Re: [rtcweb] Asking TLS for help with media isolation
Martin Thomson <martin.thomson@gmail.com> Tue, 08 April 2014 18:24 UTC
Return-Path: <martin.thomson@gmail.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5CBB61A067F for <rtcweb@ietfa.amsl.com>; Tue, 8 Apr 2014 11:24:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6jM4gAGlYGBg for <rtcweb@ietfa.amsl.com>; Tue, 8 Apr 2014 11:24:04 -0700 (PDT)
Received: from mail-wi0-x22c.google.com (mail-wi0-x22c.google.com [IPv6:2a00:1450:400c:c05::22c]) by ietfa.amsl.com (Postfix) with ESMTP id 5DD851A0680 for <rtcweb@ietf.org>; Tue, 8 Apr 2014 11:24:04 -0700 (PDT)
Received: by mail-wi0-f172.google.com with SMTP id hi2so7586047wib.5 for <rtcweb@ietf.org>; Tue, 08 Apr 2014 11:24:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=w/HhHSc7/RKayGtZn1MNfwooPO1N+gkKFzmxp6pQtNM=; b=YPxmM6ox0TArA1sHZF3J4oA+tTgPDWOviqP00yqSWEot3D4eFJmLgCLIMmh6PXQyKF /fVgXtQaV3z7Q5UjE6TClxKtF3+5I+VrsqI8U1uj1amXyHWQ1I9qptkJDCH/kne/QVxJ 1dchHNnxaUBOw4GKD9WmAFjbSUSsWOiDkvNS4SXVbQ2WrDrvrJ+QCBXjxVMMLxBi68mj IPPmQHu3f93PBDFjuwlXOjFkS4DXda0Ffob5+oVKZfGTL0Ob8uctMBTljYXUNMxcEof0 /nPZHnx052PJ0QSPYKZdahZcheK6nHdgKbm5WxKklcHVNfkBNsTG715eKEvf/HXLi2cz ffcA==
MIME-Version: 1.0
X-Received: by 10.180.77.129 with SMTP id s1mr5862992wiw.56.1396981443422; Tue, 08 Apr 2014 11:24:03 -0700 (PDT)
Received: by 10.227.144.132 with HTTP; Tue, 8 Apr 2014 11:24:03 -0700 (PDT)
In-Reply-To: <CAOW+2dsZrgQrOwJDu+bFE0U-dSUj5D--s_Dx1Nu9Ac60yuYCrA@mail.gmail.com>
References: <CABkgnnWWuU63Vd=gw+wrh2ADgVYtQzhoRzRE1sv5azJE=MhWDg@mail.gmail.com> <533F191D.8050109@alum.mit.edu> <CABkgnnVht5EmJ7a2LDh50ivjUdoTpJ8GannQKReBSJbVGQGmgA@mail.gmail.com> <53419ED4.8020102@alum.mit.edu> <CABkgnnVjZ51bt5WQ1uvHHUz-4xFzpXQGhuMqxeMpOqJ1d+hQiA@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D2B26CB@ESESSMB209.ericsson.se> <CAOW+2dsZrgQrOwJDu+bFE0U-dSUj5D--s_Dx1Nu9Ac60yuYCrA@mail.gmail.com>
Date: Tue, 08 Apr 2014 11:24:03 -0700
Message-ID: <CABkgnnUgiW7K7C9rTXGU6nAw2mO_5DPZU9ra64nRK=EVCENUzQ@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
To: Bernard Aboba <bernard.aboba@gmail.com>
Content-Type: text/plain; charset="UTF-8"
Archived-At: http://mailarchive.ietf.org/arch/msg/rtcweb/YbVVq3kBA3Qt_wURt81ZKoltdlU
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Asking TLS for help with media isolation
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Apr 2014 18:24:09 -0000
On 8 April 2014 09:50, Bernard Aboba <bernard.aboba@gmail.com> wrote: > [BA] I'm not sure that the concept of "isolation" makes sense for those > intermediaries (or to voicemail or an audio/video conference, for that > matter). While in a point-to-point call it might be useful, in a > conference the whole point is to have audio/video sent to multiple parties, > and recording is commonplace. The problem is that from a protocol point of > view the cases are not easily distinguishable -- and so if the browser > insists on "isolation" then one wonders what will happen if the conference > bridge/video MCU/voicemail system refuses to negotiate it. Refusing to > send media would not be a desirable outcome. I think that for this, it's perfectly reasonable to use identity, but not stream isolation. With isolation, if the peer does not agree to comply, then the session fails to complete. The authenticated party here is an MCU (or bridge, or voicemail, etc...). Rather than sending to "anindividual@example.org", media is sent to "mcu@example.com". Is it reasonable for that MCU to forward media to other, unspecified entities? Clearly it can, but should it? (Not having thought it through completely, a voicemail box could conceivably work. I think that I'd want to use a different identity for it though.)
- [rtcweb] Asking TLS for help with media isolation Martin Thomson
- Re: [rtcweb] Asking TLS for help with media isola… Watson Ladd
- Re: [rtcweb] Asking TLS for help with media isola… Bernard Aboba
- Re: [rtcweb] Asking TLS for help with media isola… Watson Ladd
- Re: [rtcweb] Asking TLS for help with media isola… Bernard Aboba
- Re: [rtcweb] Asking TLS for help with media isola… Watson Ladd
- Re: [rtcweb] Asking TLS for help with media isola… Martin Thomson
- Re: [rtcweb] Asking TLS for help with media isola… Paul Kyzivat
- Re: [rtcweb] Asking TLS for help with media isola… Martin Thomson
- Re: [rtcweb] Asking TLS for help with media isola… Paul Kyzivat
- [rtcweb] Isolating data channels (Re: Asking TLS … Harald Alvestrand
- Re: [rtcweb] Asking TLS for help with media isola… Martin Thomson
- Re: [rtcweb] Isolating data channels (Re: Asking … Martin Thomson
- Re: [rtcweb] Isolating data channels (Re: Asking … Matthew Kaufman (SKYPE)
- Re: [rtcweb] Isolating data channels (Re: Asking … Martin Thomson
- Re: [rtcweb] Isolating data channels (Re: Asking … Harald Alvestrand
- Re: [rtcweb] Isolating data channels (Re: Asking … Martin Thomson
- Re: [rtcweb] Isolating data channels (Re: Asking … Matthew Kaufman (SKYPE)
- Re: [rtcweb] Isolating data channels (Re: Asking … Michael Tuexen
- Re: [rtcweb] Asking TLS for help with media isola… Bernard Aboba
- Re: [rtcweb] Asking TLS for help with media isola… Martin Thomson
- Re: [rtcweb] Isolating data channels (Re: Asking … Paul Kyzivat
- Re: [rtcweb] Isolating data channels (Re: Asking … Matthew Kaufman (SKYPE)
- Re: [rtcweb] Isolating data channels (Re: Asking … Mary Barnes
- Re: [rtcweb] Isolating data channels (Re: Asking … Matthew Kaufman (SKYPE)
- Re: [rtcweb] Isolating data channels (Re: Asking … Michael Thornburgh
- Re: [rtcweb] Asking TLS for help with media isola… Christer Holmberg
- Re: [rtcweb] Asking TLS for help with media isola… Dan Wing
- Re: [rtcweb] Asking TLS for help with media isola… Bernard Aboba
- Re: [rtcweb] Asking TLS for help with media isola… Martin Thomson
- Re: [rtcweb] Asking TLS for help with media isola… Dan Wing
- Re: [rtcweb] Asking TLS for help with media isola… Harald Alvestrand
- Re: [rtcweb] Asking TLS for help with media isola… Paul Kyzivat
- Re: [rtcweb] Asking TLS for help with media isola… Martin Thomson
- Re: [rtcweb] Asking TLS for help with media isola… Martin Thomson
- Re: [rtcweb] Asking TLS for help with media isola… Paul Kyzivat