IETF Logo Mail Archive

Re: [rtcweb] WGLC for draft-ietf-rtcweb-ip-handling

Lennart Grahl <lennart.grahl@gmail.com> Fri, 30 March 2018 03:48 UTC

Return-Path: <lennart.grahl@gmail.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D414D129C5D for <rtcweb@ietfa.amsl.com>; Thu, 29 Mar 2018 20:48:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R8vAZGKmYvsy for <rtcweb@ietfa.amsl.com>; Thu, 29 Mar 2018 20:48:46 -0700 (PDT)
Received: from mail-wr0-x22e.google.com (mail-wr0-x22e.google.com [IPv6:2a00:1450:400c:c0c::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0D04E124205 for <rtcweb@ietf.org>; Thu, 29 Mar 2018 20:48:46 -0700 (PDT)
Received: by mail-wr0-x22e.google.com with SMTP id 80so7033132wrb.2 for <rtcweb@ietf.org>; Thu, 29 Mar 2018 20:48:45 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:openpgp:cc:message-id:date:user-agent :mime-version:in-reply-to:content-language:content-transfer-encoding; bh=5EwMwCDkOO/Wm+I2/Guv0kz+l4ZgJ8a6QdL2sTN4MI4=; b=cvli9dFVoGHADQRWGiSJQWtCeLMsI++fxemfk4J/GC1tIU27WZINlc8uxYGPlkx6/S uUoVeTHFBoy2aT0YQanVcntSeCrmKlr0qC8jgd3QLcrmUWb1GM8FR7LgDa9xOAUGzuGp OiYF6/NC8YX0X4jqEjBP45qQHkKlYhBmSqGOqrhwc4CyNajNVFc1WYO/19Qh6zmPlgUj +xuhY8gPxHCkQbeC/kuYF/a2CkhHco10ELbXmgtj5MSQohPtm74VY19RglvqnuSZMSF+ nMaXUXhOH6+Fbd8VUxQNIgEjtGRkBily5411A0S3NYZcJvBooCvWWa0XKDNbsCRWZDj0 +O+w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:openpgp:cc:message-id :date:user-agent:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=5EwMwCDkOO/Wm+I2/Guv0kz+l4ZgJ8a6QdL2sTN4MI4=; b=aLVHu2Ye8pSIjAhMMp0ZH8ywyH1JqVDPXAm2+82bIeRpi+kuoOiO21sJRUNucQdsdO KmMVBggLl9ebpmVpXlTmQUppU+pOLnfNLEe2YrS8ikpzh6cXzY56i5y3UzN+7i1BjU91 lwSscPrh8KRPxp3noztDscnY0Is4CKK5BMHg62loNvfExJVB34QrTM4m7xoCuEq0qEBj NTNzNw2A2XqgH2q4dqo1TtK3G77jrJnmIOnB3qubk/vygItTT1OI7YKbdilMl+A8KtOZ jshWzNLyh/X9+5Psf+fI2qlu+SCFjKZ5IHgUVk7hxbpo0WFNlp/9q+5Mu9IYuFGB6KG0 IytA==
X-Gm-Message-State: AElRT7G+KuhAvlK+X8c0W1daymQSgrmyuAiaQyHZrXUogLAT8kLZB4k1 Z4HH41v89eCMPL7sdQlntWR4bQ==
X-Google-Smtp-Source: AIpwx4/S7BTanX7srSRRut9rbN4O+4F073ExnDi07Gnsef1Cvqa8D9zQVd6zbMT0aRW6gt1Il5miFA==
X-Received: by 10.223.156.206 with SMTP id h14mr7710750wre.281.1522381724412; Thu, 29 Mar 2018 20:48:44 -0700 (PDT)
Received: from ?IPv6:2003:cd:6bc2:9a00:6944:64ab:75ab:e226? ([2003:cd:6bc2:9a00:6944:64ab:75ab:e226]) by smtp.gmail.com with ESMTPSA id l73sm10846735wma.10.2018.03.29.20.48.43 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 29 Mar 2018 20:48:43 -0700 (PDT)
To: rtcweb@ietf.org
References: <1D5B431C-801E-4F8C-8026-6BCBB72FF478@sn3rd.com> <63282b84-4493-3fcb-a95f-4afe17d96bb6@cs.tcd.ie> <CAOJ7v-1gTq+EEjb+-q-T-pABBW--rpNGegoj_d2_7f7AKGksCA@mail.gmail.com> <403713b4-31d4-9085-d639-d3f60935ed5a@cs.tcd.ie> <CAOJ7v-0ED-FK=JmSxBJYfM=PCdgY6kmbiq6aFLcP7OXugG07EA@mail.gmail.com> <e6938f7d-542d-736b-0a3d-9269d7dd06e5@cs.tcd.ie> <CAOW+2dv1ORz2tEkgDTvdM1DtgyOdgXqKU30T4QhLAp1NT+rirg@mail.gmail.com> <CAOJ7v-0tCcg3FdzyfSJ6Y3JaH-TivFf-Sey6+tD8BANJKsjqtQ@mail.gmail.com>
From: Lennart Grahl <lennart.grahl@gmail.com>
Openpgp: preference=signencrypt
Cc: Justin Uberti <juberti=40google.com@dmarc.ietf.org>
Message-ID: <1fceb3c4-35f3-34f7-de1d-79d5805e6d22@gmail.com>
Date: Fri, 30 Mar 2018 05:48:42 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0
MIME-Version: 1.0
In-Reply-To: <CAOJ7v-0tCcg3FdzyfSJ6Y3JaH-TivFf-Sey6+tD8BANJKsjqtQ@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-GB
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtcweb/gB3XTEU0w2AAMUh8TbtSt2N6tXQ>
Subject: Re: [rtcweb] WGLC for draft-ietf-rtcweb-ip-handling
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 30 Mar 2018 03:48:48 -0000

On 30.03.2018 00:02, Justin Uberti wrote:
> As such, I believe a full treatment of scenario 2 is out of scope of this
> document, and the existing options presented in the document are sufficient.

I would agree with you that the document is sufficient when it comes to
the modes it provides (even though the clever mDNS experiment Apple runs
at the moment might be worth adding to mode 2 and 3 if proven
successful). But the more I think of it, the less I agree with the
"consent" part of the document, especially this particular statement:

> [...] one potential mechanism is to tie this consent to getUserMedia
consent

It's a "potential mechanism" that has been gladly accepted by all
browser vendors, let's face it, probably because it's easy and it seemed
to work well for many use cases. But it's showing its weaknesses:

1. It discriminates various use cases (just one example: a peer-to-peer
file sharing application using data channels, potentially in the same
network), and
2. assumes the user is okay with mode 1 when the application gets
capture permissions. Cullen pointed out that this may be a false
assumption in some cases.

Now, even though the document states that mode 2 SHOULD be used if no
consent has been given (and that would be fine for the majority of use
cases I have in mind), we're already seeing browsers going for mode 3
when no "consent" is available. But the only form of "consent" we have
at the moment is getUserMedia. That makes it a problem for the use cases
that simply cannot utilise those permission requests. And the impact of
being forced to NAT hairpinning or even TURN can be much higher than it
would be for an audio/video conference. Thus, the implementations in the
browsers based on the suggestion in this document already hinder some
interesting use cases.

I'm fine with the modes, I don't have a strong opinion on whether or not
an IETF document should include some form of "consent". But I do have a
problem with the suggestion to use getUserMedia. Can we maybe remove it?

Cheers
Lennart

v2.23.0 | Report a Bug | By Email