IETF Logo Mail Archive

Re: [rtcweb] Review of draft-ietf-rtcweb-stun-consent-freshness

"Tirumaleswar Reddy (tireddy)" <tireddy@cisco.com> Fri, 22 May 2015 02:41 UTC

Return-Path: <tireddy@cisco.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 325771A8FD2; Thu, 21 May 2015 19:41:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.511
X-Spam-Level:
X-Spam-Status: No, score=-14.511 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id itwb6ncKSgEB; Thu, 21 May 2015 19:41:07 -0700 (PDT)
Received: from alln-iport-5.cisco.com (alln-iport-5.cisco.com [173.37.142.92]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6DC4D1A8F51; Thu, 21 May 2015 19:41:07 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2853; q=dns/txt; s=iport; t=1432262467; x=1433472067; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=Hnx8As9DlnvfbuywhSaSg4GHjBi8CMptGB17ekYMV+I=; b=hg3uvdnfzetPddlZd6u3C3ustyl1tQ8MRzdT7LUbBDRmm0xmnmRDTdWE gStNsmI13SemT8i8ysWC9CFvv3+Bjjob78lDJ+RqLR1WBXo8tbL01rRK4 2RhpKzaQRwiaNGw61PNwJUj3B/KIGFTXy0XreiD1pDQStbif/AMPGcKwF s=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0DFBADkll5V/5hdJa1cgxBUXgbCKmYJgU8KhS1KAoFFOBQBAQEBAQEBgQqEIgEBAQQBAQE3NBcEAgEIDgMEAQEBChQJBycLFAkIAgQBEgiIJA3SXQEBAQEBAQEBAQEBAQEBAQEBAQEBARMEizqEVDgGgxGBFgWSfYQ1nXwjg3hvgQMFPoEBAQEB
X-IronPort-AV: E=Sophos;i="5.13,473,1427760000"; d="scan'208";a="152373388"
Received: from rcdn-core-1.cisco.com ([173.37.93.152]) by alln-iport-5.cisco.com with ESMTP; 22 May 2015 02:40:48 +0000
Received: from xhc-aln-x03.cisco.com (xhc-aln-x03.cisco.com [173.36.12.77]) by rcdn-core-1.cisco.com (8.14.5/8.14.5) with ESMTP id t4M2em89013317 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL); Fri, 22 May 2015 02:40:48 GMT
Received: from xmb-rcd-x10.cisco.com ([169.254.15.253]) by xhc-aln-x03.cisco.com ([173.36.12.77]) with mapi id 14.03.0195.001; Thu, 21 May 2015 21:40:48 -0500
From: "Tirumaleswar Reddy (tireddy)" <tireddy@cisco.com>
To: Emil Ivov <emcho@jitsi.org>, Bernard Aboba <bernard.aboba@gmail.com>, "rtcweb@ietf.org" <rtcweb@ietf.org>, The IESG <iesg@ietf.org>
Thread-Topic: [rtcweb] Review of draft-ietf-rtcweb-stun-consent-freshness
Thread-Index: AQHQk1eS1ZbgKeHyC0Cjwx+443SghJ2HLvKAgAAXjrA=
Date: Fri, 22 May 2015 02:40:48 +0000
Message-ID: <913383AAA69FF945B8F946018B75898A47859C63@xmb-rcd-x10.cisco.com>
References: <CAOW+2dsv8CVpaKoBsUvc5MGh2s3xD2J5NiXPAnFUMOhYqSmjzQ@mail.gmail.com> <555E3991.9010809@jitsi.org>
In-Reply-To: <555E3991.9010809@jitsi.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.65.37.83]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <http://mailarchive.ietf.org/arch/msg/rtcweb/5P-oBPu-2Rol4paOQC3t6qO_KEM>
Subject: Re: [rtcweb] Review of draft-ietf-rtcweb-stun-consent-freshness
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 22 May 2015 02:41:09 -0000

Hi Emil,

The current mechanism helps determine RTT and packet loss, since transaction could be confused with the retransmission mechanism in RFC 5389 it was not used. 

-Tiru

> -----Original Message-----
> From: rtcweb [mailto:rtcweb-bounces@ietf.org] On Behalf Of Emil Ivov
> Sent: Friday, May 22, 2015 1:31 AM
> To: Bernard Aboba; rtcweb@ietf.org; The IESG
> Subject: Re: [rtcweb] Review of draft-ietf-rtcweb-stun-consent-freshness
> 
> On 21.05.15 1:48, Bernard Aboba wrote:
> > This is a review of draft-ietf-rtcweb-stun-consent-freshness.
> >
> > Overall, I believe that this document is not yet ready for publication
> > as a proposed standard,
> > due to transport-related issues.  Rather than building upon the RFC 5389
> > transport model
> > (including the transaction structure and RTT/RTO estimator), the
> > specification proposes a
> > new (and poorly specified) transport model that does not adapt properly
> > to networks with differing transport characteristics.
> 
> I think we can easily fix this if we replace semantic usage of "STUN
> request" throughout the specification with "STUN transaction".
> 
> For example, in page 4 in the following paragraph:
> 
>     Each STUN binding request for consent MUST use a new
>     cryptographically strong [RFC4086] STUN transaction ID.  Each STUN
>     binding requests for consent is transmitted once only.  Hence, the
>     sender cannot assume that it will receive a response for each consent
>     request, and a response might be for a previous request (rather than
>     for the most recently sent request).
> 
> replacing request with transaction we would get:
> 
>     Each STUN transaction MUST use a new cryptographically strong
>     [RFC4086] STUN transaction ID.  Each STUN transaction for consent
>     is transmitted once only. Hence, the sender cannot assume that it
>     will receive a response for each consent transaction, and a response
>     might be for a previous transaction (rather than for the most
>     recently sent request).
> 
> The fact that this entire paragraphs becomes redundant after the change
> is probably good indication that we were basically defining STUN
> transactions ...
> 
> Obviously using transactions for every consent check would leave us with
> a couple of potential issues, like, what if you already have an ongoing
> STUN transaction and randomization tells you to start a new one. Those
> could be easily fixed however. For example, by simply starting the
> random timer after a STUN transaction has completed (as opposed to after
> sending the request).
> 
> Emil
> 
> --
> https://jitsi.org
> 
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb

v2.23.0 | Report a Bug | By Email