IETF Logo Mail Archive

Re: [rtcweb] Mandating encryption of RTP header extensions for MID and RID SDES items

Bernard Aboba <bernard.aboba@gmail.com> Sat, 08 October 2016 03:32 UTC

Return-Path: <bernard.aboba@gmail.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E2F4C129435 for <rtcweb@ietfa.amsl.com>; Fri, 7 Oct 2016 20:32:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vr0iUaEeeKZl for <rtcweb@ietfa.amsl.com>; Fri, 7 Oct 2016 20:32:55 -0700 (PDT)
Received: from mail-pa0-x22a.google.com (mail-pa0-x22a.google.com [IPv6:2607:f8b0:400e:c03::22a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 66D83129407 for <rtcweb@ietf.org>; Fri, 7 Oct 2016 20:32:53 -0700 (PDT)
Received: by mail-pa0-x22a.google.com with SMTP id qn10so26085489pac.2 for <rtcweb@ietf.org>; Fri, 07 Oct 2016 20:32:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=Qu7lAwn1E4ks0610mwtbByB6E0yTGENNaUF8PVzHcKg=; b=y84LE2Eg0aSHdmSHgD9a07TKI77LGizMCv9tKFHaNevdd6x2DXD9F4d3Yl6bcXiMRq wZ/T7qqSKu65wuxjqeitMRNq3DOGbJXxQc34VV0XKASrhF4+bMESjRLGchHLWxOvitzw JopmtW3QhtFQ/YcwvApAEB+kS/bGFOhZ5PYnwwehGZcR6DvaAyQEMY/WmRGCEeOiTdtU rSk1hh2XU37rUiqNZFZw4APUcnvrMXMb84Vubc419OJ9yNvPH7WYu/AXetbP6NOHO07/ KN1DYCV2iXm4FkTm6IXRaU2Jcu0JDI+Pik/omBADKuviET/Zp9VobNUKBlpjFVC1wbk9 FHRQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=Qu7lAwn1E4ks0610mwtbByB6E0yTGENNaUF8PVzHcKg=; b=X/QJkWzES9LkoZT2jNe9ghECFyxxaKqtt1fVZHyKWhN9CTrX6pViQGW5lukLUBagEc iRJkiwGCbEXLCZW92Icrab9+Km7CkKofMMTy2zDdYcZbedfGn36yJTlzuBM/aj22znQ3 hQeSu3ROWzWE29ZUD2Q0mdb6nBbizhBWvvgVex6//A+CMCvOZZuNTXl2PpteA8q2uyno 6Qy37k4OtMpWhcwL+xZ7w7azhMLFERckthLJzhvnQK2nKunkHXsvJ+qSpih+hlTltY6t aZPx+egLd9OaEuiTe92MF3XMy7yCSgnuryLW/2nkAqsba3TlP9US1tko//iMFaAUo3tb nxiQ==
X-Gm-Message-State: AA6/9RnWKt1GADxRijSuSnX11eKLhgMsM9ovbs96ibdn6sRXBAOPePBJ73Dv18u0eC2i7g==
X-Received: by 10.67.3.102 with SMTP id bv6mr35363853pad.61.1475897573412; Fri, 07 Oct 2016 20:32:53 -0700 (PDT)
Received: from [192.168.1.105] (c-24-19-245-25.hsd1.wa.comcast.net. [24.19.245.25]) by smtp.gmail.com with ESMTPSA id u10sm17201366pau.32.2016.10.07.20.32.52 (version=TLS1 cipher=ECDHE-RSA-AES128-SHA bits=128/128); Fri, 07 Oct 2016 20:32:52 -0700 (PDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (1.0)
From: Bernard Aboba <bernard.aboba@gmail.com>
X-Mailer: iPad Mail (14A456)
In-Reply-To: <B6ECFC24-F28E-4E35-9437-B7DACB41EF69@iii.ca>
Date: Fri, 07 Oct 2016 20:32:50 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <DD1447CA-29F2-44FF-B08F-3CC0814C9748@gmail.com>
References: <e536bad2-08b1-4f77-8c75-6bc3b639c398@ericsson.com> <B6ECFC24-F28E-4E35-9437-B7DACB41EF69@iii.ca>
To: Cullen Jennings <fluffy@iii.ca>
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtcweb/0WW1LiQEPlLdnL4tC1qGZqOCb34>
Cc: RTCWeb IETF <rtcweb@ietf.org>
Subject: Re: [rtcweb] Mandating encryption of RTP header extensions for MID and RID SDES items
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Oct 2016 03:32:58 -0000

I don't see how snooping the MID and RID would provide info that could not be obtained in other ways. For example, an observer can tell audio from video traffic just by looking at packet sizes. Similarly, simulcast streams will originate from different SSRCs so no need to snoop the RID to figure out that there are multiple streams being sent (or even which ones are related since traffic will be correlated).

> On Oct 7, 2016, at 10:41, Cullen Jennings <fluffy@iii.ca> wrote:
> 
> 
> How are these a significant fingerprinting problem ?
> 
> 
>> On Oct 6, 2016, at 7:55 AM, Magnus Westerlund <magnus.westerlund@ericsson.com> wrote:
>> 
>> WG,
>> 
>> After discussion in AVTEXT and MMUSIC regarding the inclusion of MID and RID as SDES items that this do exposes labels that previously only have existed in the signalling plane in the media plane. And especially in the RTP header extensions, where even if the media payload is encrypted the header extension is not encrypted.
>> 
>> The risk with this is primarily a privacy and fingerprinting risk. And the proposed mitgation is encryption of the RTP header extensions in both the bundle and avtext-rid documents.
>> 
>> This leads to the conclusion that for RTCWeb, we must consider to act on these recommendations and decide on which implementation and usage requirement the protection of these field should have.
>> 
>> My proposal is that implementation and use of RFC6904 encryption of the RTP header extensions are REQUIRED. For RTCP it is actually unclear if there is mandatory to use encrypted SRTCP. I think it should be required and that can be clarified in Section 5.5 of draft-ietf-rtcweb-security-arch.
>> 
>> 
>> Opinions?
>> 
>> 
>> Cheers
>> 
>> Magnus Westerlund
>> 
>> ----------------------------------------------------------------------
>> Services, Media and Network features, Ericsson Research EAB/TXM
>> ----------------------------------------------------------------------
>> Ericsson AB                 | Phone  +46 10 7148287
>> Färögatan 6                 | Mobile +46 73 0949079
>> SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
>> ----------------------------------------------------------------------
>> 
>> _______________________________________________
>> rtcweb mailing list
>> rtcweb@ietf.org
>> https://www.ietf.org/mailman/listinfo/rtcweb
> 
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb

v2.23.0 | Report a Bug | By Email