IETF Logo Mail Archive

Re: [rtcweb] Use case change request: Identity in multiuser calls

Igor Faynberg <igor.faynberg@alcatel-lucent.com> Thu, 11 August 2011 17:38 UTC

Return-Path: <igor.faynberg@alcatel-lucent.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5D28921F8B75 for <rtcweb@ietfa.amsl.com>; Thu, 11 Aug 2011 10:38:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.849
X-Spam-Level:
X-Spam-Status: No, score=-6.849 tagged_above=-999 required=5 tests=[AWL=-0.250, BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Cyrccvqv2BBY for <rtcweb@ietfa.amsl.com>; Thu, 11 Aug 2011 10:38:05 -0700 (PDT)
Received: from ihemail2.lucent.com (ihemail2.lucent.com [135.245.0.35]) by ietfa.amsl.com (Postfix) with ESMTP id 4779521F8B74 for <rtcweb@ietf.org>; Thu, 11 Aug 2011 10:38:05 -0700 (PDT)
Received: from usnavsmail4.ndc.alcatel-lucent.com (usnavsmail4.ndc.alcatel-lucent.com [135.3.39.12]) by ihemail2.lucent.com (8.13.8/IER-o) with ESMTP id p7BHcYRj000993 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK); Thu, 11 Aug 2011 12:38:35 -0500 (CDT)
Received: from umail.lucent.com (umail-ce2.ndc.lucent.com [135.3.40.63]) by usnavsmail4.ndc.alcatel-lucent.com (8.14.3/8.14.3/GMO) with ESMTP id p7BHcYTY023183 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Thu, 11 Aug 2011 12:38:34 -0500
Received: from [135.244.18.222] (faynberg.lra.lucent.com [135.244.18.222]) by umail.lucent.com (8.13.8/TPES) with ESMTP id p7BHcWqo005699; Thu, 11 Aug 2011 12:38:33 -0500 (CDT)
Message-ID: <4E441398.2050806@alcatel-lucent.com>
Date: Thu, 11 Aug 2011 13:38:32 -0400
From: Igor Faynberg <igor.faynberg@alcatel-lucent.com>
Organization: Alcatel-Lucent
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.18) Gecko/20110616 Thunderbird/3.1.11
MIME-Version: 1.0
To: Harald Alvestrand <harald@alvestrand.no>
References: <4E4292B2.8000904@alvestrand.no> <BBF498F2D030E84AB1179E24D1AC41D616C389F1E1@ESESSCMS0362.eemea.ericsson.se> <4E43C144.1020102@alvestrand.no>
In-Reply-To: <4E43C144.1020102@alvestrand.no>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: 8bit
X-Scanned-By: MIMEDefang 2.57 on 135.245.2.35
X-Scanned-By: MIMEDefang 2.64 on 135.3.39.12
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Use case change request: Identity in multiuser calls
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: igor.faynberg@alcatel-lucent.com
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Aug 2011 17:38:08 -0000

+1.

(Incidentally, this IdM model is consistent with the ITU-T Identity 
Management requirements for next generation networks.)

Igor

On 8/11/2011 7:47 AM, Harald Alvestrand wrote:
> On 08/11/11 13:33, Stefan Håkansson LK wrote:
>> Harald Alvestrand wrote:
>>> In draft-ietf-rtcweb-use-cases-and-requirements, I would like to extend
>>> one part of the scenario "4.3.3 Video conferencing system with central
>>> server".
>>>
>>> I would like to add one more paragraph:
>>>
>>> "All participant are authenticated by the central server, and 
>>> authorized
>>> to connect to the central server. The participants are identified to
>>> each other by the central server, and the participants do not have
>>> access to each others' credentials such as e-mail addresses or login 
>>> IDs".
>> I think this paragraph makes a lot of sense, and would be happy to 
>> add it. However, I’m not 100% convinced that it would add 
>> requirements that are in scope for webrtc or rtcweb.
>>
>> When writing up this use case, the architecture in mind was centred 
>> around a web server that carries out the functionality of serving the 
>> web app, handling users, authenticating them, authorising them, 
>> allowing them to communicate and so on. That web server would control 
>> the central (media) server, which in turn is responsible only for 
>> establishing connections for RTC with browsers, mixing audio and 
>> selecting video between the users (browsers) selected by the web 
>> server, etc.
>>
>> This would mean that user management, including determining what user 
>> identity is revealed to others, is controlled by the web server. I 
>> guess this is done already today for many services. What we will add 
>> is the possibility to communicate using audio and video without 
>> plug-ins.
>>
>> Does this make sense or not?
> This makes sense. I just want it to be explicit.
> It's relevant for the discussion EKR brought up about "who do I 
> authorize when I say OK to using a camera" - if it's the far end of 
> the connection or the service I'm connecting to.
>
> In the centralized server case, with the added text, it's definitely 
> the service, and I'd like to keep it that way. So this is text added 
> in order to make sure we don't generate a requirement....
>
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb

v2.23.0 | Report a Bug | By Email