IETF Logo Mail Archive

Re: [rtcweb] Consensus call regarding media security

"Fabio Pietrosanti (naif)" <lists@infosecurity.ch> Wed, 28 March 2012 16:17 UTC

Return-Path: <lists@infosecurity.ch>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AFAC021F8818 for <rtcweb@ietfa.amsl.com>; Wed, 28 Mar 2012 09:17:44 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.691
X-Spam-Level:
X-Spam-Status: No, score=-1.691 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_ILLEGAL_IP=1.908, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wiezuRNHnsWM for <rtcweb@ietfa.amsl.com>; Wed, 28 Mar 2012 09:17:44 -0700 (PDT)
Received: from mail-wi0-f172.google.com (mail-wi0-f172.google.com [209.85.212.172]) by ietfa.amsl.com (Postfix) with ESMTP id CCA0121F8677 for <rtcweb@ietf.org>; Wed, 28 Mar 2012 09:17:36 -0700 (PDT)
Received: by wibhj6 with SMTP id hj6so5384897wib.13 for <rtcweb@ietf.org>; Wed, 28 Mar 2012 09:17:36 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=sender:message-id:date:from:user-agent:mime-version:to:subject :references:in-reply-to:x-enigmail-version:content-type :content-transfer-encoding:x-gm-message-state; bh=ChLb5uvmeLBNnd2GtUvvoM1f1nsAXxQuhXbCop2eCrU=; b=pcLqLR22wkcI7ix/GOBiAaRpVRBgEQGTYx7NGLhumudxELjil7/so59w7HLrJBYxZz ZP7ApcRoNWXWGka6vnX38PTUmiJOh02fVN1WvDeMAmAQYibfh5SDqqmghSr3TI+aWOZd qEigCp83xwtBxi3IT/OKiQwME4ZPLfRWXahtXU5Yco8tzkpJOwiLnvFGIhmWQPSQoXJ4 heVpkPWERJZN9Yvqg+ANXhdbtgbTG/Gh8dL4Ah1m9Memf3Y2THk90LO7SsgXHjLSJP3R 1O0VA5v/vdTpuxI8NbJWxulsJN2+ySOsKVteYSx2vlhn5xo5byFYL3w7Uh+ynNrDDlef 6kvA==
Received: by 10.180.104.230 with SMTP id gh6mr8338817wib.22.1332951456044; Wed, 28 Mar 2012 09:17:36 -0700 (PDT)
Received: from sonyvaiop13.local (host30-198-static.115-2-b.business.telecomitalia.it. [2.115.198.30]) by mx.google.com with ESMTPS id k6sm59002762wie.9.2012.03.28.09.17.32 (version=TLSv1/SSLv3 cipher=OTHER); Wed, 28 Mar 2012 09:17:34 -0700 (PDT)
Sender: Fabio Pietrosanti <naif@infosecurity.ch>
Message-ID: <4F733999.10707@infosecurity.ch>
Date: Wed, 28 Mar 2012 18:17:29 +0200
From: "Fabio Pietrosanti (naif)" <lists@infosecurity.ch>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:10.0.2) Gecko/20120216 Thunderbird/10.0.2
MIME-Version: 1.0
To: "<rtcweb@ietf.org>" <rtcweb@ietf.org>
References: <4F732531.2030208@ericsson.com> <CAD5OKxs6NHha2egNSTumEaHYJ0bB6qu_nfshmBM6dntx2n49HQ@mail.gmail.com> <4F733492.9040601@alcatel-lucent.com> <4F7337FE.3030007@digium.com>
In-Reply-To: <4F7337FE.3030007@digium.com>
X-Enigmail-Version: 1.4
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
X-Gm-Message-State: ALoCoQkE34aBX3js38MpXlWKpwqL53pl6z+b41hucKAriWziSVdK8J82+rS11fyhRVdBhZaPr7a2
Subject: Re: [rtcweb] Consensus call regarding media security
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 28 Mar 2012 16:17:44 -0000

On 3/28/12 6:10 PM, Kevin P. Fleming wrote:
> As an example, if the WG had chosen SDES-SRTP instead (even though it
> has its own set of faults), this concern would not be present, because
> that is already widely deployed, well understood and there are proven
> implementations available to choose from.
> 
> I'm not in any way lobbying against DTLS-SRTP being a MUST, though: I
> support that position.

That's true, if you consider that even the US National Security Agency
approved for Classified/Top-Secret use the SDES-SRTP schema
http://www.nsa.gov/ia/programs/mobility_program/index.shtml .

The reason, underlined by NSA for adoption, is that is a mature, secure
and widely diffused internet security protocol.

-- 
Fabio Pietrosanti
Founder, CTO

Tel: +39 02 911930893 + ext: 907
Mobile: +39 340 1801049
E-mail: fabio.pietrosanti@privatewave.com
Skype: fpietrosanti
Linkedin: http://linkedin.com/in/secret

PrivateWave Italia S.p.A.
Via Gaetano Giardino 1 - 20123 Milano - Italy
www.privatewave.com

v2.23.0 | Report a Bug | By Email