IETF Logo Mail Archive

Re: [rtcweb] SDP Security Descriptions (RFC 4568) and RTCWeb

Dan Wing <dwing@cisco.com> Thu, 25 April 2013 22:14 UTC

Return-Path: <dwing@cisco.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8A71C21F9714 for <rtcweb@ietfa.amsl.com>; Thu, 25 Apr 2013 15:14:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -108
X-Spam-Level:
X-Spam-Status: No, score=-108 tagged_above=-999 required=5 tests=[RCVD_IN_DNSWL_HI=-8, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uUdNldMDvo2F for <rtcweb@ietfa.amsl.com>; Thu, 25 Apr 2013 15:14:56 -0700 (PDT)
Received: from mtv-iport-3.cisco.com (mtv-iport-3.cisco.com [173.36.130.14]) by ietfa.amsl.com (Postfix) with ESMTP id 421B821F9710 for <rtcweb@ietf.org>; Thu, 25 Apr 2013 15:14:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2829; q=dns/txt; s=iport; t=1366928096; x=1368137696; h=mime-version:subject:from:in-reply-to:date:cc: content-transfer-encoding:message-id:references:to; bh=1ftg+Dxr/BEtq7iEzxgE9NIgIQEONrz/L9dKAOZOB1w=; b=aAzz4aAT8diBf7MjDlmA1Z4o9L5gmFm7PykvZxqAvB0z5Y/wMPXJWZzU b2Vz2IJpg8MZc1/kdMCC4UHYR4eOZB6pPZgYflzhTktvdBgO9oNMiqtgJ RAg6p3ttrxMJOhxT1KBm7qrNGpnZHQlad9ZV7wrjbeVsNYvJMMwkCIfs7 M=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AgMFANOpeVGrRDoI/2dsb2JhbABRgwY2Ab4wgQQWdIIfAQEBAgEBAQEBNzQLBQsLGC4hBjAGEwmHeQMJBQ21cg2IS4xfgiMzB4JtYQOJEYwngWSGD4V0hR+DLhw
X-IronPort-AV: E=Sophos;i="4.87,553,1363132800"; d="scan'208";a="77058054"
Received: from mtv-core-3.cisco.com ([171.68.58.8]) by mtv-iport-3.cisco.com with ESMTP; 25 Apr 2013 22:14:56 +0000
Received: from [10.156.16.30] ([10.156.16.30]) by mtv-core-3.cisco.com (8.14.5/8.14.5) with ESMTP id r3PMEtND011677; Thu, 25 Apr 2013 22:14:55 GMT
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 6.3 \(1503\))
From: Dan Wing <dwing@cisco.com>
In-Reply-To: <74300615-2293-4DCE-82A7-475F1A5A8256@gmail.com>
Date: Thu, 25 Apr 2013 15:14:55 -0700
Content-Transfer-Encoding: quoted-printable
Message-Id: <91B4F744-2201-4361-A8D8-7D36F47B865C@cisco.com>
References: <3FA2E46D-C98E-4FC0-9F1D-AD595A861CE1@iii.ca> <74300615-2293-4DCE-82A7-475F1A5A8256@gmail.com>
To: Alan Johnston <alan.b.johnston@gmail.com>
X-Mailer: Apple Mail (2.1503)
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] SDP Security Descriptions (RFC 4568) and RTCWeb
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Apr 2013 22:14:57 -0000

On Apr 25, 2013, at 9:39 AM, Alan Johnston <alan.b.johnston@gmail.com> wrote:

> I'm not a fan of SDES. However, I've come to believe that we need it for two reasons. 
> 
> 1. There is a backwards compatibility reason. There are deployed systems of SRTP that use SDES or a key agreement that easily maps to it. Just as we allowed G.711 for these systems, it seems reasonable to allow SDES as well. When combined with ICE Lite in a media gateway, this is a scalable interop approach. 

Interworking at scale can be accomplished without SDES on WEBRTC, as I explained at IETF83 in slides 27-35 of http://www.ietf.org/proceedings/83/slides/slides-83-rtcweb-3.pdf.

> 2. We need it or something like it for API reasons. There are cases where the JavaScript needs to tell the browser what SRTP key to use.

DTLS-SRTP with EKT can also perform that function, and does it without disclosing the SRTP key to all the SIP proxies and all the web servers on the signaling path.

> Since JSEP uses SDP for this API surface, SDES works for this. Obviously it is a bad idea to send this key over unsecured channels, but this is separate from this API issue. 
> 
> And just to be clear, browser to browser should use DTLS-SRTP, and only thus mode should be considered "secure" using whatever user interface a browser chooses. 

But is there a secure mechanism to differentiate browser-to-browser calls from browser-to-non-browser calls, so we don't have to worry over SDES downgrade attacks?  And for the use-cases where JavaScript has to set the key, those will often be browser-to-browser calls, meaning that we will have to support browser-to-browser SDES, contrary to your desire that browser-to-browser use DTLS-SRTP?  DTLS-SRTP with EKT permits the application to set the SRTP key, and more securely than SDES.

-d


> 
> - Alan -
> 
> 
> 
> On Apr 25, 2013, at 11:57 AM, Cullen Jennings <fluffy@iii.ca> wrote:
> 
>> 
>> The working groups committed some time ago to have a further discussion on whether SDP Security Descriptions (RFC 4568 aka SDES) would be usable as a keying method for WebRTC.  As we prepare for that discussion, we'd like to have expressions of interest or support for that approach which indicate the general outlines of support proposed.  If you wish to make such an expression of support, please send it to the chairs or the list.
>> 
>> Cullen, Magnus, & Ted <The Chairs>
>> 
>> 
>> _______________________________________________
>> rtcweb mailing list
>> rtcweb@ietf.org
>> https://www.ietf.org/mailman/listinfo/rtcweb
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb

v2.23.0 | Report a Bug | By Email