Re: [Sframe] [dispatch] SFRame Next Steps (was SFrame proposed WG charter)

Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com> Wed, 05 August 2020 20:15 UTC

Return-Path: <sergio.garcia.murillo@gmail.com>
X-Original-To: sframe@ietfa.amsl.com
Delivered-To: sframe@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A2B493A0F3B; Wed, 5 Aug 2020 13:15:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.047
X-Spam-Level:
X-Spam-Status: No, score=-3.047 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, NICE_REPLY_A=-0.949, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BGRczUfIL0GE; Wed, 5 Aug 2020 13:15:29 -0700 (PDT)
Received: from mail-wm1-x334.google.com (mail-wm1-x334.google.com [IPv6:2a00:1450:4864:20::334]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1C4C63A0F33; Wed, 5 Aug 2020 13:15:29 -0700 (PDT)
Received: by mail-wm1-x334.google.com with SMTP id k8so7579401wma.2; Wed, 05 Aug 2020 13:15:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding:content-language; bh=A8ysl9rSXkzRt/J4/FBm1XQAthQLIeQPn67EenAEKbU=; b=sh8D3o3UY5baMCtcnQZnw39hK3urbb6EiwmCjBAtbFZwLBiKcDeig+7eFWfExyJCMr ZKXqv/9TKHPIhFm21U1zTWmbzyca7NhuUckdnRcYKWkWzic7lcQSGjvCab5/T6Aqg3Yv PKRz1C+agtKC65Ym9CTu93rNki92ixqsEdEbHzb5i8YtOhuxb9/YpvjTORVCqUdfnb+R FTaUt0oP1MIZTSNpNQlpEdyrXuectvabtTgpMY1awli5UKj4WIBtJNZcWpfZ5jB6sAH0 hn8NhOPtdn/yQk0R790mC7G0s7fbaHxz5xxENQx4GgWzcAJ1whavuF5kDdkn09fP0uXX gXFw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding :content-language; bh=A8ysl9rSXkzRt/J4/FBm1XQAthQLIeQPn67EenAEKbU=; b=HbwhPMOPGGDDcmtuQSHZNUhVLb8kC1cD5IuF0thB63oWW/0i8rT+4sY9J6wFiS1rQk A1vaTDYaug65AIbv+jetmb4hkvOrpE/T1+vg9yXBLcUtB83jAjFTzEehx7uJ5qbQIqsX 1rD6Jk5CG5f4/B/fxoXhvMODeHU85cLs/+Z/dpLzqtHxpAgaNXF+OtJgINqdEoPG/ODP 8jAYVH1f2Kygvx2xFXMgTd08jI3oWB3R/yVWCpz9/cT9yaPt8dJEXRk2pBOejzQ7ogvP fWAf4sU9Qjam8AuRHVOUIzceW5LBsK6z9QoIrGhW06kdQsYe5YWKtEAfBvxiHU64cmCC kZDw==
X-Gm-Message-State: AOAM532hOfTj8kdKZsgaWJf9eioPxfLGfrplhQ545mL+7x3i5Wa8tNax GeVU/X7/kTmERdnPdkqL+afCbWggN4c=
X-Google-Smtp-Source: ABdhPJw+BxxCtUCQ2bZVWKI/GRZeptasjKM/Q99KhUZ32dQ9mXgrjEzC3962QDjgjvki9DVXEHzaSw==
X-Received: by 2002:a7b:c84f:: with SMTP id c15mr5056738wml.133.1596658527356; Wed, 05 Aug 2020 13:15:27 -0700 (PDT)
Received: from [192.168.1.36] (118.red-79-151-172.dynamicip.rima-tde.net. [79.151.172.118]) by smtp.googlemail.com with ESMTPSA id b77sm3209722wmb.3.2020.08.05.13.15.25 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Wed, 05 Aug 2020 13:15:26 -0700 (PDT)
To: Magnus Westerlund <magnus.westerlund=40ericsson.com@dmarc.ietf.org>, "ben@nostrum.com" <ben@nostrum.com>, "rlb@ipv.sx" <rlb@ipv.sx>
Cc: "emadomara=40google.com@dmarc.ietf.org" <emadomara=40google.com@dmarc.ietf.org>, "dispatch@ietf.org" <dispatch@ietf.org>, "sframe@ietf.org" <sframe@ietf.org>
References: <CAHo7dC91bvRHiYuRT63uJ=HeuFU9L7XXqTcG+za5xi_BbQ0G2w@mail.gmail.com> <E2072219-1B6E-4444-A39C-287842783DBF@nostrum.com> <CAL02cgT13rEnvaB9TFMci=N8OqO35qKHthPHhMCvAccZWhCu-Q@mail.gmail.com> <ca0a7472a86cf53c78779f6153a80dc096acc4e8.camel@ericsson.com>
From: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>
Message-ID: <69181ed1-d72a-99de-8b4d-9e10276ced91@gmail.com>
Date: Wed, 5 Aug 2020 22:15:24 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.11.0
MIME-Version: 1.0
In-Reply-To: <ca0a7472a86cf53c78779f6153a80dc096acc4e8.camel@ericsson.com>
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 8bit
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/sframe/wFkexX6iKdFBbGIIf739N1Hdl5g>
Subject: Re: [Sframe] [dispatch] SFRame Next Steps (was SFrame proposed WG charter)
X-BeenThere: sframe@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: <sframe.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sframe>, <mailto:sframe-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sframe/>
List-Post: <mailto:sframe@ietf.org>
List-Help: <mailto:sframe-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sframe>, <mailto:sframe-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Aug 2020 20:15:31 -0000

But shouldn't the "delayed media" attack still be transport agnostic? I 
mean, this can happen on QUIC and WebRTC SFUs.

Anyway, I agree that while SFrame is transport agnostic, the chapter 
should not ignore the interactions with webrtc/quic and we must ensure 
that we provide a complete working solution regardless of the transport. 
If we identify that any further working items are required for a 
particular transport, we should at liaise with the appropriate working 
group for providing a solution.

Best regards
Sergio

On 05/08/2020 16:34, Magnus Westerlund wrote:
> Hi,
>
> I want to make one high level comments on the proposed charter for SFRAME.
>
> The charter attempts to be transport agnostic. However, we know there are
> certain use cases this solution needs to support. And I think one of the hardest
> from a security perspective is the multi-party centralised one with one or more
> SFUs. Based on the significant discussion we had in PERC around threat model, I
> think this charter do need to have in its description work to explicitly develop
> the threat model as well describe which aspects of the threat model that one can
> address. For example I think the security threat of media delay which is an
> interesting variant of "replay" attack that exist for real-time media
> conversation where there are logic that selects what to forward.
>
> Cheers
>
> Magnus Westerlund
>
>
> On Fri, 2020-07-31 at 13:15 -0400, Richard Barnes wrote:
>> The link Emad posted should allow for comments, so please feel free to comment
>> directly on the doc.
>>
>> Or you can reply with comments here and we'll get them incorporated.
>>
>> On Thu, Jul 30, 2020 at 5:59 PM Ben Campbell <ben@nostrum.com> wrote:
>>> Hi everyone,
>>>
>>> We had a good discussion on SFrame in the dispatch meeting, and a lot of
>>> interest in progressing it. The chairs would love it if we can get some
>>> discussion of the proposed charter (below) now, while it’s still fresh in
>>> people’s minds. If we don’t see feedback to the contrary within a couple of
>>> weeks (let’s call that 14 Aug), we will hand it over to the ART ADs.
>>>
>>> Thanks!
>>>
>>> Ben.
>>>
>>>> On Jul 27, 2020, at 12:34 PM, Emad Omara <
>>>> emadomara=40google.com@dmarc.ietf.org> wrote:
>>>>
>>>> Hi dispatch,
>>>>
>>>> Following up on the discussion we had this morning in IETF 108 dispatch
>>>> session about SFrame, it seems there is enough interest to form a focused
>>>> WG for this work.
>>>>
>>>> Richard Barnes proposed this charter for the WG. Please take a look and
>>>> feel free to comment on the doc directly and propose other changes as
>>>> well.
>>>>
>>>> Thanks
>>>> Emad
>>>> _______________________________________________
>>>> dispatch mailing list
>>>> dispatch@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/dispatch
>>> _______________________________________________
>>> dispatch mailing list
>>> dispatch@ietf.org
>>> https://www.ietf.org/mailman/listinfo/dispatch
>> _______________________________________________
>> dispatch mailing list
>> dispatch@ietf.org
>> https://www.ietf.org/mailman/listinfo/dispatch