IETF Logo Mail Archive

Re: [rtcweb] Mandating encryption of RTP header extensions for MID and RID SDES items

"Cullen Jennings (fluffy)" <fluffy@cisco.com> Thu, 13 October 2016 18:12 UTC

Return-Path: <fluffy@cisco.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CCEBE129619 for <rtcweb@ietfa.amsl.com>; Thu, 13 Oct 2016 11:12:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -117.517
X-Spam-Level:
X-Spam-Status: No, score=-117.517 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-2.996, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_WHITELIST=-100] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id arvFOITn5ViR for <rtcweb@ietfa.amsl.com>; Thu, 13 Oct 2016 11:12:31 -0700 (PDT)
Received: from alln-iport-2.cisco.com (alln-iport-2.cisco.com [173.37.142.89]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D735F129558 for <rtcweb@ietf.org>; Thu, 13 Oct 2016 11:12:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2338; q=dns/txt; s=iport; t=1476382350; x=1477591950; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=kSONAUYBt7+2BiQLAxTXQvcbvY3Ig1QKQ3FNGp2YRGE=; b=XY4YQTzxUNcyKfHjKLrUc+NUWpYQ5BKaHvbeh6xQCbWU+GLxmI5L5o2B WEVwvv6szLyvOj15cc34W4LOFGMddxRy45WWXR60LxLNOme5DCxTxjsHm Qrw7iezVikmXpDtpMeMzz0KiHCesw6J7wDYU1hbI7s+qiXLRVGBEM2Oca A=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: A0DQAgDTzf9X/5NdJa1cGQEBAQEBAQEBAQEBBwEBAQEBgzwBAQEBAR1XfAekMZY+HAuFMEoCggo8EAECAQEBAQEBAV4nhGEBAQEDAQEBAQliCwUJAgIBCBgnBxsMCxQRAgQOBYhKCA7DLgEBAQEBAQEBAQEBAQEBAQEBAQEBARgFBYg1gliER4Mwgi8FiDyRRgGPfI91jHmDfgE1H1CCdRwZgTpyhwSBAAEBAQ
X-IronPort-AV: E=Sophos;i="5.31,340,1473120000"; d="scan'208";a="333889889"
Received: from rcdn-core-11.cisco.com ([173.37.93.147]) by alln-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 13 Oct 2016 18:12:30 +0000
Received: from XCH-RTP-003.cisco.com (xch-rtp-003.cisco.com [64.101.220.143]) by rcdn-core-11.cisco.com (8.14.5/8.14.5) with ESMTP id u9DICTaL023342 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 13 Oct 2016 18:12:30 GMT
Received: from xch-rtp-004.cisco.com (64.101.220.144) by XCH-RTP-003.cisco.com (64.101.220.143) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Thu, 13 Oct 2016 14:12:28 -0400
Received: from xch-rtp-004.cisco.com ([64.101.220.144]) by XCH-RTP-004.cisco.com ([64.101.220.144]) with mapi id 15.00.1210.000; Thu, 13 Oct 2016 14:12:28 -0400
From: "Cullen Jennings (fluffy)" <fluffy@cisco.com>
To: Magnus Westerlund <magnus.westerlund@ericsson.com>
Thread-Topic: [rtcweb] Mandating encryption of RTP header extensions for MID and RID SDES items
Thread-Index: AQHSJX1b6MtzUuyRZUS84VuzdzWIrQ==
Date: Thu, 13 Oct 2016 18:12:28 +0000
Message-ID: <998B7677-E967-45B0-8FE5-FD71930C380F@cisco.com>
References: <e536bad2-08b1-4f77-8c75-6bc3b639c398@ericsson.com>
In-Reply-To: <e536bad2-08b1-4f77-8c75-6bc3b639c398@ericsson.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-messagesentrepresentingtype: 1
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [10.24.127.141]
Content-Type: text/plain; charset="Windows-1252"
Content-ID: <02B355BC75A47343ABD71C78D82C06EA@emea.cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/rtcweb/l8PWoVaVsLX7wd_MX1gIuf4rJF0>
Cc: RTCWeb IETF <rtcweb@ietf.org>
Subject: Re: [rtcweb] Mandating encryption of RTP header extensions for MID and RID SDES items
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 13 Oct 2016 18:12:33 -0000

I think this is huge complexity that is not currently supported and not needed. How about we generate the RID such that the RID for the n'th m line is n. Or generate it as a random number. Do you see any problem with this?

I think this removes all the fingerprinting issues. I'm fine with advice that say how to generate the RID in a way that is privacy sensitive but I'm not a fan of making RID require support for RTP header encryption. 



> On Oct 6, 2016, at 7:55 AM, Magnus Westerlund <magnus.westerlund@ericsson.com> wrote:
> 
> WG,
> 
> After discussion in AVTEXT and MMUSIC regarding the inclusion of MID and RID as SDES items that this do exposes labels that previously only have existed in the signalling plane in the media plane. And especially in the RTP header extensions, where even if the media payload is encrypted the header extension is not encrypted.
> 
> The risk with this is primarily a privacy and fingerprinting risk. And the proposed mitgation is encryption of the RTP header extensions in both the bundle and avtext-rid documents.
> 
> This leads to the conclusion that for RTCWeb, we must consider to act on these recommendations and decide on which implementation and usage requirement the protection of these field should have.
> 
> My proposal is that implementation and use of RFC6904 encryption of the RTP header extensions are REQUIRED. For RTCP it is actually unclear if there is mandatory to use encrypted SRTCP. I think it should be required and that can be clarified in Section 5.5 of draft-ietf-rtcweb-security-arch.
> 
> 
> Opinions?
> 
> 
> Cheers
> 
> Magnus Westerlund
> 
> ----------------------------------------------------------------------
> Services, Media and Network features, Ericsson Research EAB/TXM
> ----------------------------------------------------------------------
> Ericsson AB                 | Phone  +46 10 7148287
> Färögatan 6                 | Mobile +46 73 0949079
> SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com
> ----------------------------------------------------------------------
> 
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb

v2.23.0 | Report a Bug | By Email