IETF Logo Mail Archive

Re: [rtcweb] URI schemes for TURN and STUN

Keith Moore <moore@network-heretics.com> Thu, 03 November 2011 20:04 UTC

Return-Path: <moore@network-heretics.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5B3DB1F0C44; Thu, 3 Nov 2011 13:04:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.289
X-Spam-Level:
X-Spam-Status: No, score=-3.289 tagged_above=-999 required=5 tests=[AWL=0.310, BAYES_00=-2.599, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DZ9hqxfYr-1J; Thu, 3 Nov 2011 13:04:24 -0700 (PDT)
Received: from out2.smtp.messagingengine.com (out2.smtp.messagingengine.com [66.111.4.26]) by ietfa.amsl.com (Postfix) with ESMTP id 8B58E1F0C35; Thu, 3 Nov 2011 13:04:18 -0700 (PDT)
Received: from compute1.internal (compute1.nyi.mail.srv.osa [10.202.2.41]) by gateway1.nyi.mail.srv.osa (Postfix) with ESMTP id 287D320CB9; Thu, 3 Nov 2011 16:04:18 -0400 (EDT)
Received: from frontend1.nyi.mail.srv.osa ([10.202.2.160]) by compute1.internal (MEProxy); Thu, 03 Nov 2011 16:04:18 -0400
DKIM-Signature: v=1; a=rsa-sha1; c=relaxed/relaxed; d= messagingengine.com; h=subject:mime-version:content-type:from :in-reply-to:date:cc:content-transfer-encoding:message-id :references:to; s=smtpout; bh=Yuvge/hhlTYGTb3ZJHlhQc9wFoU=; b=iu VpANkHw+taNa1E+H8+XRx4UsrPtrr9mmQXo6ASGKVCkXD+LGpqfEsp++TQDKpPr6 lyZ1QxHOQ7dO8/njoxmt+7JOiwvP8roGFAknnfzfgqjiFpDbMm9PvuTUx6vw/fIt s6qe8qGQ63jyTzcxnC6hoTD9hyWNCJyxv9eeFWqLA=
X-Sasl-enc: +fm0sdn4wbjRC/p3pzC5SmorQpFZE9Sh5UB+lgUaUK5b 1320350657
Received: from rlmartin.hq.corp.pbs.org (unknown [149.48.225.2]) by mail.messagingengine.com (Postfix) with ESMTPA id B7C658E102B; Thu, 3 Nov 2011 16:04:17 -0400 (EDT)
Mime-Version: 1.0 (Apple Message framework v1084)
Content-Type: text/plain; charset="us-ascii"
From: Keith Moore <moore@network-heretics.com>
In-Reply-To: <CABcZeBPz8zjTX5NtZF4bLX0a5qyDN6gJYLthzqBZ7iCTS19BzQ@mail.gmail.com>
Date: Thu, 03 Nov 2011 16:04:17 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <EDDF9890-AE0E-4940-BCD2-632E4A760571@network-heretics.com>
References: <4EAC6BF4.2000604@alvestrand.no> <CALiegf=f4kFzyDLWK+Y5vbuCEJFXX590+VuZ4bbnHZnvX0CoBA@mail.gmail.com> <4EAC8AE0.3020307@acm.org> <4EACD558.1050003@alvestrand.no> <4EAE157F.5020901@it.aoyama.ac.jp> <4EAEB76B.9090304@acm.org> <8B0C4061-D362-4DFE-9677-7E64515A6E1C@network-heretics.com> <4EAF9391.5040209@it.aoyama.ac.jp> <5B7AE760-DBD1-46F9-89D9-E8F7CA56F111@network-heretics.com> <CABcZeBNDW=29ufn0FkObm1prqu6_PjX9CBJq8_UOdzom7pD5gg@mail.gmail.com> <ADADD239-10D3-49C1-BA4E-6380E99E9246@network-heretics.com> <CABcZeBPz8zjTX5NtZF4bLX0a5qyDN6gJYLthzqBZ7iCTS19BzQ@mail.gmail.com>
To: Eric Rescorla <ekr@rtfm.com>
X-Mailer: Apple Mail (2.1084)
X-Mailman-Approved-At: Fri, 04 Nov 2011 08:52:42 -0700
Cc: Keith Moore <moore@cs.utk.edu>, "rtcweb@ietf.org" <rtcweb@ietf.org>, Ned Freed <ned.freed@mrochek.com>, Behave WG <behave@ietf.org>
Subject: Re: [rtcweb] URI schemes for TURN and STUN
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 03 Nov 2011 20:04:25 -0000

On Nov 3, 2011, at 3:43 PM, Eric Rescorla wrote:

>> More generally, the right place to set the minimum security level is in the application, not in the name of the resource.  The reason you need https vs. http is that the two are really different protocols, and the client has to know a priori whether to send "GET..." or to negotiate the TLS layer after the TCP open completes.
> 
> I don't agree with this, however. The reason you need https: versus
> http: is that it's the server providing the reference and it's the
> only one that knows whether the resource is to be accessed over TLS or
> not.

Right, but it has to communicate that information to the client somehow, and the URI is really the only place to do it.  

> As a point of historical trivia, the initial use of this general
> convention wasn't https:// but rather shttp://, and the intent of the
> originator, Allan Schiffman, was to make it impossible for a
> non-Secure HTTP capable client to accidentally reference via HTTP a
> resource which should be secure.

I wasn't aware of the originator's name, but certainly agree with the intent.   

There's a huge problem with in-band negotiation of security if either (a) it's feasible for an attacker to get the client to downgrade to insufficient security, or (b) it's so much work for the client to negotiate good security that clients tend to be lazy and not bother to even try. 

One thing I find fairly annoying about URIs in that we'd really like to be able to attach attributes and/or constraints to a URI (like what the minimum security requirements should be) for the purpose of things like bookmarks, but we don't have a uniform URI syntax that lets us define such attributes and/or constraints while still being able to easily separate them from the name of the resource being referred to.

Keith

v2.23.0 | Report a Bug | By Email