IETF Logo Mail Archive

Re: [rtcweb] Resolving RTP/SDES question in Paris

Roman Shpount <roman@telurix.com> Fri, 16 March 2012 23:35 UTC

Return-Path: <roman@telurix.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B3E8021E807B for <rtcweb@ietfa.amsl.com>; Fri, 16 Mar 2012 16:35:11 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.563
X-Spam-Level:
X-Spam-Status: No, score=-2.563 tagged_above=-999 required=5 tests=[AWL=0.113, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7Gl7f2cVxbt8 for <rtcweb@ietfa.amsl.com>; Fri, 16 Mar 2012 16:35:11 -0700 (PDT)
Received: from mail-pb0-f44.google.com (mail-pb0-f44.google.com [209.85.160.44]) by ietfa.amsl.com (Postfix) with ESMTP id 0985721E8014 for <rtcweb@ietf.org>; Fri, 16 Mar 2012 16:35:10 -0700 (PDT)
Received: by pbbrq13 with SMTP id rq13so320708pbb.31 for <rtcweb@ietf.org>; Fri, 16 Mar 2012 16:35:10 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:x-gm-message-state; bh=/9iHeQ+mbbhGndSSrvhjhTpewN4SKPE+qCtQPZHYvrU=; b=bc10TG1ftNWHcTyZYR6VqMvvan3re9tnnl+idnbPT9DYlpys6Ty5z5PVc0dTiuT0p3 mIV4TURgoVELG+YrDjoHJVWxVYAxN4+1Tn6Um6ukEdCxcYMwnYDRgNNx1wv1lVNrX+qv 6pJ40Z5+qf4OcsVLQmxXTeECnXv7cp2nBzaXARkGZVP/0qWmE6rO+4fz+Q57QbJuzKnt TZWvFKVutkXRqBRMCZaoxSfVnPF4EMKIzs+K/ef7rwGTYcp+NyhgckXCeAIOrqEvPjQi wOZXMjYx20KWciH3RI0LYKSwKPLqbN2yQpYL36BT0vCi5LPUCNdARjgSNunXorRLDO0U Lp9w==
Received: by 10.68.73.225 with SMTP id o1mr18821864pbv.77.1331940910131; Fri, 16 Mar 2012 16:35:10 -0700 (PDT)
Received: from mail-pb0-f44.google.com (mail-pb0-f44.google.com [209.85.160.44]) by mx.google.com with ESMTPS id u10sm5283306pbf.37.2012.03.16.16.35.08 (version=TLSv1/SSLv3 cipher=OTHER); Fri, 16 Mar 2012 16:35:09 -0700 (PDT)
Received: by pbbrq13 with SMTP id rq13so320699pbb.31 for <rtcweb@ietf.org>; Fri, 16 Mar 2012 16:35:08 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.68.212.232 with SMTP id nn8mr18592898pbc.156.1331940908239; Fri, 16 Mar 2012 16:35:08 -0700 (PDT)
Received: by 10.68.17.99 with HTTP; Fri, 16 Mar 2012 16:35:08 -0700 (PDT)
In-Reply-To: <CALiegfnkYVEpmPV-zSL_4wOY-HiFZN-qJCQCiioaS=5NaqhLZw@mail.gmail.com>
References: <4F4759DC.7060303@ericsson.com> <387F9047F55E8C42850AD6B3A7A03C6C0E1FEB69@inba-mail01.sonusnet.com> <CALiegfnkYVEpmPV-zSL_4wOY-HiFZN-qJCQCiioaS=5NaqhLZw@mail.gmail.com>
Date: Fri, 16 Mar 2012 19:35:08 -0400
Message-ID: <CAD5OKxvtOAxMBx6xDnyfTnEq76oDEm6uj1xL6wGjjrtKUAHy3g@mail.gmail.com>
From: Roman Shpount <roman@telurix.com>
To: Iñaki Baz Castillo <ibc@aliax.net>
Content-Type: multipart/alternative; boundary="e89a8ffba8a5b28c4704bb64a8c6"
X-Gm-Message-State: ALoCoQklHobhAK1DWOJUtPz0q3DO53l+KfAlDmRMDj4Af1VJP4xjdTR3mpfinWlAbKTf8EGbtRtB
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Resolving RTP/SDES question in Paris
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 16 Mar 2012 23:35:11 -0000

On Fri, Mar 16, 2012 at 6:55 PM, Iñaki Baz Castillo <ibc@aliax.net> wrote:

> Giving the security responsability to end users as a configurable
> option is not a good idea. The world would be much better if the
> browsers would not allow plain HTTP, but it's not possible to change
> the WWW requeriments and mandate HTTPS given the ammount of plain HTTP
> deployments. In contrast, WebRTC does not exist yet so *now* is the
> moment to mandate security.
>
>
And you imply that the fact that security is most of the times unnecessary
and often prohibited, has absolutely nothing to do with using HTTP over
HTTPS. If you think people in the military or in prisons do not use web
browsers, think again. Requiring secure communications will prevent them
from using WebRTC.

Furthermore comparison between HTTP/HTTPS and RTP/SRTP in not entirely
appropriate. HTTPS communications are reasonably secure. SRTP calls, unless
we make identity management a requirement for WebRTC, are only giving
people a false sense of security. The fact that browser uses SRTP does not,
in any way, imply that the communication is secure. If the key was
delivered over HTTP, anybody intercepting your IP traffic can listen to it.
If we are dealing with the server based attack then all hell breaks loose.
So, unless we requiring that only connections are over DTLS-SRTP using an
SDP signed by a verified remote party are allowed, we allow unsecure
connections. We need to show an appropriate warning for all of them, and
warning RTP vs SDES-SRTP vs unsigned DTLS-SRTP should not be very
different. It should say "You are trying to communicate over unsecure
peer--to-peer channel with an unknown party. Continue?" There is no, "you
are trying to use slightly more secure channel. Is this ok?".
_____________
Roman Shpount

v2.23.0 | Report a Bug | By Email