Re: [rtcweb] interworking with non-WEBRTC endpoints [was RE: Use Case draft]

"Fabio Pietrosanti (naif)" <lists@infosecurity.ch> Wed, 02 May 2012 20:53 UTC

Return-Path: <lists@infosecurity.ch>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D88811E8080 for <rtcweb@ietfa.amsl.com>; Wed, 2 May 2012 13:53:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hfR9tkMSOz+j for <rtcweb@ietfa.amsl.com>; Wed, 2 May 2012 13:53:40 -0700 (PDT)
Received: from mail-we0-f172.google.com (mail-we0-f172.google.com [74.125.82.172]) by ietfa.amsl.com (Postfix) with ESMTP id 73A4111E80B5 for <rtcweb@ietf.org>; Wed, 2 May 2012 13:53:40 -0700 (PDT)
Received: by werb10 with SMTP id b10so865101wer.31 for <rtcweb@ietf.org>; Wed, 02 May 2012 13:53:35 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=sender:message-id:date:from:user-agent:mime-version:to:subject :references:in-reply-to:x-enigmail-version:content-type :content-transfer-encoding:x-gm-message-state; bh=b9XtVbC3H7Lh3Ujl79wpcW2oeYw8CFrQ5O2znWG9zvE=; b=g5wk1zM947ZQHYxahAHeu11fayU5pt2ZNa3AatmIDYS9bydePQRKNY0eyT4RXxXLC+ 1QB6OUUEyla0y2G5qeKgjUU6KdvA6SfWUL0eCbnmdIQGxzJKCVJBxrBloHc5i37FRXYc 1d0Jtfd72w6x1f2k5XEafFC4lYQCTtzikhxYH8VJts0PAPnT03jVkuLejiobuHwj3iAP /P8nT875T5lCQ4WZgo80RW3FHTA2t3VmF7dHX7I3Fk1tX5XpNE4tZ0M+tGx0OFGokDEv ESWZyl+6RO5vFDZimX6T2jxjIH32CVUn0tNx4JWd4Dm2i0NJhp85r4GhlAxGq5h/qSOX RNyg==
Received: by 10.180.107.104 with SMTP id hb8mr17506811wib.8.1335992015575; Wed, 02 May 2012 13:53:35 -0700 (PDT)
Received: from sonyvaiop13.local (93-32-174-182.ip34.fastwebnet.it. [93.32.174.182]) by mx.google.com with ESMTPS id k6sm46591443wiy.7.2012.05.02.13.53.34 (version=TLSv1/SSLv3 cipher=OTHER); Wed, 02 May 2012 13:53:34 -0700 (PDT)
Sender: Fabio Pietrosanti <naif@infosecurity.ch>
Message-ID: <4FA19ECD.8030400@infosecurity.ch>
Date: Wed, 02 May 2012 22:53:33 +0200
From: "Fabio Pietrosanti (naif)" <lists@infosecurity.ch>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:11.0) Gecko/20120327 Thunderbird/11.0.1
MIME-Version: 1.0
To: rtcweb@ietf.org
References: <CA+9kkMCYArLPRP3c00UdOja64WRT6ghN0PSy7XvM_wbxBBB+vA@mail.gmail.com><E17CAD772E76C742B645BD4DC602CD810616F066@NAHALD.us.int.genesyslab.com><BLU169-W7C59E1EDB4CB06B648577932B0@phx.gbl><387F9047F55E8C42850AD6B3A7A03C6C0E23AFFF@inba-mail01.sonusnet.com><2E496AC9-63A0-464A-A628-7407ED8DD9C4@phonefromhere.com><387F9047F55E8C42850AD6B3A7A03C6C0E23B16B@inba-mail01.sonusnet.com><E2714FBC-D06B-4A12-9E07-C49EBF55084C@phonefromhere.com><4F9EC0B2.10903@alcatel-lucent.com><101C6067BEC68246B0C3F6843BCCC1E31299282765@MCHP058A.global-ad.net><CAJNg7VKENERKAFA-n5KeoeBNmGgHrnzDOU0BzC9+fSdsuGwdEw@mail.gmail.com><E17CAD772E76C742B645BD4DC602CD810616F24F@NAHALD.us.int.genesyslab.com> <4FA0F43E.4020308@ericsson.com> <E17CAD772E76C742B645BD4DC602CD810616F336@NAHALD.us.int.genesyslab.com> <013101cd288c$09328250$1b9786f0$@com>
In-Reply-To: <013101cd288c$09328250$1b9786f0$@com>
X-Enigmail-Version: 1.4.1
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Gm-Message-State: ALoCoQnng93221+039PNYTryZANf0q/WAfSpg1bso/cJFmYn2brZzfmJ3jQ5h5IOUgFrY9PAxcwb
Subject: Re: [rtcweb] interworking with non-WEBRTC endpoints [was RE: Use Case draft]
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 02 May 2012 20:53:41 -0000

On 5/2/12 7:50 PM, Dan Wing wrote:
http://www.ietf.org/proceedings/83/slides/slides-83-rtcweb-3.pdf
> However, when I presented slide 7, there were objections at the 
> microphone that this model 'is broken'.  I would like to understand 
> the objections so we can reach consensus on how interworking from
> WEBRTC to non-WEBRTC is expected to occur.

IMHO it would be much easier, as described in tons of previous email, to
use different Key Management for different requirements:

- SDES + SRTP for end-to-site (peer to gateway)
- DTLS-SRTP for end-to-end (peer to peer)

It would be a simpler approach for:

- Security (the user know the security level)
- Interoperability (Use standard protocols for the need to interoperate)

That way the "simpler, legacy, standard" technology would be used for
all voip "server applications" while the new burning (yet not used by
anyone) DTLS-SRTP will be used for peer-to-peer calls.

Please DO NOT reinvent the wheel for what's already existing and deployed.

Doing so, it's like going against the natural human behavior, it would
just represent a failure.

Fabio