IETF Logo Mail Archive

Re: [rtcweb] Last Call: <draft-ietf-rtcweb-data-channel-12.txt> (WebRTC Data Channels) to Proposed Standard

Martin Thomson <martin.thomson@gmail.com> Fri, 10 October 2014 20:33 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92CCB1AD06A for <rtcweb@ietfa.amsl.com>; Fri, 10 Oct 2014 13:33:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fUJ-93xsNJmQ for <rtcweb@ietfa.amsl.com>; Fri, 10 Oct 2014 13:33:49 -0700 (PDT)
Received: from mail-la0-x22d.google.com (mail-la0-x22d.google.com [IPv6:2a00:1450:4010:c03::22d]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DFFBD1AD062 for <rtcweb@ietf.org>; Fri, 10 Oct 2014 13:33:48 -0700 (PDT)
Received: by mail-la0-f45.google.com with SMTP id q1so3993419lam.18 for <rtcweb@ietf.org>; Fri, 10 Oct 2014 13:33:46 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=OSeAxu13fxQ6LAWJI5sgAWO1FN47iRcWwFP8emKIj9E=; b=TVwjGHxf0RXCOT5YGWfH8Yp3j+ycGto2M+QdDvHwa7y4R8XvcJvFJp5NEfrkx+MVm/ dDI0taOphLUXP1Goqa80BWu0iRBCb0iMeFx2AhH/ws2mH685p8v3K+OI5dlkbOH1F1WH 3bwtVDR8pWKYWNOa9RNFRS+rsbIuVbGiyoE712t79rD7uSSzlAvPTaZT9SGeOaiAy+1L rCVUM4Sk2sJOIBc/PVNr29NVbnLwqOq+HfbOHf9X4hBPF8y6Q8JXNi4Vm8XVukz2oLdw qKU/VpCfpB7M9k1FyCCndeNh2jDW00obR5rEfRr6eMlHKX6Tw87cEq9TfkYXA9x+5DIy rdBQ==
MIME-Version: 1.0
X-Received: by 10.152.3.167 with SMTP id d7mr7347726lad.17.1412973226315; Fri, 10 Oct 2014 13:33:46 -0700 (PDT)
Received: by 10.25.215.217 with HTTP; Fri, 10 Oct 2014 13:33:46 -0700 (PDT)
In-Reply-To: <91953101b2634ec69d14e120ea62d929@CY1PR0501MB1579.namprd05.prod.outlook.com>
References: <20141010004836.12666.88765.idtracker@ietfa.amsl.com> <91953101b2634ec69d14e120ea62d929@CY1PR0501MB1579.namprd05.prod.outlook.com>
Date: Fri, 10 Oct 2014 13:33:46 -0700
Message-ID: <CABkgnnWE7czWqi4vQRb5d50N2k95joc_Zcvw6w6g7SOjU9b+9g@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
To: "Wyss, Felix" <Felix.Wyss@inin.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: http://mailarchive.ietf.org/arch/msg/rtcweb/62glyGSHAPqAKYcACv37djw09G4
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Last Call: <draft-ietf-rtcweb-data-channel-12.txt> (WebRTC Data Channels) to Proposed Standard
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Oct 2014 20:33:51 -0000

On 10 October 2014 12:11, Wyss, Felix <Felix.Wyss@inin.com> wrote:
> I feel it would be better to explicitly require that applications are responsible for identifier collision avoidance instead of allowing them to rely on the DTLS roles.

Are you suggesting that we might want to consider the effect of a MitM
attack on the robustness of this?

v2.23.0 | Report a Bug | By Email