Re: [pntaw] New version of TURN over websockets draft

Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com> Fri, 20 September 2013 23:25 UTC

Return-Path: <sergio.garcia.murillo@gmail.com>
X-Original-To: pntaw@ietfa.amsl.com
Delivered-To: pntaw@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 184B921F9F34 for <pntaw@ietfa.amsl.com>; Fri, 20 Sep 2013 16:25:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.559
X-Spam-Level:
X-Spam-Status: No, score=-2.559 tagged_above=-999 required=5 tests=[AWL=0.039, BAYES_00=-2.599, HTML_MESSAGE=0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LtgctCqnjE1w for <pntaw@ietfa.amsl.com>; Fri, 20 Sep 2013 16:25:49 -0700 (PDT)
Received: from mail-wi0-x231.google.com (mail-wi0-x231.google.com [IPv6:2a00:1450:400c:c05::231]) by ietfa.amsl.com (Postfix) with ESMTP id CEBA121F9F31 for <pntaw@ietf.org>; Fri, 20 Sep 2013 16:25:48 -0700 (PDT)
Received: by mail-wi0-f177.google.com with SMTP id cb5so197739wib.4 for <pntaw@ietf.org>; Fri, 20 Sep 2013 16:25:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:cc:subject :references:in-reply-to:content-type; bh=vq+Btz93JuNXiN0T/vmLy4PnEoWldfUZCkNlDpPavJY=; b=H510Q+v8T6aMbxbnPq/c4X6zyyH/OAggpd/rdGP8CF77wumv/N2fUv2RI19QWdaMOV vxq/eMmvSTE8LPVz+SYjJ0pDzMW3wvSaQXX+989caBFe1a5toIME3hjLE+XoHIhWgCPW hBMWWMylLvGVPUOAjoOp+Q7MEtPlaDrMzEboVxiKiKzMrOmcIau51o26cTt+oyEIKw8y mqkUCtBPrURB6hOjkjeOEzn81Ot+1zpqeqeRZccsD74LI0x/wgWcROzbYz0gExjDFKzy +6dUh2buoGrWHOOAcDm4jvs4dpyCk4DDmTBFZ8Hsy1l++clxAvQj6W9gZU1JX1m8oEhr xo8w==
X-Received: by 10.180.206.129 with SMTP id lo1mr4544015wic.15.1379719545495; Fri, 20 Sep 2013 16:25:45 -0700 (PDT)
Received: from [192.168.1.2] (171.pool85-51-25.dynamic.orange.es. [85.51.25.171]) by mx.google.com with ESMTPSA id l9sm7869666wif.10.1969.12.31.16.00.00 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Fri, 20 Sep 2013 16:25:44 -0700 (PDT)
Message-ID: <523CD979.4090202@gmail.com>
Date: Sat, 21 Sep 2013 01:25:45 +0200
From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130801 Thunderbird/17.0.8
MIME-Version: 1.0
To: Oleg Moskalenko <mom040267@gmail.com>
References: <5232C18C.1030102@gmail.com> <523C8BDC.6050705@petit-huguenin.org> <CALDtMrKwygUqNWKcB81F+M7Y8wBmwZtTACeYChpJVvWKbXLTEw@mail.gmail.com> <523C9B03.2030002@petit-huguenin.org> <CALDtMrJBQQZP4bbkLh6OcZhmOGFrP5bAJ8BDr0AY1zKjPXChPw@mail.gmail.com> <523CAC92.2070102@petit-huguenin.org> <523CB114.20106@gmail.com> <CALDtMrJ2rLfpcNjVXNTx52XxA=4QAZ_ukBM7-QcnYcJ53pmjXA@mail.gmail.com>
In-Reply-To: <CALDtMrJ2rLfpcNjVXNTx52XxA=4QAZ_ukBM7-QcnYcJ53pmjXA@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------070204040806070507010002"
Cc: Victor Pascual Avila <victor.pascual.avila@gmail.com>, Marc Petit-Huguenin <marc@petit-huguenin.org>, "pntaw@ietf.org" <pntaw@ietf.org>, Lorenzo Miniero <lorenzo@meetecho.com>, "Chenxin \(Xin\)" <hangzhou.chenxin@huawei.com>
Subject: Re: [pntaw] New version of TURN over websockets draft
X-BeenThere: pntaw@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Discussion list for practices related to proxies, NATs, TURN, and WebRTC" <pntaw.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pntaw>, <mailto:pntaw-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/pntaw>
List-Post: <mailto:pntaw@ietf.org>
List-Help: <mailto:pntaw-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pntaw>, <mailto:pntaw-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Sep 2013 23:25:50 -0000

El 21/09/2013 1:14, Oleg Moskalenko escribió:
> On Fri, Sep 20, 2013 at 1:33 PM, Sergio Garcia Murillo 
> <sergio.garcia.murillo@gmail.com 
> <mailto:sergio.garcia.murillo@gmail.com>> wrote:
>
>     Also, I would like to introduce in next draft version how HTTP
>     authentication/authorization (oAuth, cookies, etc) mechanisms
>     could be used in the TURN over websocekt connection on top of the
>     standard TURN authentication. That would remove the need for the
>     current REST API fro access to TURN services. If anyone would be
>     willing to collaborate on this (or any other subject) will be very
>     welcome.
>
>
> Sergio, regarding the authentication stuff that you are proposing: 
> that may change the nature of the draft. The current draft does not 
> affect TURN functionality - it only adds a new option for the 
> client-server transport. That may be a very good thing about the 
> draft; it makes it acceptable, I guess, to most of the concerned 
> people. If you are going to introduce changes in the TURN protocol 
> (like new attributes and new behavior), then the draft will get 
> another dimension, and it may make it more difficult to get accepted 
> and approved (and implemented, too).
>
> The original purpose of the draft was to allow WebRTC communications 
> in some very unforgiving strict corporate environments (correct me if 
> this is not true). A new authentication mechanism, strictly speaking, 
> has nothing to do with that original goal. It may be a nice thing - 
> but it may be a theme for an add-on next-step specification.
>
> Just my opinion.
>
> Regards,
> Oleg
>

Hi Oleg,

I will definitively will be working on the authentication part, as it 
may be a very interesting feature for webrtc and would provide a 
differential value for TURN over websockets compared to TURN over 
TCP/TLS . But I agree that maybe it will be better to create a different 
draft to not mix discussions.

Best regard
Sergio