IETF Logo Mail Archive

Re: [rtcweb] Resolving RTP/SDES question in Paris

Randell Jesup <randell-ietf@jesup.org> Mon, 19 March 2012 08:56 UTC

Return-Path: <randell-ietf@jesup.org>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0B85821F85DB for <rtcweb@ietfa.amsl.com>; Mon, 19 Mar 2012 01:56:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.172
X-Spam-Level:
X-Spam-Status: No, score=-2.172 tagged_above=-999 required=5 tests=[AWL=0.427, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RwQroi7QQImu for <rtcweb@ietfa.amsl.com>; Mon, 19 Mar 2012 01:56:47 -0700 (PDT)
Received: from r2-chicago.webserversystems.com (r2-chicago.webserversystems.com [173.236.101.58]) by ietfa.amsl.com (Postfix) with ESMTP id 2E42C21F85D2 for <rtcweb@ietf.org>; Mon, 19 Mar 2012 01:56:47 -0700 (PDT)
Received: from pool-108-16-41-249.phlapa.fios.verizon.net ([108.16.41.249] helo=[192.168.1.12]) by r2-chicago.webserversystems.com with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.69) (envelope-from <randell-ietf@jesup.org>) id 1S9YOU-0004mW-SE for rtcweb@ietf.org; Mon, 19 Mar 2012 03:56:46 -0500
Message-ID: <4F66F431.9030604@jesup.org>
Date: Mon, 19 Mar 2012 04:54:09 -0400
From: Randell Jesup <randell-ietf@jesup.org>
User-Agent: Mozilla/5.0 (Windows NT 5.1; rv:10.0.2) Gecko/20120216 Thunderbird/10.0.2
MIME-Version: 1.0
To: rtcweb@ietf.org
References: <4F4759DC.7060303@ericsson.com> <387F9047F55E8C42850AD6B3A7A03C6C0E1FEB69@inba-mail01.sonusnet.com> <CALiegfnkYVEpmPV-zSL_4wOY-HiFZN-qJCQCiioaS=5NaqhLZw@mail.gmail.com> <CAD5OKxvtOAxMBx6xDnyfTnEq76oDEm6uj1xL6wGjjrtKUAHy3g@mail.gmail.com> <CABcZeBNZiotPmCfT53uEo+O0xw4xv6tXW1M_G-3A5BHuncsduA@mail.gmail.com> <CAD5OKxvYOY5JZ2mYNGiH1poUBQkyOOycePFijH5H+SxtcdqujQ@mail.gmail.com> <CABkgnnVe-b6Sv=R67bMJk_NQqQwdrRUn6rBm7Gu_CMcfPQwtEg@mail.gmail.com> <CAD5OKxvZbEJ7sV4WPAYoQapzMR_QwAftj-oKg=ioMKHNT792wQ@mail.gmail.com> <6F428EFD2B8C2F49A2FB1317291A76C113563C5A92@USNAVSXCHMBSA1.ndc.alcatel-lucent.com>
In-Reply-To: <6F428EFD2B8C2F49A2FB1317291A76C113563C5A92@USNAVSXCHMBSA1.ndc.alcatel-lucent.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - r2-chicago.webserversystems.com
X-AntiAbuse: Original Domain - ietf.org
X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12]
X-AntiAbuse: Sender Address Domain - jesup.org
X-Source:
X-Source-Args:
X-Source-Dir:
Subject: Re: [rtcweb] Resolving RTP/SDES question in Paris
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Mar 2012 08:56:48 -0000

On 3/19/2012 12:10 AM, Ejzak, Richard P (Richard) wrote:
> I would like to argue two points: 1) DTLS-SRTP with IdP is the only
> media security scheme that rtcweb should support; and 2) rtcweb should
> also support RTP (no media security) with a clear requirement on the
> browser UI to warn the user of the complete lack of media security.
>
> DTLS-SRTP

[SNIP]

I generally agree.

> RTP
>
> There are too many reasonable use cases for unsecured media for us to
> ignore them. The browser should be very clear when media security is
> unavailable and make it easy to prevent communication without media
> security (perhaps as a default setting), but there are legitimate use
> cases in various private environments (e.g., enterprise, jail) where
> media security may not be allowed (or must somehow be compromised), or
> is just not available, that we should just support straight RTP. As long
> as the user can control the conditions under which media security is
> disabled, I do not see a problem.

The issue with "legacy" RTP is more one of controlling 'consent', such 
that we can avoid a WebRTC endpoint being used as a DDoS client.  I 
spent many hours trying to find a way around the issue, and only found 
ones that involve some level of modification to the target RTP client or 
its network (and still have serious issues).

For your case (not necessarily 'legacy', but needs-to-be-in-the-clear), 
perhaps there are other solutions.

One would be the command-line switch to force a NULL SRTP cipher.

An enterprise could use a WebRTC gateway, which in the context of WebRTC 
the user could provide their IdP credentials to (or the enterprise could 
be the IdP itself); or just act as a WebRTC MITM without bothering with 
IdP support.  Certainly there are usecases for keeping media traffic 
within an enterprise encrypted - I remember getting router-traffic dumps 
at an old company and being able to replay RTP conversations, including 
sensitive ones with external council, board members, HR, etc.  Modern 
switched setups make this tougher for J-random-employee to do, but far 
from impossible, and trivial for anyone working in networking IT or with 
physical access to switches or wiring.

-- 
Randell Jesup
randell-ietf@jesup.org

v2.23.0 | Report a Bug | By Email