IETF Logo Mail Archive

Re: [rtcweb] Resolving RTP/SDES question in Paris

Roman Shpount <roman@telurix.com> Mon, 19 March 2012 17:13 UTC

Return-Path: <roman@telurix.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8B9BA21F88A6 for <rtcweb@ietfa.amsl.com>; Mon, 19 Mar 2012 10:13:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.738
X-Spam-Level:
X-Spam-Status: No, score=-2.738 tagged_above=-999 required=5 tests=[AWL=0.238, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0oTXozd6m4fY for <rtcweb@ietfa.amsl.com>; Mon, 19 Mar 2012 10:13:27 -0700 (PDT)
Received: from mail-yx0-f172.google.com (mail-yx0-f172.google.com [209.85.213.172]) by ietfa.amsl.com (Postfix) with ESMTP id 4E53721F88A7 for <rtcweb@ietf.org>; Mon, 19 Mar 2012 10:13:26 -0700 (PDT)
Received: by yenm5 with SMTP id m5so6415000yen.31 for <rtcweb@ietf.org>; Mon, 19 Mar 2012 10:13:22 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:x-gm-message-state; bh=WylXTdy2TD2dBhjEGFKMhWkl/OgkZFcC2n7EaNHoGNA=; b=cFzEEVJg5EGimv1lll/zEDmrJFJu0DxI8+9i5WezZWAdoJv+pGSIlrP553dA4V1Ouc fyoOc+fno+kAGk93BZfUnttKZXVN5+cAiUjykfrK098/r/sZGWpdPuxCJY9XPQpVs6xa 55RM9Sdjou+SBU6EAnt+CF6NaaP9+sKcy8LdKFK+wWfoIntYKY10/fsqavxjM6d0WSCQ ZNNPY3dKJ4iiXel9lTyCy2mdMcoJjNRiCyq4FqN9BKcFmsPu3zPE9rWK1jMUGiLjKmBC vQlX7RrE4Qn7vEPjsmkW1LUSkOaC2fU5n3bRX3phWcxg/thGFdeJgu281shhwcIlvROX fnjQ==
Received: by 10.236.179.67 with SMTP id g43mr13082635yhm.66.1332177202607; Mon, 19 Mar 2012 10:13:22 -0700 (PDT)
Received: from mail-gy0-f172.google.com (mail-gy0-f172.google.com [209.85.160.172]) by mx.google.com with ESMTPS id e8sm39496743yhk.0.2012.03.19.10.13.21 (version=TLSv1/SSLv3 cipher=OTHER); Mon, 19 Mar 2012 10:13:22 -0700 (PDT)
Received: by ghbg16 with SMTP id g16so6423916ghb.31 for <rtcweb@ietf.org>; Mon, 19 Mar 2012 10:13:21 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.68.132.40 with SMTP id or8mr41708569pbb.34.1332177201199; Mon, 19 Mar 2012 10:13:21 -0700 (PDT)
Received: by 10.68.6.67 with HTTP; Mon, 19 Mar 2012 10:13:21 -0700 (PDT)
In-Reply-To: <ADBB75F3-E20C-4EC4-B9C3-EF2E4BFF409C@phonefromhere.com>
References: <4F4759DC.7060303@ericsson.com> <387F9047F55E8C42850AD6B3A7A03C6C0E1FEB69@inba-mail01.sonusnet.com> <CALiegfnkYVEpmPV-zSL_4wOY-HiFZN-qJCQCiioaS=5NaqhLZw@mail.gmail.com> <CAD5OKxvtOAxMBx6xDnyfTnEq76oDEm6uj1xL6wGjjrtKUAHy3g@mail.gmail.com> <CABcZeBNZiotPmCfT53uEo+O0xw4xv6tXW1M_G-3A5BHuncsduA@mail.gmail.com> <CAD5OKxvYOY5JZ2mYNGiH1poUBQkyOOycePFijH5H+SxtcdqujQ@mail.gmail.com> <CABkgnnVe-b6Sv=R67bMJk_NQqQwdrRUn6rBm7Gu_CMcfPQwtEg@mail.gmail.com> <CAD5OKxvZbEJ7sV4WPAYoQapzMR_QwAftj-oKg=ioMKHNT792wQ@mail.gmail.com> <6F428EFD2B8C2F49A2FB1317291A76C113563C5A92@USNAVSXCHMBSA1.ndc.alcatel-lucent.com> <CALiegf=jtkDCS_D0ZFe9UpbiadQ0vsJ+4MppQSbLr-wbaXNrfQ@mail.gmail.com> <BLU169-W29E5B86F9E2C6F3126961C93420@phx.gbl> <CALiegfk2aT+6Psr4nT-hG1G7eYRBfFCcT+25On2O4HfUXJ6-ng@mail.gmail.com> <CAD6AjGSmi9j+sdGWPts20-iwGvGij05ek0OKYEPULC6B=aFpQg@mail.gmail.com> <6F428EFD2B8C2F49A2FB1317291A76C113564482A7@USNAVSXCHMBSA1.ndc.alcatel-lucent.com> <ADBB75F3-E20C-4EC4-B9C3-EF2E4BFF409C@phonefromhere.com>
Date: Mon, 19 Mar 2012 13:13:21 -0400
Message-ID: <CAD5OKxvuEV8Vbq3h7=ZgcKmREjmguvz5n-SpXr2n-EY7a_ddxg@mail.gmail.com>
From: Roman Shpount <roman@telurix.com>
To: Tim Panton <tim@phonefromhere.com>
Content-Type: multipart/alternative; boundary="047d7b10cde3daf94504bb9bacfc"
X-Gm-Message-State: ALoCoQnF5YeIdMRDgmOhCNaCRNo0Sme6ty3i36xho6FU2OI89GNRUDuGFQHOQcCn4ofgTxbwjS/g
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Resolving RTP/SDES question in Paris
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Mar 2012 17:13:27 -0000

On Mon, Mar 19, 2012 at 12:53 PM, Tim Panton <tim@phonefromhere.com> wrote:

>
> On 19 Mar 2012, at 16:03, Ejzak, Richard P (Richard) wrote:
>
> ** **
>
> SRTP by itself guarantees nothing.  What is the point of insisting that
> the browser encrypt media if you know nothing about the other endpoint of
> the encrypted media or even whether anyone else has keys?
> ****
>
>
> If you are in an airport lounge, it should mean the script kiddie at the
> next gate over has a harder time reading your screenshare.
> Admittedly you are only incrementally securing the first hop, but often -
> to coin a phrase - "the first hop is the weakest" ;-)
>
> Tim.
>
>
In this case the simplest way to compromise your security is to seat next
to you. Your first hop is between your mouth and the microphone. Or between
your screen and your face.
_____________
Roman Shpount

v2.23.0 | Report a Bug | By Email