IETF Logo Mail Archive

Re: [rtcweb] URI schemes for TURN and STUN

Keith Moore <moore@network-heretics.com> Mon, 31 October 2011 15:33 UTC

Return-Path: <moore@network-heretics.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6CF1C21F8CCC; Mon, 31 Oct 2011 08:33:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.358
X-Spam-Level:
X-Spam-Status: No, score=-2.358 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1, SARE_LWSHORTT=1.24]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bv5cnjfPNlkg; Mon, 31 Oct 2011 08:33:36 -0700 (PDT)
Received: from out3.smtp.messagingengine.com (out3.smtp.messagingengine.com [66.111.4.27]) by ietfa.amsl.com (Postfix) with ESMTP id B730121F8CC5; Mon, 31 Oct 2011 08:33:36 -0700 (PDT)
Received: from compute2.internal (compute2.nyi.mail.srv.osa [10.202.2.42]) by gateway1.nyi.mail.srv.osa (Postfix) with ESMTP id 6A398204D7; Mon, 31 Oct 2011 11:33:35 -0400 (EDT)
Received: from frontend2.nyi.mail.srv.osa ([10.202.2.161]) by compute2.internal (MEProxy); Mon, 31 Oct 2011 11:33:35 -0400
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=subject:mime-version:content-type:from :in-reply-to:date:cc:message-id:references:to; s=smtpout; bh=itF 7j72tstHdMFqPsNEHQk2QR1I=; b=azttSUmT1R5QWOUeOXU+jslierKy3VvbflY 95pOv2tGjTTdMrfNcgyywgI6BusS3JzqKLp3V5dYE/M41yKWNEeT+8XVHrZlDae0 Lf14wo6EodQwzangsz3a4+bpDOlfSRrwS9GgwqJjK4QT7Xn/7M3tkz8Kx6IGMYzf XL2b1ujo=
X-Sasl-enc: 5Pbm0ts8nT6g6zyZoQRs/TQZWuNTTrH/y3AKdafZ+X3z 1320075215
Received: from rlmartin.hq.corp.pbs.org (unknown [149.48.225.2]) by mail.messagingengine.com (Postfix) with ESMTPA id 040F8483432; Mon, 31 Oct 2011 11:33:35 -0400 (EDT)
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: multipart/alternative; boundary="Apple-Mail-32-318113624"
From: Keith Moore <moore@network-heretics.com>
In-Reply-To: <4EAEB76B.9090304@acm.org>
Date: Mon, 31 Oct 2011 11:33:33 -0400
Message-Id: <8B0C4061-D362-4DFE-9677-7E64515A6E1C@network-heretics.com>
References: <4EAC6BF4.2000604@alvestrand.no> <CALiegf=f4kFzyDLWK+Y5vbuCEJFXX590+VuZ4bbnHZnvX0CoBA@mail.gmail.com> <4EAC8AE0.3020307@acm.org> <4EACD558.1050003@alvestrand.no> <4EAE157F.5020901@it.aoyama.ac.jp> <4EAEB76B.9090304@acm.org>
To: Marc Petit-Huguenin <petithug@acm.org>
X-Mailer: Apple Mail (2.1084)
X-Mailman-Approved-At: Thu, 03 Nov 2011 11:44:02 -0700
Cc: Ned Freed <ned.freed@mrochek.com>, Keith Moore <moore@cs.utk.edu>, Behave WG <behave@ietf.org>, "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] URI schemes for TURN and STUN
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 31 Oct 2011 15:33:37 -0000

On Oct 31, 2011, at 10:57 AM, Marc Petit-Huguenin wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Hi Martin,
> 
> So I understand Roy's email as saying in fact the opposite of what Harald said,
> i.e. that using an "s" suffix to signify security is a good thing.
> 
> What is your opinion on defining a generic scheme suffix (i.e. "+s" or "+sec")
> that would indicate a well defined set of security properties that could apply
> to any scheme, (vs the current "s" suffix where security properties has to be
> defined scheme by scheme)?


There is no "well defined set of security properties that could apply to any scheme".   Security properties necessarily vary depending on the way a resource is used, the threat model, and so forth. 

Also, the idea that there should be a "secure" bit in a URI scheme, to distinguish it from the "insecure" form of a URL, doesn't make much sense.  You always want to use the best security that's available.  You don't want that to depend on the URI scheme.  

The "s" convention was a hack to distinguish "x over SSL" from "x" for all of the URIs that existed before SSL was well-established, because those protocols didn't (then) have a way to negotiate security in-band.   It made sense as a short term hack, but not as an architectural feature.   It's not something that we want to propagate to new URI types, neither in the form of an "s" suffix, nor as any other syntactic convention.

Keith

v2.23.0 | Report a Bug | By Email