Re: [rtcweb] Sebastien Cubaud's non-ICE mechanism (Re: Summary of ICE discussion)

<sebastien.cubaud@orange.com> Tue, 11 October 2011 11:10 UTC

Return-Path: <sebastien.cubaud@orange.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8972421F8D27 for <rtcweb@ietfa.amsl.com>; Tue, 11 Oct 2011 04:10:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.298
X-Spam-Level:
X-Spam-Status: No, score=-1.298 tagged_above=-999 required=5 tests=[AWL=0.951, BAYES_00=-2.599, HELO_EQ_FR=0.35]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T0owv1KaTyPZ for <rtcweb@ietfa.amsl.com>; Tue, 11 Oct 2011 04:10:18 -0700 (PDT)
Received: from r-mail2.rd.francetelecom.com (r-mail2.rd.francetelecom.com [217.108.152.42]) by ietfa.amsl.com (Postfix) with ESMTP id 82BF121F8D23 for <rtcweb@ietf.org>; Tue, 11 Oct 2011 04:10:18 -0700 (PDT)
Received: from r-mail2.rd.francetelecom.com (localhost.localdomain [127.0.0.1]) by localhost (Postfix) with SMTP id 66143FCC002; Tue, 11 Oct 2011 13:10:17 +0200 (CEST)
Received: from ftrdsmtp2.rd.francetelecom.fr (unknown [10.192.128.47]) by r-mail2.rd.francetelecom.com (Postfix) with ESMTP id 5AA69FCC001; Tue, 11 Oct 2011 13:10:17 +0200 (CEST)
Received: from ftrdmel0.rd.francetelecom.fr ([10.192.128.56]) by ftrdsmtp2.rd.francetelecom.fr with Microsoft SMTPSVC(6.0.3790.4675); Tue, 11 Oct 2011 13:10:17 +0200
X-MimeOLE: Produced By Microsoft Exchange V6.5
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Date: Tue, 11 Oct 2011 13:10:15 +0200
Message-ID: <E6AA070839B987489960B202AD80E18D01A17974@ftrdmel0.rd.francetelecom.fr>
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
Thread-Topic: [rtcweb] Sebastien Cubaud's non-ICE mechanism (Re: Summary of ICE discussion)
Thread-Index: AcyHw7KHZmQN1dUbTQqm+QcGaRqUxgAJRXwwAActoyA=
References: <4E8B192E.80809@ericsson.com><E6AA070839B987489960B202AD80E18D019D9119@ftrdmel0.rd.francetelecom.fr><4E935A8B.8020700@alvestrand.no><CABcZeBNd0wnAv3KHkzCa4g6tFmGJhADOQDCz-7G=DYwp1yOGzA@mail.gmail.com><4E9389C0.5050607@jesup.org> <4E93B43C.3060106@jdrosen.net>
From: sebastien.cubaud@orange.com
To: jdrosen@jdrosen.net, rtcweb@ietf.org
X-OriginalArrivalTime: 11 Oct 2011 11:10:17.0280 (UTC) FILETIME=[5B79EC00:01CC8806]
Subject: Re: [rtcweb] Sebastien Cubaud's non-ICE mechanism (Re: Summary of ICE discussion)
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Oct 2011 11:10:19 -0000

Hi, sorry for my previous message that I probably sent too rapidly: I have just realized that RFC 5576 couldn't be used to describe synchronization source from remote endpoints. So, even for SSRC, extended procedures would be required.. Too bad! (;
Cheers
Sebastien

-----Message d'origine-----
De : CUBAUD Sebastien RD-CORE-LAN 
Envoyé : mardi 11 octobre 2011 09:48
À : 'Jonathan Rosenberg'; rtcweb@ietf.org
Objet : RE: [rtcweb] Sebastien Cubaud's non-ICE mechanism (Re: Summary of ICE discussion)

Hi Jonathan, 

The use of the SSRC - prior to being accessible via JS for mux/demux purposes- could be an alternative to using the sequence number and/or the timestamp (as suggested by Randell). SIP endpoints interfacing with RTC-Web browsers would then only be required to implement RFC 5576 (which may be less costly than STUN implementation, the SHA-1 computation + CRC compute for the fingerprint)..
Cheers
Sebastien   

-----Message d'origine-----
De : rtcweb-bounces@ietf.org [mailto:rtcweb-bounces@ietf.org] De la part de Jonathan Rosenberg
Envoyé : mardi 11 octobre 2011 05:13
À : rtcweb@ietf.org
Objet : Re: [rtcweb] Sebastien Cubaud's non-ICE mechanism (Re: Summary of ICE discussion)

Security issues aside, the proposed solution does not work with existing 
SIP/RTP implementations. The main drawback of the ICE solution is that 
it won't work with deployed equipment. I see little benefit in 
specifying another solution which does not fix the main limitation we 
have with ICE.

-Jonathan R.

On 10/10/2011 8:11 PM, Randell Jesup wrote:
> On 10/10/2011 7:04 PM, Eric Rescorla wrote:
>> On Mon, Oct 10, 2011 at 1:50 PM, Harald
>> Alvestrand<harald@alvestrand.no> wrote:
>>> Changing the subject to keep threads separate....
>>>
>>> On 10/09/2011 12:00 PM, sebastien.cubaud@orange.com wrote:
>>>> Here are the steps I foresee before allowing the establishment of a
>>>> media
>>>> session:
>>>>
>>>> - Let's consider A (a RTC-Web compliant browser) connected to server
>>>> S and
>>>> wishing to share real-time media with destination B (potentially a SIP
>>>> endpoint or a browser)
>>>> - A& B learn via the signalling channel the triple @IP, transport proto
>>>> and associated listening port of the remote media
>>>> - A sends a few RTP packets to B (3 as in RFC 2833/4733 or more?).-
>>>> This
>>>> would allow the mechanism to resist against packet loss -. The
>>>> format of such
>>>> packets are to be discussed
>>>> - Assuming B receives these packets, it then sends via the signalling
>>>> channel an information from the media path unknown from S (i.e. not
>>>> accessible via
>>>> JS).
>>>> I propose to use the min of the sequence number of the RTP packets
>>>> received (which is random per RFC 3550)
>>>
>>> The sequence number is a 16-bit number, so there are 16 bits of
>>> randomness
>>> to play with here.
>>> An attack based on just returning a random number will succeed 1 out of
>>> 65.536 times; if any of the 3 packets' sequence numbers are
>>> acceptable, it
>>> will succeed 1 out of 21.845 times.
>
> If you use the sequence number and the timestamp, you have 48 bits of
> entropy...
>
>

-- 
Jonathan D. Rosenberg, Ph.D.                   SkypeID: jdrosen
Skype Chief Technology Strategist
jdrosen@skype.net                              http://www.skype.com
jdrosen@jdrosen.net                            http://www.jdrosen.net

_______________________________________________
rtcweb mailing list
rtcweb@ietf.org
https://www.ietf.org/mailman/listinfo/rtcweb