Re: [rtcweb] Asking TLS for help with media isolation

Martin Thomson <martin.thomson@gmail.com> Tue, 08 April 2014 18:24 UTC

Return-Path: <martin.thomson@gmail.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5CBB61A067F for <rtcweb@ietfa.amsl.com>; Tue, 8 Apr 2014 11:24:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6jM4gAGlYGBg for <rtcweb@ietfa.amsl.com>; Tue, 8 Apr 2014 11:24:04 -0700 (PDT)
Received: from mail-wi0-x22c.google.com (mail-wi0-x22c.google.com [IPv6:2a00:1450:400c:c05::22c]) by ietfa.amsl.com (Postfix) with ESMTP id 5DD851A0680 for <rtcweb@ietf.org>; Tue, 8 Apr 2014 11:24:04 -0700 (PDT)
Received: by mail-wi0-f172.google.com with SMTP id hi2so7586047wib.5 for <rtcweb@ietf.org>; Tue, 08 Apr 2014 11:24:03 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=w/HhHSc7/RKayGtZn1MNfwooPO1N+gkKFzmxp6pQtNM=; b=YPxmM6ox0TArA1sHZF3J4oA+tTgPDWOviqP00yqSWEot3D4eFJmLgCLIMmh6PXQyKF /fVgXtQaV3z7Q5UjE6TClxKtF3+5I+VrsqI8U1uj1amXyHWQ1I9qptkJDCH/kne/QVxJ 1dchHNnxaUBOw4GKD9WmAFjbSUSsWOiDkvNS4SXVbQ2WrDrvrJ+QCBXjxVMMLxBi68mj IPPmQHu3f93PBDFjuwlXOjFkS4DXda0Ffob5+oVKZfGTL0Ob8uctMBTljYXUNMxcEof0 /nPZHnx052PJ0QSPYKZdahZcheK6nHdgKbm5WxKklcHVNfkBNsTG715eKEvf/HXLi2cz ffcA==
MIME-Version: 1.0
X-Received: by 10.180.77.129 with SMTP id s1mr5862992wiw.56.1396981443422; Tue, 08 Apr 2014 11:24:03 -0700 (PDT)
Received: by 10.227.144.132 with HTTP; Tue, 8 Apr 2014 11:24:03 -0700 (PDT)
In-Reply-To: <CAOW+2dsZrgQrOwJDu+bFE0U-dSUj5D--s_Dx1Nu9Ac60yuYCrA@mail.gmail.com>
References: <CABkgnnWWuU63Vd=gw+wrh2ADgVYtQzhoRzRE1sv5azJE=MhWDg@mail.gmail.com> <533F191D.8050109@alum.mit.edu> <CABkgnnVht5EmJ7a2LDh50ivjUdoTpJ8GannQKReBSJbVGQGmgA@mail.gmail.com> <53419ED4.8020102@alum.mit.edu> <CABkgnnVjZ51bt5WQ1uvHHUz-4xFzpXQGhuMqxeMpOqJ1d+hQiA@mail.gmail.com> <7594FB04B1934943A5C02806D1A2204B1D2B26CB@ESESSMB209.ericsson.se> <CAOW+2dsZrgQrOwJDu+bFE0U-dSUj5D--s_Dx1Nu9Ac60yuYCrA@mail.gmail.com>
Date: Tue, 8 Apr 2014 11:24:03 -0700
Message-ID: <CABkgnnUgiW7K7C9rTXGU6nAw2mO_5DPZU9ra64nRK=EVCENUzQ@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
To: Bernard Aboba <bernard.aboba@gmail.com>
Content-Type: text/plain; charset=UTF-8
Archived-At: http://mailarchive.ietf.org/arch/msg/rtcweb/YbVVq3kBA3Qt_wURt81ZKoltdlU
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Asking TLS for help with media isolation
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 08 Apr 2014 18:24:09 -0000

On 8 April 2014 09:50, Bernard Aboba <bernard.aboba@gmail.com> wrote:
> [BA] I'm not sure that the concept of "isolation" makes sense for those
> intermediaries (or to voicemail or an audio/video conference, for that
> matter).   While in a point-to-point call it might be useful, in a
> conference the whole point is to have audio/video sent to multiple parties,
> and recording is commonplace.  The problem is that from a protocol point of
> view the cases are not easily distinguishable -- and so if the browser
> insists on "isolation" then one wonders what will happen if the conference
> bridge/video MCU/voicemail system refuses to negotiate it.   Refusing to
> send media would not be a desirable outcome.

I think that for this, it's perfectly reasonable to use identity, but
not stream isolation.  With isolation, if the peer does not agree to
comply, then the session fails to complete.

The authenticated party here is an MCU (or bridge, or voicemail,
etc...).  Rather than sending to "anindividual@example.org".org", media is
sent to "mcu@example.com".com".  Is it reasonable for that MCU to forward
media to other, unspecified entities?  Clearly it can, but should it?

(Not having thought it through completely, a voicemail box could
conceivably work.  I think that I'd want to use a different identity
for it though.)