IETF Logo Mail Archive

Re: [rtcweb] Last Call: <draft-ietf-rtcweb-data-channel-12.txt> (WebRTC Data Channels) to Proposed Standard

"Wyss, Felix" <Felix.Wyss@inin.com> Tue, 21 October 2014 20:59 UTC

Return-Path: <Felix.Wyss@inin.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 15F2F1A86E2 for <rtcweb@ietfa.amsl.com>; Tue, 21 Oct 2014 13:59:32 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yhGbjs_tRQQ4 for <rtcweb@ietfa.amsl.com>; Tue, 21 Oct 2014 13:59:22 -0700 (PDT)
Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1on0651.outbound.protection.outlook.com [IPv6:2a01:111:f400:fc10::651]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E7EB81A86E7 for <rtcweb@ietf.org>; Tue, 21 Oct 2014 13:59:08 -0700 (PDT)
Received: from CY1PR0501MB1580.namprd05.prod.outlook.com (25.161.161.154) by CY1PR0501MB1225.namprd05.prod.outlook.com (25.160.145.15) with Microsoft SMTP Server (TLS) id 15.0.1054.13; Tue, 21 Oct 2014 20:58:46 +0000
Received: from CY1PR0501MB1579.namprd05.prod.outlook.com (25.161.161.153) by CY1PR0501MB1580.namprd05.prod.outlook.com (25.161.161.154) with Microsoft SMTP Server (TLS) id 15.0.1054.13; Tue, 21 Oct 2014 20:58:44 +0000
Received: from CY1PR0501MB1579.namprd05.prod.outlook.com ([25.161.161.153]) by CY1PR0501MB1579.namprd05.prod.outlook.com ([25.161.161.153]) with mapi id 15.00.1054.004; Tue, 21 Oct 2014 20:58:44 +0000
From: "Wyss, Felix" <Felix.Wyss@inin.com>
To: tim panton <tim@phonefromhere.com>
Thread-Topic: [rtcweb] Last Call: <draft-ietf-rtcweb-data-channel-12.txt> (WebRTC Data Channels) to Proposed Standard
Thread-Index: AQHP5CPxgL7/P4TbxUqqTVTHzTRXYJwplZVAgAA1HQCAAKtdYIAADzmAgAAmfQCAAFWsAIAAG4cggAEmdgCAADW+gIAAINaAgAAXDgCAAA+BgIAAIqQAgABN64CAAPELcIABF92AgATZ34CAAJFUwIABmHeAgAP3gnCAAAy6AIAAzlPg
Date: Tue, 21 Oct 2014 20:58:44 +0000
Message-ID: <46b327b5be5a4fbcb508f664aea6cba2@CY1PR0501MB1579.namprd05.prod.outlook.com>
References: <20141010004836.12666.88765.idtracker@ietfa.amsl.com> <03a3bbbc282b4e6d88d587931b46b5f8@CY1PR0501MB1579.namprd05.prod.outlook.com> <57B40110-2F21-4893-B77C-54F46D18567F@lurchi.franken.de> <1DE35922-E890-40C2-87E9-C8C12235920E@phonefromhere.com> <E53B9B7E-37F0-495C-B1BA-DE0A48AC6D73@lurchi.franken.de> <abdfd3ef58dd40028e8d5e2248b5a995@CY1PR0501MB1579.namprd05.prod.outlook.com> <543A5570.7060208@alvestrand.no> <B53499C4-6B51-4E8E-87C2-C8E5C10DBC34@lurchi.franken.de> <543A9E11.2030605@alvestrand.no> <F5C54F5E-C301-4EC7-9536-E43EA3A16863@lurchi.franken.de> <543ABE69.8030104@alvestrand.no> <99078EA5-5FE7-431F-9C70-EEA882F4C3C6@lurchi.franken.de> <E1FE4C082A89A246A11D7F32A95A17828E5DA2AC@US70UWXCHMBA02.zam.alcatel-lucent.com> <71e2b21516cb496eb4d1ad2b26e53a29@CY1PR0501MB1579.namprd05.prod.outlook.com> <543CD1CD.3000001@alvestrand.no> <5440E38F.9070809@jesup.org> <c4ff2fdcd48f4388b67f3e1ffed8edfe@CY1PR0501MB1579.namprd05.prod.outlook.com> <5442B41D.6040307@jesup.org> <514191b6e7 764d30be7ea17d324d8739@CY1PR0501MB1579.namprd05.prod.outlook.com> <AE750B7B-A920-4ECF-8E35-F0E583CD65A9@phonefromhere.com>
In-Reply-To: <AE750B7B-A920-4ECF-8E35-F0E583CD65A9@phonefromhere.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [107.147.12.61]
x-microsoft-antispam: BCL:0;PCL:0;RULEID:;SRVR:CY1PR0501MB1580;UriScan:;
inin-custom-wld: WL-D
x-exchange-antispam-report-test: UriScan:;
x-forefront-prvs: 0371762FE7
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(189002)(199003)(51704005)(106356001)(106116001)(105586002)(95666004)(77096002)(21056001)(76482002)(66066001)(64706001)(99396003)(97736003)(31966008)(54356999)(99286002)(50986999)(107046002)(76176999)(120916001)(80022003)(230783001)(46102003)(86362001)(2656002)(20776003)(92566001)(4396001)(33646002)(74316001)(40100003)(110136001)(122556002)(93886004)(76576001)(85852003)(101416001)(87936001)(108616004)(85306004)(24736002); DIR:OUT; SFP:1101; SCL:1; SRVR:CY1PR0501MB1580; H:CY1PR0501MB1579.namprd05.prod.outlook.com; FPR:; MLV:sfv; PTR:InfoNoRecords; MX:3; A:1; LANG:en;
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Microsoft-Antispam: BCL:0;PCL:0;RULEID:;SRVR:CY1PR0501MB1225;
X-OriginatorOrg: inin.com
Archived-At: http://mailarchive.ietf.org/arch/msg/rtcweb/td00LXHBumjsJ2AwBWlu1b841wQ
Cc: Randell Jesup <randell-ietf@jesup.org>, "rtcweb@ietf.org" <rtcweb@ietf.org>
Subject: Re: [rtcweb] Last Call: <draft-ietf-rtcweb-data-channel-12.txt> (WebRTC Data Channels) to Proposed Standard
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb/>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 21 Oct 2014 20:59:32 -0000

> > Yes, that's the intended use-case: The middlebox is a trusted man-in-the-
> middle.  In order to record and/or perform analytics on the media flowing
> through it, it obviously has to decrypt it.  That can only be done by
> terminating DTLS (and decrypting/re-encrypting SRTP.)
> 
> If the middle box is trusted, only interested in media and known about by
> the application, then the application should create a separate direct data
> channel only DTLS connection between the endpoints that bypasses the
> middle box, with a small amount of extra application effort we remove the
> need for even more random extra SDP lines. Remember these are
> programmable endpoints - not dumb SIP devices with fixed behaviours.
> 
> Unless the middle box is performing 'analytics' on the DC data too, but that
> isn't the use-case you mentioned.

Having to use one of the endpoints to fork the media for recording and analytics is not acceptable for us.  Many of our customers require that all interactions are recorded exactly as they occur between the endpoints.  Often they are required to do that for legal or compliance reasons.  It's actually pretty certain that some of them will want the data streams recorded too.  

--Felix

v2.23.0 | Report a Bug | By Email