Re: [rtcweb] Summary of ICE discussion

"Cary Bran (cbran)" <cbran@cisco.com> Tue, 04 October 2011 15:59 UTC

Return-Path: <cbran@cisco.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C8C1F21F8CE3 for <rtcweb@ietfa.amsl.com>; Tue, 4 Oct 2011 08:59:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 0.865
X-Spam-Level:
X-Spam-Status: No, score=0.865 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=1.396, RCVD_NUMERIC_HELO=2.067]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XzpJBkGNO-dl for <rtcweb@ietfa.amsl.com>; Tue, 4 Oct 2011 08:59:53 -0700 (PDT)
Received: from mtv-iport-3.cisco.com (mtv-iport-3.cisco.com [173.36.130.14]) by ietfa.amsl.com (Postfix) with ESMTP id 5EB8221F8BBD for <rtcweb@ietf.org>; Tue, 4 Oct 2011 08:59:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=cbran@cisco.com; l=2682; q=dns/txt; s=iport; t=1317744179; x=1318953779; h=subject:references:content-transfer-encoding:from: in-reply-to:message-id:date:to:cc:mime-version; bh=Y8LWRON58NPslPJLomaF/rFd1UDHOmxdxs3WyN8pHNY=; b=SVCxZG0TRLDB4+TkoC88gIYEP4ZsbzsD1UsVx3DHgp1zqJ8mjD2nZiE8 s9FLNO6LuvunzYnVNhPg4j2biz/UcEu39kC9AxmAqJoGuaOBGyaon3Q6B 57LBojNOiNFMkGd8f/vG32bwfj3mN7gPePqB4bicCik0IvEexHAgwkFrB 4=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AuQGAKcti06rRDoH/2dsb2JhbABChGaiJm0CgQWBUwEBAQMBAQEBDwEQSwsQAgEIBAo0AgInMAEBBBMih1oGmxABjEWRQwOGDzJhBIdIMItuhTCMMg
X-IronPort-AV: E=Sophos;i="4.68,485,1312156800"; d="scan'208,217";a="5873603"
Received: from mtv-core-2.cisco.com ([171.68.58.7]) by mtv-iport-3.cisco.com with ESMTP; 04 Oct 2011 16:02:58 +0000
Received: from xbh-sjc-221.amer.cisco.com (xbh-sjc-221.cisco.com [128.107.191.63]) by mtv-core-2.cisco.com (8.14.3/8.14.3) with ESMTP id p94G2wnC029166; Tue, 4 Oct 2011 16:02:58 GMT
Received: from xmb-sjc-228.amer.cisco.com ([128.107.191.125]) by xbh-sjc-221.amer.cisco.com with Microsoft SMTPSVC(6.0.3790.4675); Tue, 4 Oct 2011 09:02:58 -0700
Received: from 72.163.63.12 ([72.163.63.12]) by xmb-sjc-228.amer.cisco.com ([128.107.191.125]) with Microsoft Exchange Server HTTP-DAV ; Tue, 4 Oct 2011 16:02:57 +0000
References: <4E8B192E.80809@ericsson.com> <4E8B20BA.3080906@jesup.org> <CABcZeBOxoMd+MsP6ADLtvfW4MqMoysXqdNiw8Ph46-TzJDwB6Q@mail.gmail.com>
Content-Transfer-Encoding: 7bit
From: "Cary Bran (cbran)" <cbran@cisco.com>
Thread-Topic: [rtcweb] Summary of ICE discussion
Thread-Index: AcyCrxW5mSORE16BS1KG+5LRVl48tw==
Content-Type: multipart/alternative; boundary="Apple-Mail-287-134560162"; charset="iso-8859-1"
In-Reply-To: <CABcZeBOxoMd+MsP6ADLtvfW4MqMoysXqdNiw8Ph46-TzJDwB6Q@mail.gmail.com>
Message-ID: <F95A3F4E-104C-4224-A916-B1C8A316C36E@cisco.com>
Date: Tue, 04 Oct 2011 09:02:56 -0700
To: Eric Rescorla <ekr@rtfm.com>
MIME-Version: 1.0 (iPad Mail 8L1)
X-OriginalArrivalTime: 04 Oct 2011 16:02:58.0471 (UTC) FILETIME=[15DEC370:01CC82AF]
Cc: Randell Jesup <randell-ietf@jesup.org>, rtcweb@ietf.org
Subject: Re: [rtcweb] Summary of ICE discussion
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Oct 2011 15:59:53 -0000

I will integrate this into the NAT traversal draft and submit a 02 version of draft-cbran-rtcweb-nat for review.

-Cary

On Oct 4, 2011, at 8:34 AM, "Eric Rescorla" <ekr@rtfm.com> wrote:

> 
> 
> On Tue, Oct 4, 2011 at 8:05 AM, Randell Jesup <randell-ietf@jesup.org> wrote
> One observation about the security/attack-vector side of this:  Any objection that includes "if an attacker is in a MITM position they could trick the rtcweb client into sending media" is an invalid objection.  A MITM attacker could inject or re-route any amount of traffic they wanted already if they're in the media path.
> 
> Concur. ICE is primarily about web attackers, not network attackers.
> 
> -Ekr
>  
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb