Re: [rtcweb] Let's define the purpose of WebRTC

Ravindran Parthasarathi <pravindran@sonusnet.com> Wed, 09 November 2011 06:25 UTC

Return-Path: <pravindran@sonusnet.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B567321F849E for <rtcweb@ietfa.amsl.com>; Tue, 8 Nov 2011 22:25:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.629
X-Spam-Level:
X-Spam-Status: No, score=-2.629 tagged_above=-999 required=5 tests=[AWL=-0.030, BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ocPkRUFxzpxM for <rtcweb@ietfa.amsl.com>; Tue, 8 Nov 2011 22:24:59 -0800 (PST)
Received: from mail-ma01.sonusnet.com (sonussf2.sonusnet.com [208.45.178.27]) by ietfa.amsl.com (Postfix) with ESMTP id B695821F8497 for <rtcweb@ietf.org>; Tue, 8 Nov 2011 22:24:59 -0800 (PST)
Received: from sonusmail04.sonusnet.com (sonusmail04.sonusnet.com [10.128.32.98]) by sonuspps2.sonusnet.com (8.14.3/8.14.3) with ESMTP id pA96PVKT024317; Wed, 9 Nov 2011 01:25:31 -0500
Received: from sonusinmail02.sonusnet.com ([10.70.51.30]) by sonusmail04.sonusnet.com with Microsoft SMTPSVC(6.0.3790.4675); Wed, 9 Nov 2011 01:24:00 -0500
Received: from INBA-HUB01.sonusnet.com ([10.70.51.86]) by sonusinmail02.sonusnet.com with Microsoft SMTPSVC(6.0.3790.4675); Wed, 9 Nov 2011 11:54:09 +0530
Received: from INBA-MAIL01.sonusnet.com ([fe80::8d0f:e4f9:a74f:3daf]) by inba-hub01.sonusnet.com ([fe80::5cbc:2823:f6cc:9ce7%11]) with mapi id 14.01.0339.001; Wed, 9 Nov 2011 11:54:08 +0530
From: Ravindran Parthasarathi <pravindran@sonusnet.com>
To: "Muthu Arul Mozhi Perumal (mperumal)" <mperumal@cisco.com>, "Cullen Jennings (fluffy)" <fluffy@cisco.com>, "Olle E. Johansson" <oej@edvina.net>
Thread-Topic: [rtcweb] Let's define the purpose of WebRTC
Thread-Index: AQHMm7/XxS9yQix74UmCewMPtvNQWZWe2WiAgABcZwCAAFnsgIAA1PQAgACv/gCAAAVogIAAGdwAgAHTzND//7JMAIAAEPMAgAESTSCAAAmSMIAALVkA
Date: Wed, 9 Nov 2011 06:24:08 +0000
Message-ID: <387F9047F55E8C42850AD6B3A7A03C6C0134A105@inba-mail01.sonusnet.com>
References: <CALiegfkVNVAs_MyU_-4koA4zRwSn1-FwLjY9g_oZVkhi9rSK5Q@mail.gmail.com><8A61D801-D14D-408B-9875-63C37D0CC166@acmepacket.com><CABw3bnPE=OY_h5bM7GA6wgrXiOBL8P4J0kw1jLv-GSpHAbg=Cg@mail.gmail.com><CABcZeBNqdkh8u=gwOvKfDCQA7rXdAyQkfaM1r2Sx10787btP6A@mail.gmail.com><B10FEFF6-0ADC-4DB1-83BB-50A11C65EC35@acmepacket.com><CABcZeBNSXtim_VqzqAd8Z-u4zWSjaYmsVZPN=7sDYkJsgtRAHA@mail.gmail.com><4EB7E6A5.70209@alvestrand.no><F8003BA9-BCD8-4F02-B514-8B883FF90F91@acmepacket.com><387F9047F55E8C42850AD6B3A7A03C6C01349D81@inba-mail01.sonusnet.com><845C03B2-1975-4145-8F52-8CEC9E360AF3@edvina.net><5454E693-5C34-4C77-BA07-2A9EE9EE4AFD@cisco.com> <387F9047F55E8C42850AD6B3A7A03C6C01349FFE@inba-mail01.sonusnet.com> <1D062974A4845E4D8A343C653804920206D3B7FD@XMB-BGL-414.cisco.com>
In-Reply-To: <1D062974A4845E4D8A343C653804920206D3B7FD@XMB-BGL-414.cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.70.54.164]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginalArrivalTime: 09 Nov 2011 06:24:09.0130 (UTC) FILETIME=[3070E0A0:01CC9EA8]
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Let's define the purpose of WebRTC
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Nov 2011 06:25:00 -0000

Hi Muthu,

I agree with you that Defense & Financial Enterprise customer mandates for security mechanism in media path but it is not mandated for rest of the Enterprise customer. The argument here is whether it is "mandatory to implement" vs "mandatory to use". I agree that it is mandatory to implement in browser but it is not required to be mandatory to use by all the applications. Hope you agree with me.

Thanks
Partha

>-----Original Message-----
>From: Muthu Arul Mozhi Perumal (mperumal) [mailto:mperumal@cisco.com]
>Sent: Wednesday, November 09, 2011 9:12 AM
>To: Ravindran Parthasarathi; Cullen Jennings (fluffy); Olle E. Johansson
>Cc: rtcweb@ietf.org
>Subject: RE: [rtcweb] Let's define the purpose of WebRTC
>
>|"1) Security could be in the lower layer itself
>|(IPsec, VPN, private MPLS cloud). For Enterprise-only-
>|WebRTC application (no federation & no interop),
>|there is no need of security for specific application
>|like WebRTC as it is ensured in the infrastructure.
>
>One of the primary deployments for SRTP I've come across is actually
>within the enterprise -- financial institutions and defense
>establishments concerned about eavesdropping within their organization.
>The fact that the WAN connection is secured using IPSec VPN or a private
>leased line isn't good enough for such deployments.
>
>Muthu
>
>|-----Original Message-----
>|From: rtcweb-bounces@ietf.org [mailto:rtcweb-bounces@ietf.org] On
>Behalf Of Ravindran Parthasarathi
>|Sent: Wednesday, November 09, 2011 8:28 AM
>|To: Cullen Jennings (fluffy); Olle E. Johansson
>|Cc: <rtcweb@ietf.org>
>|Subject: Re: [rtcweb] Let's define the purpose of WebRTC
>|
>|Cullen,
>|
>|As I mentioned in
>http://www.ietf.org/mail-archive/web/rtcweb/current/msg02674.html, below
>comment #2
>|is not valid in IETF.
>|
>|But I'm interested in your opinion as Enterprise UC expert on my 1st
>comment:
>|
>|"1) Security could be in the lower layer itself (IPsec, VPN, private
>MPLS cloud). For Enterprise-only-
>|WebRTC application (no federation & no interop), there is no need of
>security for specific application
>|like WebRTC as it is ensured in the infrastructure. WebRTC security
>will be duplicated for these
>|infrastructure and may lead to double encryption unnecessarily."
>|
>|Thanks
>|Partha
>|
>|>-----Original Message-----
>|>From: Cullen Jennings [mailto:fluffy@cisco.com]
>|>Sent: Tuesday, November 08, 2011 9:29 PM
>|>To: Olle E. Johansson
>|>Cc: Ravindran Parthasarathi; <rtcweb@ietf.org>
>|>Subject: Re: [rtcweb] Let's define the purpose of WebRTC
>|>
>|>
>|>On Nov 8, 2011, at 7:58 AM, Olle E. Johansson wrote:
>|>
>|>>>
>|>>> 2) Being in India, I'm interested in avoiding Government
>restriction
>|>on WebRTC proposal (Thanks to Tim for pointing this). I may not
>surprise
>|>to see that WebRTC mechanism is banned in India because intelligent
>|>agency struggles to break the key in each terrorist WebRTC site.
>|>(http://www.pcworld.com/businesscenter/article/235639/india_wants_to_i
>nt
>|>ercept_skype_google_communications.html)
>|>> That is an interesting objection. I don't think SRTP by default is
>the
>|>problem here. In the case where you need lawful interception in the
>|>application,
>|>> the server needs to route the calls through an RTCweb b2b media
>|>server.
>|>
>|>I think the situation in India is a taxiation not encryption issue.
>|>Partha and I can do VoIP between Canada and India fully encrypted no
>|>problem - in fact we have a dial plan set up specifically so I can do
>|>that with him. The issue is a taxation issue. If we want to be able to
>|>connect that voip server to the PSTN in a way that it becomes what the
>|>regulators in India consider a telephone service, then we need
>|>permission to effectively be an indian telco. Right now I can make a
>|>full SRTP encrypted conversation with between my IP phones and
>Partha's
>|>but I don't think Partha can use his IP phone to access one the the
>PSTN
>|>GWs outside India.
>|>
>|>Anyways, I will remind people of RAVEN http://www.rfc-
>|>editor.org/rfc/rfc2804.txt
>|>
>|
>|_______________________________________________
>|rtcweb mailing list
>|rtcweb@ietf.org
>|https://www.ietf.org/mailman/listinfo/rtcweb