Re: [rtcweb] Text proposal for CNAME in draft-ietf-rtcweb-rtp-usage
Magnus Westerlund <magnus.westerlund@ericsson.com> Wed, 16 April 2014 12:54 UTC
Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D8DC81A0159 for <rtcweb@ietfa.amsl.com>; Wed, 16 Apr 2014 05:54:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.346
X-Spam-Level:
X-Spam-Status: No, score=-1.346 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FH_RELAY_NODNS=1.451, HELO_MISMATCH_NET=0.611, RCVD_IN_DNSWL_MED=-2.3, RDNS_NONE=0.793, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OMbNrL-QFUst for <rtcweb@ietfa.amsl.com>; Wed, 16 Apr 2014 05:54:33 -0700 (PDT)
Received: from sessmg23.ericsson.net (unknown [193.180.251.45]) by ietfa.amsl.com (Postfix) with ESMTP id 5C0741A0156 for <rtcweb@ietf.org>; Wed, 16 Apr 2014 05:54:32 -0700 (PDT)
X-AuditID: c1b4fb2d-f79fa6d000007cbe-d8-534e7d84c9db
Received: from ESESSHC005.ericsson.se (Unknown_Domain [153.88.253.124]) by sessmg23.ericsson.net (Symantec Mail Security) with SMTP id 5B.3C.31934.48D7E435; Wed, 16 Apr 2014 14:54:28 +0200 (CEST)
Received: from [127.0.0.1] (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.35) with Microsoft SMTP Server id 14.3.174.1; Wed, 16 Apr 2014 14:54:27 +0200
Message-ID: <534E7D83.3010608@ericsson.com>
Date: Wed, 16 Apr 2014 14:54:27 +0200
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; rv:24.0) Gecko/20100101 Thunderbird/24.4.0
MIME-Version: 1.0
To: Martin Thomson <martin.thomson@gmail.com>
References: <533E76AC.7030003@ericsson.com> <CABkgnnVD09V80OkXY=ZKicYhjBMR8XZMFYCXrMmHMkVWE7mwVw@mail.gmail.com> <005B30AC-F891-481E-A25A-D3705713F1D3@csperkins.org> <CABkgnnUSpeL8fv=7gRmM+QSYvFgd16r_2cP6J066DL+dkydrCg@mail.gmail.com> <534284B7.7010103@ericsson.com> <534D21C2.20300@ericsson.com> <CABkgnnWC9SCFbRqvnEkciqfHtwv6j48cLP0JeE4DfhH6cqToSw@mail.gmail.com>
In-Reply-To: <CABkgnnWC9SCFbRqvnEkciqfHtwv6j48cLP0JeE4DfhH6cqToSw@mail.gmail.com>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 8bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFtrFLMWRmVeSWpSXmKPExsUyM+JvjW5LrV+wwamV0hbLX55gtLh25h+j xdp/7ewOzB7T7t9n89g56y67x5IlP5kCmKO4bFJSczLLUov07RK4Ms42fmQr2G9acXtDE1MD 42StLkYODgkBE4mJUyu6GDmBTDGJC/fWs3UxcnEICRxllDh18BEzhLOcUWJjcwcLSAOvgLbE qp0eIA0sAqoSF1pXsoHYbAIWEjd/NILZogLBEkvnLGYBsXkFBCVOznwCZosI6EosOvuAHcRm FvCSeL5zByOILSzgI3Hr8j9WiF1vmSQetJ4CK+IUCJQ4vH4JE8Sh4hI9jUEQvZoSrdt/Q82R l2jeOpsZxBYCOq2hqYN1AqPQLCSrZyFpmYWkZQEj8ypG0eLU4uLcdCNjvdSizOTi4vw8vbzU kk2MwMA+uOW37g7G1a8dDzEKcDAq8fCyqfkFC7EmlhVX5h5ilOZgURLnbbvrHSwkkJ5Ykpqd mlqQWhRfVJqTWnyIkYmDU6qBMcv9hdFx7tw/obbzt95dnn3o0JkfUzg1/gRbx1ltn7C/8Pla +zfflxzz6JWaZh2XKR66W/lTiueNnZWzZ2ax7RPwrLqfdaq/55FzJquwi8fFtFMWjJt+PTLM TAkxmJV14YnBlQ/MGSHTffKU66T9Bb7py30RshQUkWKo/f3hSOTCwvNmpy6uUWIpzkg01GIu Kk4EALv3FE1NAgAA
Archived-At: http://mailarchive.ietf.org/arch/msg/rtcweb/sdQUUEjRzhtWISRxuIabyU9o69I
Cc: "rtcweb@ietf.org" <rtcweb@ietf.org>, Colin Perkins <csp@csperkins.org>
Subject: Re: [rtcweb] Text proposal for CNAME in draft-ietf-rtcweb-rtp-usage
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Apr 2014 12:54:37 -0000
On 2014-04-15 19:33, Martin Thomson wrote: > The text looks fine, with one comment. > > On 15 April 2014 05:10, Magnus Westerlund > <magnus.westerlund@ericsson.com> wrote: >> Note: It is important that the same CNAME is not used in different >> communication session contexts or origins, as that could enable >> tracking of a user and its device usage of different services. >> See Section 4.4.1 of Security Considerations for WebRTC >> [I-D.ietf-rtcweb-security] for further discussion. > > I'd rather not have this hidden in a "Note", and I'd prefer if it were > more concrete. I think that we need to say something like: > > A different CNAME MUST be used for different RTCPeerConnection > instances. Having two communication sessions with the same CNAME > could enable tracking of a user or device across different services > (see Section 4.4.1 of [security] for details). A web application MAY > override the CNAME that is selected using the process in [RFC7022] to > allow for synchronization of disjoint sessions; [[this doesn't result > in a tracking issue, since the creation of matching CNAMEs depends on > existing tracking]]. > > The first part is already said in Section 4.9 text: The RTP specification [RFC3550] includes guidelines for choosing a unique RTP CNAME, but these are not sufficient in the presence of NAT devices. In addition, long-term persistent identifiers can be problematic from a privacy viewpoint (Section 13). Accordingly, a WebRTC endpoint MUST generate a new, unique, short-term persistent RTCP CNAME for each RTCPeerConnection, following [RFC7022]. Thus, I don't want in two places to use Normative RFC 2119 text for the same purpose. For the second half, I have to ask what the scope of this overriding is intended to be. Is it that within the same origin, a web application creating multiple PeerConnections can request them to use the same (by browser) selected random CNAME value? Or is it that the web application can set the CNAME to be used at PeerConnection creation time. The first I am fine with, as it appear to have very little downsides, and can really help application that tries to do advanced things where multiple PCs are used across multiple endpoints and middleboxes. Thus, I would propose to modify your proposal to result in a change in Section 4.9: Old: The RTP specification [RFC3550] includes guidelines for choosing a unique RTP CNAME, but these are not sufficient in the presence of NAT devices. In addition, long-term persistent identifiers can be problematic from a privacy viewpoint (Section 13). Accordingly, a WebRTC endpoint MUST generate a new, unique, short-term persistent RTCP CNAME for each RTCPeerConnection, following [RFC7022]. NEW: The RTP specification [RFC3550] includes guidelines for choosing a unique RTP CNAME, but these are not sufficient in the presence of NAT devices. In addition, long-term persistent identifiers can be problematic from a privacy viewpoint (Section 13). Accordingly, a WebRTC endpoint MUST generate a new, unique, short-term persistent RTCP CNAME for each RTCPeerConnection, following [RFC7022], with a single exception; if explicitly requested at creation an RTCPeerConnection MAY use the same CNAME as as an existing RTCPeerConnection within their common same-origin context. Section 11: OLD: The same MediaStreamTrack can also be included in multiple MediaStreams, thus multiple sets of MediaStreams can implicitly need to use the same synchronisation base. To ensure that this works in all cases, and don't forces a end-point to change synchronisation base and CNAME in the middle of a ongoing delivery of any packet streams, which would cause media disruption; all MediaStreamTracks and their associated SSRCs originating from the same end-point needs to be sent using the same CNAME within one RTCPeerConnection. This is motivating the strong recommendation in Section 4.9 to only use a single CNAME. Note: It is important that the same CNAME is not used in different communication session contexts or origins, as that could enable tracking of a user and its device usage of different services. See Section 4.4.1 of Security Considerations for WebRTC [I-D.ietf-rtcweb-security] for further discussion. The requirement on using the same CNAME for all SSRCs that originates from the same end-point, does not require middleboxes that forwards traffic from multiple end-points to only use a single CNAME. NEW: The same MediaStreamTrack can also be included in multiple MediaStreams, thus multiple sets of MediaStreams can implicitly need to use the same synchronisation base. To ensure that this works in all cases, and don't forces a end-point to change synchronisation base and CNAME in the middle of a ongoing delivery of any packet streams, which would cause media disruption; all MediaStreamTracks and their associated SSRCs originating from the same end-point needs to be sent using the same CNAME within one RTCPeerConnection. This is motivating the strong recommendation in Section 4.9 to only use a single CNAME. The requirement on using the same CNAME for all SSRCs that originates from the same end-point, does not require middleboxes that forwards traffic from multiple end-points to only use a single CNAME. Different CNAMEs are normally required to be used for different RTCPeerConnection instances, as specified in Section 4.9. Having two communication sessions with the same CNAME could enable tracking of a user or device across different services (see Section 4.4.1 of [I-D.ietf-rtcweb-security] for details). A web application can request that the CNAMEs used in different RTCPeerConnection within a same-orign context to be the same, this allow for synchronization of the endpoint's RTP packet streams across the different RTCPeerConnections. Note: this doesn't result in a tracking issue, since the creation of matching CNAMEs depends on existing tracking. Is this better/acceptable? Cheers Magnus Westerlund ---------------------------------------------------------------------- Services, Media and Network features, Ericsson Research EAB/TXM ---------------------------------------------------------------------- Ericsson AB | Phone +46 10 7148287 Färögatan 6 | Mobile +46 73 0949079 SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com ----------------------------------------------------------------------
- [rtcweb] Text proposal for CNAME in draft-ietf-rt… Magnus Westerlund
- Re: [rtcweb] Text proposal for CNAME in draft-iet… Martin Thomson
- Re: [rtcweb] Text proposal for CNAME in draft-iet… Colin Perkins
- Re: [rtcweb] Text proposal for CNAME in draft-iet… Martin Thomson
- Re: [rtcweb] Text proposal for CNAME in draft-iet… Magnus Westerlund
- Re: [rtcweb] Text proposal for CNAME in draft-iet… Magnus Westerlund
- Re: [rtcweb] Text proposal for CNAME in draft-iet… Martin Thomson
- Re: [rtcweb] Text proposal for CNAME in draft-iet… Magnus Westerlund
- Re: [rtcweb] Text proposal for CNAME in draft-iet… Martin Thomson
- Re: [rtcweb] Text proposal for CNAME in draft-iet… Magnus Westerlund
- Re: [rtcweb] Text proposal for CNAME in draft-iet… Martin Thomson