IETF Logo Mail Archive

Re: [rtcweb] What is consent?

Bernard Aboba <bernard_aboba@hotmail.com> Tue, 11 September 2012 19:29 UTC

Return-Path: <bernard_aboba@hotmail.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F1BE121F869E for <rtcweb@ietfa.amsl.com>; Tue, 11 Sep 2012 12:29:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.599
X-Spam-Level:
X-Spam-Status: No, score=-102.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ax-GGPj9Ttu4 for <rtcweb@ietfa.amsl.com>; Tue, 11 Sep 2012 12:29:19 -0700 (PDT)
Received: from blu0-omc3-s16.blu0.hotmail.com (blu0-omc3-s16.blu0.hotmail.com [65.55.116.91]) by ietfa.amsl.com (Postfix) with ESMTP id 70E9521F8672 for <rtcweb@ietf.org>; Tue, 11 Sep 2012 12:29:19 -0700 (PDT)
Received: from BLU169-DS48 ([65.55.116.72]) by blu0-omc3-s16.blu0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4675); Tue, 11 Sep 2012 12:29:18 -0700
X-Originating-IP: [198.37.20.75]
X-EIP: [NFMwI8Ayea9z/WVjd/xmmWCnnk0thVba]
X-Originating-Email: [bernard_aboba@hotmail.com]
Message-ID: <BLU169-DS48211D4056CB291285DD4393930@phx.gbl>
From: Bernard Aboba <bernard_aboba@hotmail.com>
To: 'Eric Rescorla' <ekr@rtfm.com>
References: <CABkgnnXAPZ5BN=CUwYdEpHKbCLBxctqpONL==QWf_WwgrNEK_A@mail.gmail.com> <CABcZeBNnoQwJu1MYSW=6q6pkrgXSPSUtVyOsngrPP6b8GaegdQ@mail.gmail.com> <CABkgnnUNhka8OJsiNCV5iOvU_cGyvt_y8=DN6qnud3Xr-dy1iQ@mail.gmail.com> <CABcZeBNddHgHnkZ5b2N4i-np3WuY51f6WHkBdT5mHBsieLMDow@mail.gmail.com>
In-Reply-To: <CABcZeBNddHgHnkZ5b2N4i-np3WuY51f6WHkBdT5mHBsieLMDow@mail.gmail.com>
Date: Tue, 11 Sep 2012 14:29:14 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQHuiFtacnnBjuI6raWX6lmK+8wORAGUpRMPAmkYFagCGeLX4JcS17FQ
Content-Language: en-us
X-OriginalArrivalTime: 11 Sep 2012 19:29:18.0965 (UTC) FILETIME=[BCE87A50:01CD9053]
Cc: rtcweb@ietf.org
Subject: Re: [rtcweb] What is consent?
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Sep 2012 19:29:20 -0000

Eric Rescorla said: 

"Responses from the server need to *contain* the MESSAGE-INTEGRITY field and
otherwise are not taken as evidence of consent. This field can only be
generated by a server that has the ICE credentials. So, obviously, a legacy
STUN server won't generate that."

[BA] While the presence of the MESSAGE-INTEGRITY field is a necessary
condition, is it sufficient to demonstrate consent? For example, does the
nominated flag need to be set to true?  RFC 5245 Section 7.1.3.2.4 says: 

7.1.3.2.4.  Updating the Nominated Flag

   If the agent was a controlling agent, and it had included a USE-
   CANDIDATE attribute in the Binding request, the valid pair generated
   from that check has its nominated flag set to true.  This flag
   indicates that this valid pair should be used for media if it is the
   highest-priority one amongst those whose nominated flag is set.  This
   may conclude ICE processing for this media stream or all media
   streams; see Section 8.

   If the agent is the controlled agent, the response may be the result
   of a triggered check that was sent in response to a request that
   itself had the USE-CANDIDATE attribute.  This case is described in
   Section 7.2.1.5, and may now result in setting the nominated flag for
   the pair learned from the original request.

v2.23.0 | Report a Bug | By Email