Re: [rtcweb] Consent for fate-sharing connections (Do we need text in draft-ietf-rtcweb-stun-consent-freshness ?)
Magnus Westerlund <magnus.westerlund@ericsson.com> Thu, 27 March 2014 14:14 UTC
Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8CAAF1A06E0 for <rtcweb@ietfa.amsl.com>; Thu, 27 Mar 2014 07:14:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.24
X-Spam-Level:
X-Spam-Status: No, score=-1.24 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HELO_EQ_SE=0.35, HOST_MISMATCH_NET=0.311, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id gzekOUdmN3YO for <rtcweb@ietfa.amsl.com>; Thu, 27 Mar 2014 07:14:39 -0700 (PDT)
Received: from sesbmg21.mgmt.ericsson.se (sesbmg21.ericsson.net [193.180.251.49]) by ietfa.amsl.com (Postfix) with ESMTP id EB8D31A032B for <rtcweb@ietf.org>; Thu, 27 Mar 2014 07:14:38 -0700 (PDT)
X-AuditID: c1b4fb31-b7f888e000000826-9b-5334324c9f29
Received: from ESESSHC019.ericsson.se (Unknown_Domain [153.88.253.124]) by sesbmg21.mgmt.ericsson.se (Symantec Mail Security) with SMTP id 00.4F.02086.C4234335; Thu, 27 Mar 2014 15:14:36 +0100 (CET)
Received: from [127.0.0.1] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.77) with Microsoft SMTP Server id 14.2.347.0; Thu, 27 Mar 2014 15:14:35 +0100
Message-ID: <5334324C.8070004@ericsson.com>
Date: Thu, 27 Mar 2014 15:14:36 +0100
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:24.0) Gecko/20100101 Thunderbird/24.4.0
MIME-Version: 1.0
To: "Ram Mohan R (rmohanr)" <rmohanr@cisco.com>, Ted Hardie <ted.ietf@gmail.com>
References: <CF579BF9.85AEA%rmohanr@cisco.com> <CA+9kkMCgFVWi96iqRsee5V3UMBmY0eK=S0mLnde52tUs3Xnddw@mail.gmail.com> <CF5824EF.85B9A%rmohanr@cisco.com> <CF5828FE.85BC2%rmohanr@cisco.com>
In-Reply-To: <CF5828FE.85BC2%rmohanr@cisco.com>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 8bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrDLMWRmVeSWpSXmKPExsUyM+Jvja6PkUmwwcdtehbLu3YwWqz9185u 0TjXzoHZY8rvjaweO2fdZfdYsuQnUwBzFJdNSmpOZllqkb5dAlfGveYD7AV/RCve3WphbGC8 INjFyMkhIWAi8X7lAnYIW0ziwr31bF2MXBxCAicYJZ68PMII4SxnlGj9Mp0NpIpXQFviSM9H MJtFQFXiz5ZpYDabgIXEzR+NYLaoQLDE0jmLWSDqBSVOznwCZosIBEksf3AarIZZQF3izuJz YJuFBWokev43sUAs28ko8eDuD7AiTgF9iVuL+5m6GDmAzhOX6GkMgujVlGjd/psdwpaXaN46 mxnEFgK6raGpg3UCo9AsJKtnIWmZhaRlASPzKkbJ4tTipNx0I0O93PTcEr3Uoszk4uL8PL3i 1E2MwBA/uOW34Q7GidfsDzFKc7AoifMyTO8MEhJITyxJzU5NLUgtii8qzUktPsTIxMEp1cBo ubCrW+YKv9mkx34zWc1vq/fpFT59KxzyYHte2PPlm20vxOgtmd0xocb427bNf0TkZ67W3+Im NLnf4cziZW98hbwmFGcGp3zcsSbn3PVv8ReSOszUJEyXLSprfHtsR676rju9TN+Ub8oYT9hy eXE/w1WT54cytnKKHtX6Yf/S48w8+YJtRnEcSizFGYmGWsxFxYkAYRAosD8CAAA=
Archived-At: http://mailarchive.ietf.org/arch/msg/rtcweb/IkL9mF6CxdWhtqper0miAdMzHEo
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Consent for fate-sharing connections (Do we need text in draft-ietf-rtcweb-stun-consent-freshness ?)
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Mar 2014 14:14:40 -0000
On 2014-03-26 02:20, Ram Mohan R (rmohanr) wrote: > Currently there is no section that talks about this. One of the comments > given by Magnus some time back on this draft asks about scope of consent. > We (the authors of draft-ietf-stun-consent-freshness) were discussing > among ourselves on whether there is a need to have any text for > fate-sharing connections. We don¹t see a real need to have any > recommendation in this draft but wanted to bring this topic to mailer to > see if any one else have any different opinion. > > As you said it is completely up to the application what to do if consent > fails. There may be many possibilities- For example for a single media > stream when RTP and RTCP are sent over different addresses (no mux used), > then if consent fails for one of the components, an application may choose > to cease that stream. There may be also cases where consent may fail for > audio but pass for video. Again it is up to the application (JavaScript) > to take a decision on what to do. I do think RTP MUST be fate shared with its RTCP. Because revoking consent for RTCP should not be a way of turning off congestion control. Thus, no RTCP should mean no RTP either as you get no feedback on how it behaves. > > Since it is application that always decide, I am ok to just leave it and > not have any text in this document > >From a security point of view, what is important is that one can't treat consent on one transport flow (5-tuple) to mean consent to send on any other. Because then an attacker could create a session where he receives the low-bitrate audio and consent to the media there and direct the video to a target for the attack, where no consent is received. But, I am personally mostly fine with saying nothing that a failure to retain consent on one RTP session or data channel's transport flows, may or may not mean that the transmission should be killed on another RTP session or data channel, where consent has not yet failed. One question is if one doesn't fate share all transport flows within the peer connection if one should trigger a consent check when the failure happens on some other transport flow? That way one can minimize the delay of discovering revoked consent or path failure on all transport flows. Cheers Magnus Westerlund ---------------------------------------------------------------------- Services, Media and Network features, Ericsson Research EAB/TXM ---------------------------------------------------------------------- Ericsson AB | Phone +46 10 7148287 Färögatan 6 | Mobile +46 73 0949079 SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com ----------------------------------------------------------------------
- [rtcweb] Consent for fate-sharing connections (Do… Ram Mohan R (rmohanr)
- Re: [rtcweb] Consent for fate-sharing connections… Ted Hardie
- Re: [rtcweb] Consent for fate-sharing connections… Bernard Aboba
- Re: [rtcweb] Consent for fate-sharing connections… Ram Mohan R (rmohanr)
- Re: [rtcweb] Consent for fate-sharing connections… Magnus Westerlund
- Re: [rtcweb] Consent for fate-sharing connections… Martin Thomson
- Re: [rtcweb] Consent for fate-sharing connections… Harald Alvestrand
- Re: [rtcweb] Consent for fate-sharing connections… Magnus Westerlund