x233.google.com [IPv6:2a00:1450:400c:c09::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8EB87128DE5 for <perc@ietf.org>; Fri, 12 May 2017 01:18:14 -0700 (PDT)
Received: by mail-wm0-x233.google.com with SMTP id d127so6160268wmf.0 for <perc@ietf.org>; Fri, 12 May 2017 01:18:14 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:cc:from:message-id:date:user-agent :mime-version:in-reply-to; bh=89OpbrnNyjRuObuGmEQrZ1J7QFJVzy2eEd/5rh/KusY=; b=e8S+xeogTmeLebFAaBaAct6wbFB+5SDkKFJo4YC3N4KfDHdUZcE0Mtdpvjti1wsOtC 4x3bx1iyXwcRkWHJ/xjhxDcq+6SEB+AHsIHTvT1VqacGSh0jlXErAd4LmYIz+GFbmEck yyvgb+S2mViWRaYHaiD9Fr45o88QKEXgkWTh5eYVOzcRJ7SuUSC33h9FhUCl65H9O6Rq Vk0sP9FG6DgTm4kwkTHljT73MsCCPMXUWi92irEaYeYHf9+r/T8cKclD0pasD6e4SWKG iDOKWpoBOJ4+0lrJj4csPsXA3lk1TY0ycatBanYva817Atk4M7QpZenvuYf6IjiTaYlf gCxA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:cc:from:message-id:date :user-agent:mime-version:in-reply-to; bh=89OpbrnNyjRuObuGmEQrZ1J7QFJVzy2eEd/5rh/KusY=; b=q9UUKarpsWC7V8YFM7Gihpi4w8iJJIQrm29BoP8q/h/p/1SlMeiBhaxOnYM120WdvV hegqLbjqh6SKNj8CQVPYIHqXcdp63Buu9aIJN8NWxNu6XY0ys/KweX0nVIXMmrwriZM3 FS4rwdOZq6VH+rDbevmx1F1+bkete8BbYmzaFVyfBvjzuedGJqboTjkc7/CpJUYEekNo PfucuUL2YKj3CPZZo1f4Jmu/DGv8xHNu1khn/GLruxbFh/Jlm5rtjS0mPT3Opl7L6RfS dBGs8dc8meSlT9ossQeRTBz0FN0Faeu/5j3CbsnuD0Dsiz/9LU8bcEW8j72ZgTXENI/N UB3g==
X-Gm-Message-State: AODbwcAniRWEsFaCyTsYxaKuFfVb5B07DCTVYbbJuHjxebMidf45pJk0 Wh4mqKQrTn8G/g==
X-Received: by 10.28.165.210 with SMTP id o201mr1611230wme.8.1494577093023; Fri, 12 May 2017 01:18:13 -0700 (PDT)
Received: from [192.168.1.43] (84.red-83-36-143.dynamicip.rima-tde.net. [83.36.143.84]) by smtp.googlemail.com with ESMTPSA id 53sm3187751wrt.36.2017.05.12.01.18.12 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 12 May 2017 01:18:12 -0700 (PDT)
To: Cullen Jennings <fluffy@iii.ca>
References: <49c7de34-8bc6-bb7d-4524-0af26089eecb@gmail.com> <1CF6F66C-939F-484D-8C53-46ACB8CA69BE@vidyo.com> <27ca2993-5c66-8388-7187-b47ed8ae1340@gmail.com> <CAL02cgRDaz7BT+GzxWJ0cM7rebhd2cu2WbPy+Mwjkk0wJK=6mw@mail.gmail.com> <aef9a32f-f761-c9e8-de99-57c4acfd5088@gmail.com> <8FD07F5D-CD52-445B-AF75-BA1696F3A151@mozilla.com> <aff1a9bf-7dcb-71e6-3d01-afe5cac87ca5@gmail.com> <E234DDC1-9AB5-4C64-91C0-A8FCB58DA351@iii.ca> <8ddbf495-ac23-8529-aa0b-a233a0b336c0@gmail.com> <74BE8407-9AC0-45D3-9476-5C109A7B7A3C@iii.ca>
Cc: Nils Ohlmeier <nohlmeier@mozilla.com>, Richard Barnes <rlb@ipv.sx>, Jonathan Lennox <jonathan@vidyo.com>, "perc@ietf.org" <perc@ietf.org>
From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
Message-ID: <d79853a2-7fa4-2898-03ae-fa283990476f@gmail.com>
Date: Fri, 12 May 2017 10:18:12 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.8.0
MIME-Version: 1.0
In-Reply-To: <74BE8407-9AC0-45D3-9476-5C109A7B7A3C@iii.ca>
Content-Type: multipart/alternative; boundary="------------EDCA1EA04850406F72C94B49"
Archived-At: <https://mailarchive.ietf.org/arch/msg/perc/ceHsd988Oeod1h7iOGDp106gEt8>
Subject: Re: [Perc] Drop support for E2E RTP header extensions
X-BeenThere: perc@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Privacy Enhanced RTP Conferencing <perc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/perc>, <mailto:perc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/perc/>
List-Post: <mailto:perc@ietf.org>
List-Help: <mailto:perc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/perc>, <mailto:perc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 May 2017 08:24:16 -0000

On 12/05/2017 2:05, Cullen Jennings wrote:
>
> OK, I think I see what is causing the confusion...
>
> For a given header extension like say "urn:3gpp:video-orientation:6" 
> you are thinking that there needs to be a way for the conference 
> system to tell the endpoint if that given header is E2E encrypted or 
> only HBH. That is not how PERC is working, PERC has the specification 
> on header extensions when used in a PERC context tell the thing 
> sending the RTP what it needs to do or leaving it as an implementation 
> choice. The endpoint or browser is compiling that decisions in to the 
> code.
>
And that will cause problems. If the MD requires an extension to be HBH 
in order to be properly and the endpoint send it E2E, or some E2E and 
others HBH. If we decide to support E2E header extensions we have to 
provide a mechanism on the SDP to negotiate them. We just can leave it 
as an implementation choice.

> Of course the SDP can be used to decide if 
> "urn:3gpp:video-orientation:6" is in use or not but not how it is 
> encrypted.
>
(more on this below)

>> [...] One thing is integrity and another is E2E. Could you name some 
>> of those use cases?
>
> Uh, not getting what you mean by E2E here ? An example of something 
> that in some case might want end to end integrity is urn:3gpp:roi-sent
>

I mean E2E encrypted. Currently E2E extensions are not encrypted, just 
integrity protected. The MD will still be able to read their contents, 
but not modify it. AFAIK, if we want to encrypt them we would also need 
to support RFC 6904 when applying the inner crypto.

Best regards
Sergio

v2.23.0 | Report a Bug | By Email