[rtcweb] DTLS-SRTP implementation diffusion: Why not SDES-SRTP?
"Fabio Pietrosanti (naif)" <lists@infosecurity.ch> Wed, 28 March 2012 19:41 UTC
Return-Path: <lists@infosecurity.ch>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CFC5021E8217 for <rtcweb@ietfa.amsl.com>; Wed, 28 Mar 2012 12:41:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.599
X-Spam-Level:
X-Spam-Status: No, score=-3.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7wopgaxlDzPi for <rtcweb@ietfa.amsl.com>; Wed, 28 Mar 2012 12:41:54 -0700 (PDT)
Received: from mail-wg0-f44.google.com (mail-wg0-f44.google.com [74.125.82.44]) by ietfa.amsl.com (Postfix) with ESMTP id B402021E80D0 for <rtcweb@ietf.org>; Wed, 28 Mar 2012 12:41:53 -0700 (PDT)
Received: by wgbdr13 with SMTP id dr13so908589wgb.13 for <rtcweb@ietf.org>; Wed, 28 Mar 2012 12:41:52 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=sender:message-id:date:from:user-agent:mime-version:to:subject :x-enigmail-version:content-type:content-transfer-encoding :x-gm-message-state; bh=sV6DaWUBqxTdRAKp+da5zzdLtmcKi6MgyzKhrGbEK10=; b=oeV+Ho2YJ1y5rX41KsB1bgunQn9Lvg7m+HoYo1KZNVUuqB0i4LFJu27VbxV+5baU9Z 1JJizP244/X+zZ66zYqAuEG4kd0hGTR9FZK01XqJhaib9Hnr76DnusLHWAoLrxBvZVf7 SafuryYq/jFZSEcPq3yLcrqfe25+0Ue9bFO3UqRoLRUJyQD6+nvGuEYtD6UGr7GGHve5 FxdLoPUERQN7QV5PY/LbxFqEIgwZhFcTnSXZJc3A06vpQbjo9QMhDDO+XUCP+1iEkBbk xAGbkgtTwh/7VoYiIPpwERG7KIfG3Br03eEXvmL+p5MJS83cGz93wOqLZJW26ZSVV2qx 8RlQ==
Received: by 10.180.104.65 with SMTP id gc1mr886348wib.13.1332963712350; Wed, 28 Mar 2012 12:41:52 -0700 (PDT)
Received: from sonyvaiop13.local (93-32-156-99.ip34.fastwebnet.it. [93.32.156.99]) by mx.google.com with ESMTPS id o2sm17100239wiv.11.2012.03.28.12.41.50 (version=TLSv1/SSLv3 cipher=OTHER); Wed, 28 Mar 2012 12:41:51 -0700 (PDT)
Sender: Fabio Pietrosanti <naif@infosecurity.ch>
Message-ID: <4F73697D.5080006@infosecurity.ch>
Date: Wed, 28 Mar 2012 21:41:49 +0200
From: "Fabio Pietrosanti (naif)" <lists@infosecurity.ch>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:10.0.2) Gecko/20120216 Thunderbird/10.0.2
MIME-Version: 1.0
To: "<rtcweb@ietf.org>" <rtcweb@ietf.org>
X-Enigmail-Version: 1.4
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Gm-Message-State: ALoCoQkdsi67xEstd3UJCj2HHpd3giyFOsYjaliIEtNH0x1PSHpiI/nMIz2UJGQITuKOB91bANxk
Subject: [rtcweb] DTLS-SRTP implementation diffusion: Why not SDES-SRTP?
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Mar 2012 19:41:54 -0000
Hi all, i read that 80% of Sipit participant support SDES-SRTP but 0% support DTLS-SRTP https://www.sipit.net/SIPit29_summary . At SIPit there were 34 attendees from 17 companies visiting from 12 countries with 25 distinct VoIP implementations. For SDES-SRTP it's reported that: ** All implementations supported SDES for SRTP key exchange. Good interop with many different combinations of endpoints. ** I do not really see which is the rationale in making DTLS-SRTP mandatory while plain SRTP with SDES key exchange is already so well know and used. Anyone can provide some very strong and valuable point about using DTLS-SRTP (considering it's weak diffusion and incompatibility risks) rather than standardizing the transport/communication of SDES key exchange over a Web medium (HTTPS/HTTPS/Javascript)? -- Fabio Pietrosanti Founder, CTO Tel: +39 02 911930893 + ext: 907 Mobile: +39 340 1801049 E-mail: fabio.pietrosanti@privatewave.com Skype: fpietrosanti Linkedin: http://linkedin.com/in/secret PrivateWave Italia S.p.A. Via Gaetano Giardino 1 - 20123 Milano - Italy www.privatewave.com
- [rtcweb] DTLS-SRTP implementation diffusion: Why … Fabio Pietrosanti (naif)
- Re: [rtcweb] DTLS-SRTP implementation diffusion: … Iñaki Baz Castillo
- Re: [rtcweb] DTLS-SRTP implementation diffusion: … Fabio Pietrosanti (naif)
- Re: [rtcweb] DTLS-SRTP implementation diffusion: … Iñaki Baz Castillo
- Re: [rtcweb] DTLS-SRTP implementation diffusion: … Igor Faynberg
- Re: [rtcweb] DTLS-SRTP implementation diffusion: … Randell Jesup