Re: [Rum] Magnus Westerlund's Block on charter-ietf-rum-00-02: (with BLOCK)
Magnus Westerlund <magnus.westerlund@ericsson.com> Thu, 11 April 2019 07:50 UTC
Return-Path: <magnus.westerlund@ericsson.com>
X-Original-To: rum@ietfa.amsl.com
Delivered-To: rum@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9CA0C120289; Thu, 11 Apr 2019 00:50:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uY65xzYS3Mhu; Thu, 11 Apr 2019 00:50:36 -0700 (PDT)
Received: from EUR04-DB3-obe.outbound.protection.outlook.com (mail-eopbgr60081.outbound.protection.outlook.com [40.107.6.81]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 25C9712017D; Thu, 11 Apr 2019 00:50:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=8sQiYMTzgrf6fcNG+wtC6toDJQVjw77XAYeURpAiua4=; b=eODJYAZoIUSbzQC7S7iZDKN1jXYfgL3KKTlcSNPaWd1MBZAyGmpjdsX12x6tFH0mmT141brfNrpVDHiOd5bXrKZ+PJSGa1rfB1nuOQVOq0ZAIsidmAJPKSNo7f6IZ09NjWrKsMh6kXOeJhmdSAwp3wBN3JRJXsv4YSEs3P5hJgU=
Received: from HE1PR0701MB2522.eurprd07.prod.outlook.com (10.168.128.149) by HE1PR0701MB2649.eurprd07.prod.outlook.com (10.168.186.151) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1813.3; Thu, 11 Apr 2019 07:50:33 +0000
Received: from HE1PR0701MB2522.eurprd07.prod.outlook.com ([fe80::107c:5f27:2ef:8505]) by HE1PR0701MB2522.eurprd07.prod.outlook.com ([fe80::107c:5f27:2ef:8505%5]) with mapi id 15.20.1792.009; Thu, 11 Apr 2019 07:50:33 +0000
From: Magnus Westerlund <magnus.westerlund@ericsson.com>
To: Adam Roach <adam@nostrum.com>, Brian Rosen <br@brianrosen.net>
CC: "rum@ietf.org" <rum@ietf.org>, The IESG <iesg@ietf.org>, "rum-chairs@ietf.org" <rum-chairs@ietf.org>
Thread-Topic: Magnus Westerlund's Block on charter-ietf-rum-00-02: (with BLOCK)
Thread-Index: AQHU76L/FbYWsJjh80C5nutsW/HBXQ==
Date: Thu, 11 Apr 2019 07:50:33 +0000
Message-ID: <HE1PR0701MB2522F1BA8A319CAAFD888DD1952F0@HE1PR0701MB2522.eurprd07.prod.outlook.com>
References: <155490359622.22876.4380616673767598799.idtracker@ietfa.amsl.com> <BA3E3783-314B-4CCF-B920-3C70C2C9BDBC@brianrosen.net> <5cbae522-4692-d293-e6f8-a69698269f4a@nostrum.com>
Accept-Language: sv-SE, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=magnus.westerlund@ericsson.com;
x-originating-ip: [192.176.1.82]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 2c97ef27-35a1-4271-79dc-08d6be526065
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600139)(711020)(4605104)(2017052603328)(7193020); SRVR:HE1PR0701MB2649;
x-ms-traffictypediagnostic: HE1PR0701MB2649:
x-ms-exchange-purlcount: 1
x-microsoft-antispam-prvs: <HE1PR0701MB264931424CE0A0DFCE4634DA952F0@HE1PR0701MB2649.eurprd07.prod.outlook.com>
x-forefront-prvs: 00046D390F
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(396003)(366004)(346002)(376002)(39860400002)(136003)(189003)(199004)(53936002)(33656002)(97736004)(8936002)(6246003)(105586002)(6116002)(3846002)(68736007)(316002)(44832011)(478600001)(6306002)(5660300002)(52536014)(14454004)(66066001)(55016002)(106356001)(2906002)(486006)(9686003)(966005)(81166006)(446003)(71200400001)(305945005)(476003)(256004)(71190400001)(7736002)(74316002)(7696005)(86362001)(81156014)(54906003)(110136005)(8676002)(6506007)(14444005)(4326008)(26005)(25786009)(99286004)(53546011)(186003)(102836004)(76176011)(229853002)(6436002); DIR:OUT; SFP:1101; SCL:1; SRVR:HE1PR0701MB2649; H:HE1PR0701MB2522.eurprd07.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:1;
received-spf: None (protection.outlook.com: ericsson.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: A/Cio0t7WsRGrN5MGEBrPXtz3PEhGZfJ7r4tEwC/jHjrDDfzG3w5Nzveo++xYYy1aSaCwUNfVB+zqEfsqBoU7kSAI+CxJ39jyvZejAqQK4ujBxOWvacSo83SVEwNm6V/JqWjFjn6ow6KlRD3XU+WF2nX/WGtsLvP1mt7EVP64xUfIHTjmq0mpk9BxnTzpFo7OIe+90AO1pXnTIExrAWHSVJNj7mMtUCdQQe+/hfyLBrpQo4+pezCECPjQW7qXUe4PUZ2JSkT1tiw0g9YsFI0itzsZG4RzSWNJvYHdFVGyrdC2B6BHUe+NHTV92LRTEJoL0uiSrzusWttdwrkw8dxV+rwEkaQHb7Z4bMMfr0W3OVgrV6TQq91/+0VyGImEWenuo4xdZBt3jcJ5vD8fnTg2KYiCAFs/AgH7zTO5WDldi0=
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-OriginatorOrg: ericsson.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 2c97ef27-35a1-4271-79dc-08d6be526065
X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Apr 2019 07:50:33.2301 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0701MB2649
Archived-At: <https://mailarchive.ietf.org/arch/msg/rum/uVDpVbq9TNsyFTdyQ9HwedUeUnU>
Subject: Re: [Rum] Magnus Westerlund's Block on charter-ietf-rum-00-02: (with BLOCK)
X-BeenThere: rum@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Relay User Machine <rum.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rum>, <mailto:rum-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/rum/>
List-Post: <mailto:rum@ietf.org>
List-Help: <mailto:rum-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rum>, <mailto:rum-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Apr 2019 07:50:39 -0000
Thanks, Have cleared. Cheers Magnus On 2019-04-10 19:27, Adam Roach wrote: > I've added: "The profile will require best-practice security mechanisms > for SIP-based end devices." > > /a > > On 4/10/19 9:31 AM, Brian Rosen wrote: >> The profile will most certainly include all the best practice security mechanisms for SIP. The charter discusses using the most up to date media plane recommendations, which are the WebRTC recommendations, including DTLS-SRTP, and we will require TLS in the signaling plane. As these are UAs, and not proxy servers, the usual security mechanisms for registration will be required. We certainly don’t plan to innovate other than exploring the issues raised of explicit man-in-the-middle, but we will require all implementations to maintain current best practice on security mechanisms. We’ll craft some language to include in the charter. >> >> Maybe: The profile will specify current best practice security mechanisms for SIP based end devices as mandatory to implement >> >> >> >>> On Apr 10, 2019, at 9:39 AM, Magnus Westerlund via Datatracker <noreply@ietf.org> wrote: >>> >>> Magnus Westerlund has entered the following ballot position for >>> charter-ietf-rum-00-02: Block >>> >>> When responding, please keep the subject line intact and reply to all >>> email addresses included in the To and CC lines. (Feel free to cut this >>> introductory paragraph, however.) >>> >>> >>> >>> The document, along with other ballot positions, can be found here: >>> https://datatracker.ietf.org/doc/charter-ietf-rum/ >>> >>> >>> >>> ---------------------------------------------------------------------- >>> BLOCK: >>> ---------------------------------------------------------------------- >>> >>> Why are the no discussion of security mechanism being part of the profile? >>> Considering that the profile includes the media plane, I assume at least >>> mandatory to implement media protection security mechansism and what ciphers >>> should be defined. Then is the of the key-management and its tie into the >>> establishment signalling. I understand that one want to establisha a border >>> for what is in scope and out of scope. But as I read the charter now it is >>> completely missing. >>> >>> All that I find are this part: >>> The working group will consider issues related to authentication of the >>> parties involved in the video relay call. No protocol changes are anticipated >>> by this work. >>> >>> This sounds like actually discusssing the security model. It is possible to be >>> more explicit of how one handle the fact that one have three parties, where >>> only one part talks to both. >>> >>> >>> >>> > -- Magnus Westerlund ---------------------------------------------------------------------- Network Architecture & Protocols, Ericsson Research ---------------------------------------------------------------------- Ericsson AB | Phone +46 10 7148287 Torshamnsgatan 23 | Mobile +46 73 0949079 SE-164 80 Stockholm, Sweden | mailto: magnus.westerlund@ericsson.com ----------------------------------------------------------------------
- [Rum] Magnus Westerlund's Block on charter-ietf-r… Magnus Westerlund via Datatracker
- Re: [Rum] Magnus Westerlund's Block on charter-ie… Brian Rosen
- Re: [Rum] Magnus Westerlund's Block on charter-ie… Adam Roach
- Re: [Rum] Magnus Westerlund's Block on charter-ie… Magnus Westerlund
- Re: [Rum] Magnus Westerlund's Block on charter-ie… Olle E. Johansson
- Re: [Rum] Magnus Westerlund's Block on charter-ie… Adam Roach