Re: [rtcweb] Tunnelling DTLS in SDP
Harald Alvestrand <harald@alvestrand.no> Tue, 05 April 2016 10:18 UTC
Return-Path: <harald@alvestrand.no>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E9C1A12D651 for <rtcweb@ietfa.amsl.com>; Tue, 5 Apr 2016 03:18:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.209
X-Spam-Level:
X-Spam-Status: No, score=-4.209 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UPI5t8bsQR4g for <rtcweb@ietfa.amsl.com>; Tue, 5 Apr 2016 03:18:29 -0700 (PDT)
Received: from mork.alvestrand.no (mork.alvestrand.no [158.38.152.117]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4916412D5B9 for <rtcweb@ietf.org>; Tue, 5 Apr 2016 03:18:29 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mork.alvestrand.no (Postfix) with ESMTP id C9B097C7C0B; Tue, 5 Apr 2016 12:18:27 +0200 (CEST)
X-Virus-Scanned: Debian amavisd-new at alvestrand.no
Received: from mork.alvestrand.no ([127.0.0.1]) by localhost (mork.alvestrand.no [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fBfu8yJ13JmQ; Tue, 5 Apr 2016 12:18:26 +0200 (CEST)
Received: from [IPv6:2001:67c:370:136:2154:8066:f6ed:c7f7] (unknown [IPv6:2001:67c:370:136:2154:8066:f6ed:c7f7]) by mork.alvestrand.no (Postfix) with ESMTPSA id 0AFB07C76C8; Tue, 5 Apr 2016 12:18:24 +0200 (CEST)
To: Tim Panton <tim@phonefromhere.com>
References: <CABcZeBOM1KoXpXFhvjS753EVpsMENWVen3CCdFj8ry36vPH0dg@mail.gmail.com> <57038B35.8040102@alvestrand.no> <BA5D10EA-D10D-4458-9FCB-272ECB7BFCB6@phonefromhere.com>
From: Harald Alvestrand <harald@alvestrand.no>
Message-ID: <570390ED.8080109@alvestrand.no>
Date: Tue, 05 Apr 2016 12:18:21 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.5.1
MIME-Version: 1.0
In-Reply-To: <BA5D10EA-D10D-4458-9FCB-272ECB7BFCB6@phonefromhere.com>
Content-Type: multipart/alternative; boundary="------------030401020809000303050907"
Archived-At: <http://mailarchive.ietf.org/arch/msg/rtcweb/CJ6zPoXpM0Vv0Dosb-lxMzVIrHg>
Cc: rtcweb@ietf.org
Subject: Re: [rtcweb] Tunnelling DTLS in SDP
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 Apr 2016 10:18:32 -0000
On 04/05/2016 12:04 PM, Tim Panton wrote: > >> On 5 Apr 2016, at 10:53, Harald Alvestrand <harald@alvestrand.no >> <mailto:harald@alvestrand.no>> wrote: >> >> On first read, this makes sense to me. >> >> I wonder if it could/should be made into a general concept, to fit >> with the tendency in WebRTC:NG to separate signalling format even >> more from operation? >> >> We could call it "out of band DTLS setup", say that in general, a >> DTLS session can be started in one medium (SDP signalling, in this >> case), and continued in another medium (the DTLS-protected media >> channel), and have a section describing the details of carrying >> DTLS-over-SDP. >> >> When viewing it in this way, using the same technique with Jabber or >> proprietary signalling becomes a reasonably obvious exercise. There >> are some other twists that seem obvious too - for instance, one could >> continue the setup over the SDP channel in subsequent offer/answers >> if the first exchange failed to set up a media channel. I'm not sure >> that makes sense, though. >> >> One SDP twist: If forking happens, it could be treated like any other >> attempt to generate multiple answers to a ClientHello, I think. I'm >> sure it's well defined how to respond to that - it's an obvious >> attack. Only one leg of the fork would ever succeed, I assume. > > Doesn’t passing the DTLS Hellos through javascript open us to a whole > pile of bid-down attacks where > the lists of supported crypto suites and extensions are manipulated in > the js ? E.G It might allow the javascript to insert > the magic extension that says "this isn’t being recorded” without the > browser actually being in that mode. > Or is there a way that DTLS can detect this ? It certainly reduces the setup security from one where only network on-path attackers can do MITM attacks on the handshake to one where everyone with access to the Javascript can do MITM attacks on the handshake. Given that DTLS is supposed to be a reasonable option when you have on-path attackers on the network path, I certainly hope the defenses are adequate in this case too, but I don't know DTLS well enough to be able to say what those defenses are. > > T. > > > >> >> >> On 04/04/2016 03:10 PM, Eric Rescorla wrote: >>> Hi folks, >>> >>> I wanted to call your attention to a draft I just published with a >>> possibly stupid >>> idea. >>> >>> https://tools.ietf.org/html/draft-rescorla-dtls-in-sdp-00 >>> >>> A nontrivial fraction of call setup time in WebRTC is the DTLS >>> handshake. >>> This document describes how to piggyback the first few handshake >>> messages >>> in the SDP offer/answer exchange, thus reducing latency. >>> >>> Comments welcome. >>> >>> -Ekr >>> >>> >>> >>> >>> >>> _______________________________________________ >>> rtcweb mailing list >>> rtcweb@ietf.org >>> https://www.ietf.org/mailman/listinfo/rtcweb >> >> >> -- >> Surveillance is pervasive. Go Dark. >> _______________________________________________ >> rtcweb mailing list >> rtcweb@ietf.org <mailto:rtcweb@ietf.org> >> https://www.ietf.org/mailman/listinfo/rtcweb > > Tim Panton - Web/VoIP consultant and implementor > www.westhawk.co.uk <http://www.westhawk.co.uk> > > > -- Surveillance is pervasive. Go Dark.
- Re: [rtcweb] [MMUSIC] Tunnelling DTLS in SDP Christer Holmberg
- Re: [rtcweb] [MMUSIC] Tunnelling DTLS in SDP T H Panton
- Re: [rtcweb] [MMUSIC] Tunnelling DTLS in SDP Roman Shpount
- Re: [rtcweb] Tunnelling DTLS in SDP Cullen Jennings
- [rtcweb] Tunnelling DTLS in SDP Eric Rescorla
- Re: [rtcweb] Tunnelling DTLS in SDP pfh
- Re: [rtcweb] Tunnelling DTLS in SDP Roman Shpount
- Re: [rtcweb] Tunnelling DTLS in SDP pfh
- Re: [rtcweb] Tunnelling DTLS in SDP Roman Shpount
- Re: [rtcweb] Tunnelling DTLS in SDP Martin Thomson
- Re: [rtcweb] Tunnelling DTLS in SDP Martin Thomson
- Re: [rtcweb] Tunnelling DTLS in SDP Christer Holmberg
- Re: [rtcweb] Tunnelling DTLS in SDP Harald Alvestrand
- Re: [rtcweb] Tunnelling DTLS in SDP Justin Uberti
- Re: [rtcweb] [MMUSIC] Tunnelling DTLS in SDP Matthew Kaufman
- Re: [rtcweb] Tunnelling DTLS in SDP Tim Panton
- Re: [rtcweb] Tunnelling DTLS in SDP Harald Alvestrand
- Re: [rtcweb] Tunnelling DTLS in SDP Tim Panton
- Re: [rtcweb] Tunnelling DTLS in SDP Tim Panton
- Re: [rtcweb] Tunnelling DTLS in SDP Harald Alvestrand
- Re: [rtcweb] Tunnelling DTLS in SDP Roman Shpount
- Re: [rtcweb] Tunnelling DTLS in SDP Eric Rescorla
- Re: [rtcweb] Tunnelling DTLS in SDP Drage, Keith (Nokia - GB)
- Re: [rtcweb] [MMUSIC] Tunnelling DTLS in SDP Peter Thatcher
- Re: [rtcweb] Tunnelling DTLS in SDP Peter Thatcher
- Re: [rtcweb] Tunnelling DTLS in SDP Roman Shpount
- Re: [rtcweb] [MMUSIC] Tunnelling DTLS in SDP Eric Rescorla
- Re: [rtcweb] [MMUSIC] Tunnelling DTLS in SDP Iñaki Baz Castillo