IETF Logo Mail Archive

Re: [rtcweb] DTLS, DTLS-SRTP, and 5-tuples

Harald Alvestrand <harald@alvestrand.no> Thu, 12 March 2015 06:53 UTC

Return-Path: <harald@alvestrand.no>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 29BAC1A0385 for <rtcweb@ietfa.amsl.com>; Wed, 11 Mar 2015 23:53:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.909
X-Spam-Level:
X-Spam-Status: No, score=-1.909 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id r31KEK6WVdEU for <rtcweb@ietfa.amsl.com>; Wed, 11 Mar 2015 23:53:49 -0700 (PDT)
Received: from mork.alvestrand.no (mork.alvestrand.no [IPv6:2001:700:1:2::117]) by ietfa.amsl.com (Postfix) with ESMTP id 666A61A037F for <rtcweb@ietf.org>; Wed, 11 Mar 2015 23:53:49 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mork.alvestrand.no (Postfix) with ESMTP id 128E77C5084 for <rtcweb@ietf.org>; Thu, 12 Mar 2015 07:53:48 +0100 (CET)
X-Virus-Scanned: Debian amavisd-new at alvestrand.no
Received: from mork.alvestrand.no ([127.0.0.1]) by localhost (mork.alvestrand.no [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8-YX6FxB16CP for <rtcweb@ietf.org>; Thu, 12 Mar 2015 07:53:46 +0100 (CET)
Received: from [10.100.7.176] (220.Red-88-7-178.staticIP.rima-tde.net [88.7.178.220]) by mork.alvestrand.no (Postfix) with ESMTPSA id 8F0B87C4E8F for <rtcweb@ietf.org>; Thu, 12 Mar 2015 07:53:45 +0100 (CET)
Message-ID: <550137F1.5070109@alvestrand.no>
Date: Thu, 12 Mar 2015 06:53:37 +0000
From: Harald Alvestrand <harald@alvestrand.no>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.4.0
MIME-Version: 1.0
To: rtcweb@ietf.org
References: <54F74B02.1070902@jive.com> <CALiegfkipJhsy7-40+=d9xMUf4RJGdn3_fABL3NN2KuFNvS2BA@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D727570@ESESSMB209.ericsson.se> <CALiegfmfvz3NWSjcovGBytiOTbR6kFfyh0vx5cXoMJtytfGzRA@mail.gmail.com> <CAD5OKxsu3D0xHY-zYbDu1hyH_+4=3mWDvW2i98WCVZ+29BpKCw@mail.gmail.com> <CA5E97EE-99F8-44D8-B05B-C9EFDED1A9BB@vidyo.com> <2F467A7E-7A6C-4B1B-985A-0D9C089BE973@cisco.com> <CAOJ7v-1TjZOZ5G31vy_Gt73ADGLRay1RHVeMi=H6Q4=N1b6HLA@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D7367A0@ESESSMB209.ericsson.se> <CALiegfmyp=v6thk4eLz7nL1BHh2Qj7jmC84tdG7ufg8HPXsVKA@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D7369C9@ESESSMB209.ericsson.se> <CAD5OKxtCswToNzoZnnqJ5M66mjNjKJoA++WYNqN5155n+CWXsA@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D736AC0@ESESSMB209.ericsson.se> <CAD5OKxs1grSqAG32mf__wtsjpo68jZmKonbd+EsJmYNsDHUbFQ@mail.gmail.com> <CAOJ7v-3YypG1s9KXOCA+Fo58SuVuUk5-thcSc0k3N2j=4ZmJoA@mail.gmail.com>
In-Reply-To: <CAOJ7v-3YypG1s9KXOCA+Fo58SuVuUk5-thcSc0k3N2j=4ZmJoA@mail.gmail.com>
Content-Type: multipart/alternative; boundary="------------010900010001030501010007"
Archived-At: <http://mailarchive.ietf.org/arch/msg/rtcweb/7MnOJCzmooRKwq47utm9zc2dXLM>
Subject: Re: [rtcweb] DTLS, DTLS-SRTP, and 5-tuples
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 12 Mar 2015 06:53:52 -0000

On 03/11/2015 03:33 PM, Justin Uberti wrote:
>
>
> On Wed, Mar 11, 2015 at 7:32 AM, Roman Shpount <roman@telurix.com
> <mailto:roman@telurix.com>> wrote:
>
>     On Wed, Mar 11, 2015 at 10:24 AM, Christer Holmberg
>     <christer.holmberg@ericsson.com
>     <mailto:christer.holmberg@ericsson.com>> wrote:
>
>         I assume you mean SCTP-over-DTLS? Usage of "plain" SCTP with
>         ICE is not defined, as far as I know.
>
>
>     You are correct.
>      
>
>
>         > New things can be defined in the future. When they do, they
>         should treat ICE a virtual communication channel that
>         > provides unreliable packet transport with no order
>         guarantees which can span multiple 5-tuples.
>
>         Then the scope of what we discuss now should not be "whatever
>         protocol" - it should be the specific protocols we are discussing.
>
>
>     I think ICE-bis should define protocol requirements for the
>     protocols that can run on top of ICE, which includes:
>     1. Ability to run over unreliable packet based transport with no
>     order guarantees
>     2. Ability to demux with STUN packets
>     3. Not t make any assumption about IP addresses, ports, or other
>     transport level protocols attributes such as TOS. 
>
>
> I think these are good criteria. Note that TCP would meet these
> criteria, and I see no problem running TCP atop ICE (we used to do
> this in an old version of our data channel code).
>
> HTTP, on the other hand, would not meet criterion #1.

I seem to remember a draft I wrote once upon a time (Feb 2011).... I
called it a "datagram service".

draft-alvestrand-dispatch-rtcweb-datagram-01

The ability to demux with STUN packets was expressed here as:

   The datagram service is not completely transparent; in particular, it
   is not possible to carry a datagram where the two highest bits of the
   first octet are zero and octet 5 to 8 contain the value 0x2112A442,
   since these datagrams are reserved for use of the STUN protocol (RFC
   5389 section 6).

It didn't seem to warrant a special doc at the time, given responses, so
I dropped it.

Note that straight-up TCP on top of this model would require special
work, since the TCP header checksum covers the address fields. A
TCP-like protocol with different checksums would be trivial to define.

v2.23.0 | Report a Bug | By Email