Re: [rtcweb] Retransmit: Summary of Alternatives for media keying
Matthew Kaufman <matthew.kaufman@skype.net> Thu, 28 July 2011 12:25 UTC
Return-Path: <matthew.kaufman@skype.net>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 81F3621F874A for <rtcweb@ietfa.amsl.com>; Thu, 28 Jul 2011 05:25:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.486
X-Spam-Level:
X-Spam-Status: No, score=-2.486 tagged_above=-999 required=5 tests=[AWL=0.113, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id al0fM87XlBFm for <rtcweb@ietfa.amsl.com>; Thu, 28 Jul 2011 05:25:18 -0700 (PDT)
Received: from mx.skype.net (mx.skype.net [78.141.177.88]) by ietfa.amsl.com (Postfix) with ESMTP id A386A21F8551 for <rtcweb@ietf.org>; Thu, 28 Jul 2011 05:25:18 -0700 (PDT)
Received: from mx.skype.net (localhost [127.0.0.1]) by mx.skype.net (Postfix) with ESMTP id ECE2516E2; Thu, 28 Jul 2011 14:25:17 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed; d=skype.net; h=subject :mime-version:content-type:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; s=mx; bh=UV AvVEr16a+IfBNzYrUY0wCcGyI=; b=LCLSXRP1RKRjFXdnnt1bjGEaM7VBbGTiz7 b+f7UrdNb0vlus5Yq2n/E9IqNG47it6CCiAMGMNjUPY2iorZinq9fP7JnD6twYJO jJoQErGJJS6YbluKepwb+uCujTd/y6Nlc9ZjuoMvNtDfyEAXi3QV7hihfc4biqIy 4NXvKXmM4=
DomainKey-Signature: a=rsa-sha1; c=nofws; d=skype.net; h=subject:mime-version :content-type:from:in-reply-to:date:cc:content-transfer-encoding :message-id:references:to; q=dns; s=mx; b=D03WqHwrIHmFtFlyuk8CAe 67B8q7QKLcTnTwqsVJlEDIwbyvQgCEdJcLepKDd+Ljer3esU3g/MAEepNU9jIKdf gaGjT+bRyzmHTxkEZ5vYBPb4LJKcFwSy4GNxM4r2OChF4FhgVlZ3Wb1IREOzlB0z cSIdarZZFFhaGlPsm5yPc=
Received: from zimbra.skype.net (zimbra.skype.net [78.141.177.82]) by mx.skype.net (Postfix) with ESMTP id EB4CA7F8; Thu, 28 Jul 2011 14:25:17 +0200 (CEST)
Received: from localhost (localhost [127.0.0.1]) by zimbra.skype.net (Postfix) with ESMTP id D1841350806F; Thu, 28 Jul 2011 14:25:17 +0200 (CEST)
X-Virus-Scanned: amavisd-new at lu2-zimbra.skype.net
Received: from zimbra.skype.net ([127.0.0.1]) by localhost (zimbra.skype.net [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SLCg8rEZSP9P; Thu, 28 Jul 2011 14:25:17 +0200 (CEST)
Received: from dhcp-4649.meeting.ietf.org (dhcp-4649.meeting.ietf.org [130.129.70.73]) by zimbra.skype.net (Postfix) with ESMTPSA id 61160350805C; Thu, 28 Jul 2011 14:25:16 +0200 (CEST)
Mime-Version: 1.0 (Apple Message framework v1082)
Content-Type: text/plain; charset="us-ascii"
From: Matthew Kaufman <matthew.kaufman@skype.net>
In-Reply-To: <A444A0F8084434499206E78C106220CA08F1D75CF0@MCHP058A.global-ad.net>
Date: Thu, 28 Jul 2011 08:25:14 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <2E6CBDE0-DA10-4792-8059-A01F554DB370@skype.net>
References: <12BF9E55-662F-4762-9E47-2BBD3FA5FD93@acmepacket.com> <A444A0F8084434499206E78C106220CA08F1D75CF0@MCHP058A.global-ad.net>
To: "Elwell, John" <john.elwell@siemens-enterprise.com>
X-Mailer: Apple Mail (2.1082)
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Retransmit: Summary of Alternatives for media keying
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 28 Jul 2011 12:25:19 -0000
On Jul 28, 2011, at 8:04 AM, Elwell, John wrote: > [JRE] I agree with Hadriel's concern. DTLS-SRTP itself, if using only self-signed certs at the endpoints, requires other means (signalling path or human-assisted) to provide strong guarantees that you are talking to the person or organization you expect. Agreed. However there are weaker guarantees of properties that are certainly favorable as compared to, for instance, plain RTP or even server-keyed SRTP. (See my previous email.) > For SIP, the (theoretical) solution is to send a fingerprint of the certificate and have that bound to authenticated identity in accordance with RFC 4474, although not feasible in most deployed SIP environments. Although RTC-Web is not specifying signalling, clearly it needs to say something about the problem, and can't just indicate to the user that communication is secure just because DTLS-SRTP is used. Correct. > > Secondly, if interworking with legacy SIP, where DTLS-SRTP (or whatever we select) is terminated at a gateway, there is a real problem ensuring that the user knows the call is not necessarily secure end-to-end. Perhaps this argues towards option B, since if DTLS-SRTP is not used from browser to gateway, at least the browser should know to indicate a lesser level of security to the user. If you are sitting in an Internet cafe using someone else's unencrypted wifi and a telephony service provider you trust would you rather 1) use DTLS-SRTP between you and the telephony provider and plain RTP past their gateway inside their internal network, or 2) use plain RTP on the wifi network and all the way to the telephony provider? I agree that we can't display "this connection is secured everywhere" to the user... but look, HTTPS is the same. When I see a lock icon on my screen and click to see that yes, I'm really talking to who it says in the address bar, I still can't tell if they're terminating my HTTPS session in a front-end box and then using HTTP beyond it, or if the HTTPS really goes all the way to the server. And when I use HTTPS to talk to Gmail, there's no way to tell if an email I send will be sent over a TLS channel or if it'll just be plain SMTP from Gmail to my recipient. > > The whole issue of the browser knowing what it can tell the user concerning the security posture of a communication is a really difficult problem. It isn't a difficult problem if what the user is told is confined to what is provably true. (See my previous Gmail example.) Matthew Kaufman
- [rtcweb] Retransmit: Summary of Alternatives for … Eric Rescorla
- Re: [rtcweb] Recordings from last interim meeting Bernard Aboba
- Re: [rtcweb] Recordings from last interim meeting Ted Hardie
- Re: [rtcweb] Retransmit: Summary of Alternatives … Daryl Malas
- Re: [rtcweb] Retransmit: Summary of Alternatives … Hadriel Kaplan
- Re: [rtcweb] Retransmit: Summary of Alternatives … Bernard Aboba
- Re: [rtcweb] Retransmit: Summary of Alternatives … Matthew Kaufman
- Re: [rtcweb] Retransmit: Summary of Alternatives … Elwell, John
- Re: [rtcweb] Retransmit: Summary of Alternatives … Matthew Kaufman
- Re: [rtcweb] Retransmit: Summary of Alternatives … Hadriel Kaplan
- Re: [rtcweb] Retransmit: Summary of Alternatives … Matthew Kaufman
- Re: [rtcweb] Retransmit: Summary of Alternatives … Harald Alvestrand
- Re: [rtcweb] Retransmit: Summary of Alternatives … Eric Rescorla
- Re: [rtcweb] Retransmit: Summary of Alternatives … Matthew Kaufman
- Re: [rtcweb] Retransmit: Summary of Alternatives … Randell Jesup
- Re: [rtcweb] Retransmit: Summary of Alternatives … Randell Jesup
- Re: [rtcweb] Retransmit: Summary of Alternatives … Hadriel Kaplan
- Re: [rtcweb] Retransmit: Summary of Alternatives … Hadriel Kaplan
- Re: [rtcweb] Retransmit: Summary of Alternatives … Matthew Kaufman
- Re: [rtcweb] Retransmit: Summary of Alternatives … Matthew Kaufman
- Re: [rtcweb] Retransmit: Summary of Alternatives … Matthew Kaufman
- Re: [rtcweb] Retransmit: Summary of Alternatives … Randell Jesup
- Re: [rtcweb] Retransmit: Summary of Alternatives … Hadriel Kaplan
- Re: [rtcweb] Retransmit: Summary of Alternatives … Matthew Kaufman
- Re: [rtcweb] Retransmit: Summary of Alternatives … Hadriel Kaplan
- Re: [rtcweb] Retransmit: Summary of Alternatives … Randell Jesup