RE: [Sip] RE: Review of draft-ietf-sip-media-security-requirements-00
"Dan Wing" <dwing@cisco.com> Tue, 06 November 2007 15:56 UTC
Return-path: <sip-bounces@ietf.org>
Received: from [127.0.0.1] (helo=stiedprmman1.va.neustar.com) by megatron.ietf.org with esmtp (Exim 4.43) id 1IpQn8-0003FF-WD; Tue, 06 Nov 2007 10:56:39 -0500
Received: from sip by megatron.ietf.org with local (Exim 4.43) id 1IpQn6-0003C7-Ot for sip-confirm+ok@megatron.ietf.org; Tue, 06 Nov 2007 10:56:36 -0500
Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1IpQn6-0003Bw-FH for sip@ietf.org; Tue, 06 Nov 2007 10:56:36 -0500
Received: from sj-iport-2-in.cisco.com ([171.71.176.71] helo=sj-iport-2.cisco.com) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1IpQn2-0007iI-OR for sip@ietf.org; Tue, 06 Nov 2007 10:56:36 -0500
X-IronPort-AV: E=Sophos;i="4.21,378,1188802800"; d="scan'208";a="413793587"
Received: from sj-dkim-1.cisco.com ([171.71.179.21]) by sj-iport-2.cisco.com with ESMTP; 06 Nov 2007 07:56:32 -0800
Received: from sj-core-5.cisco.com (sj-core-5.cisco.com [171.71.177.238]) by sj-dkim-1.cisco.com (8.12.11/8.12.11) with ESMTP id lA6FuTb0021456; Tue, 6 Nov 2007 07:56:29 -0800
Received: from dwingwxp01 ([10.32.240.196]) by sj-core-5.cisco.com (8.12.10/8.12.6) with ESMTP id lA6FuSvW022787; Tue, 6 Nov 2007 15:56:29 GMT
From: Dan Wing <dwing@cisco.com>
To: 'Matt Lepinski' <mlepinski@bbn.com>
References: <47080AF8.9060303@bbn.com> <033c01c81fe7$cffe11e0$c4f0200a@cisco.com> <47308710.3040807@bbn.com>
Subject: RE: [Sip] RE: Review of draft-ietf-sip-media-security-requirements-00
Date: Tue, 06 Nov 2007 07:56:28 -0800
Message-ID: <04ee01c8208d$9825c9b0$c4f0200a@cisco.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Office Outlook 11
Thread-Index: AcggiVgO4nudR9nSTYq4sj629O3pyQAAg1IA
In-Reply-To: <47308710.3040807@bbn.com>
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3138
DKIM-Signature: v=0.5; a=rsa-sha256; q=dns/txt; l=5343; t=1194364589; x=1195228589; c=relaxed/simple; s=sjdkim1004; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=dwing@cisco.com; z=From:=20=22Dan=20Wing=22=20<dwing@cisco.com> |Subject:=20RE=3A=20[Sip]=20RE=3A=20Review=20of=20draft-ietf-sip-media-se curity-requirements-00 |Sender:=20; bh=TajF9fRfV5bunWo/zMWu/nfSQKbZbnwk2jLYDWix+5w=; b=H8jDo/WCGc5wZ3qa7QsihLJofXdYOe6cytiuGeWuX0JzYTlTL6BD+5L5EkzJdR8V3D5nw+3o J/Es+w+NuHLBqk8Oo6jkho5XDHnWMgctUf87d1EEcueZS7ROZUJrsysYWUnb8CWJnRDEoeDiuX b0QyWzj6/DgFxA5Bnl7KlHbsQ=;
Authentication-Results: sj-dkim-1; header.From=dwing@cisco.com; dkim=pass (s ig from cisco.com/sjdkim1004 verified; );
X-Spam-Score: -4.0 (----)
X-Scan-Signature: 2857c5c041d6c02d7181d602c22822c8
Cc: 'IETF SIP List' <sip@ietf.org>, 'Francois Audet' <audet@nortel.com>, "'Fries, Steffen'" <steffen.fries@siemens.com>
X-BeenThere: sip@ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Session Initiation Protocol <sip.ietf.org>
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=unsubscribe>
List-Post: <mailto:sip@ietf.org>
List-Help: <mailto:sip-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/sip>, <mailto:sip-request@ietf.org?subject=subscribe>
Errors-To: sip-bounces@ietf.org
> >For reference in this response, R23, R24, and R25 are: > > > > R23: The media security key management protocol SHOULD support > > recording of decrypted media. > > > > Media recording may be realized by an intermediate > > nodes. An > > example for those intermediate nodes are devices, > > which could > > be used in banking applications or for quality > > monitoring in > > call centers. Here, it must be ensured, that the media > > security is ensured by the intermediate nodes on the > > connections to the involved endpoints as originally > > negotiated. The endpoints need to be informed > > that there is > > an intermediate device and need to cooperate. A solution > > approach for this is described in > > [I-D.wing-sipping-srtp-key]. > > > >R23 refers only to recording of media. This is necessary in many > >business environments such as banks, stock brokers, catalog > >ordering call > >centers, and so on. This is a requirement for many businesses. It > >is not yet clear if draft-wing-sipping-srtp-key (or > >something like it) meets requirement R23. > > [MBL]: I understand the need for media recording (with the concent > and cooperation of the end-point) in many environments. However, it > is not clear to me that the media security key management protocol > is the right place to solve the media recording problem. That is, > regardless of which key management protocol I use between the > endpoints, each endpoint is going to end up with the SRTP key. Once > an endpoint who consents to media recording has the SRTP key, he can > use a separate mechanism to support media recording. My fear is that > integrating the media recording as part of the key management > protocol will add significant complexity to the key management > protocol to solve a problem that could easily be solved with a > separate protocol mechanism. I agree solving the problem within the key management protocol may not be the right place to solve it. However, the requirement to have it solved remains necessary. I don't know where else to capture this requirement, and am open to suggestions. I am co-author of draft-wing-sipping-srtp-key, which proposes one solution to meet requirement R23, using PUBLISH. > > R24: The media security key management protocol SHOULD NOT allow > > end users to determine whether their end-to-end > > interaction is > > subject to lawful interception. > > > >I agree R24 refers to lawful intercept. This is a requirement from > >other SDOs that need to provide lawful intercept with their > solutions. > > [MBL]: I understand that other SDOs have requirements for lawful > intercept. However, my understanding from reading RFC 2804 is > that the IETF does not include such requirements in its documents. That is also my understanding from RFC1984 and RFC2804. Yet, IETF has stated that it owns SIP standards. This leaves IETF in an interesting position which I, as an author, am unable to reconcile. > >Another email on R24 lawful intercept will be forthcoming shortly. > > > > R25: The media security key management protocol MUST work when > > there are intermediate nodes, terminating or > > processing media, > > between the end points." > > > >R25 reference to 'intermediate nodes' is to transcoders and > >SBCs which > >handle signaling and media traffic. It seems important that > >any keying > >mechanism work with such intermediate nodes, as those > >intermediate nodes > >are common on many SIP networks. > > [MBL]: I am confused by this requirement. Clearly, in many > environments SBCs (and other intermediate nodes) are used to > terminate and process media (e.g. to translate between two different > codecs). However, in any environment where an intermediate node is > processing the media, there is no way that end-to-end security of > media can be achieved. (Indeed, from a security point of the view, > the intermediate node who that processes the media stream is playing > the role of a man-in-the-middle.) Therefore, I'm not sure what R25 > is trying to require. Transcoding of media by a device outside of the endpoint. For example, a device might be on a bandwidth-constrained link but due to peering or interoperability requirements (such as those that are born out of SPEERMINT), it might be necessary for the initial Invite to offer both the highly-compressed codec and a 'typical' codec for interoperability (say, G.711). However, G.711 takes up too much bandwidth for the bandwidth-constrained link. Today, this is solvable with RTP, and being done with RTP. We also want this solvable with SRTP. It is well-known how to solve this with Security Descriptions [RFC4568]; what is important is to provide solutions for this with other key management protocols, such as DTLS-SRTP. I have added "transcoding and SBC" as examples to R25, but if there is additional wording that would be helpful, please let me know; perhaps we should add a section at the top (which we have done for some of the more complicated requirements)?? -d _______________________________________________ Sip mailing list https://www1.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use sip-implementors@cs.columbia.edu for questions on current sip Use sipping@ietf.org for new developments on the application of sip
- [Sip] Review of draft-ietf-sip-media-security-req… Richard Barnes
- RE: [Sip] Review of draft-ietf-sip-media-security… Fries, Steffen
- [Sip] RE: Review of draft-ietf-sip-media-security… Dan Wing
- Re: [Sip] RE: Review of draft-ietf-sip-media-secu… Matt Lepinski
- RE: [Sip] RE: Review of draft-ietf-sip-media-secu… Dan Wing
- [Sip] Re: Review of draft-ietf-sip-media-security… Richard Barnes
- [Sip] RE: Review of draft-ietf-sip-media-security… Dan Wing
- [Sip] Re: Review of draft-ietf-sip-media-security… Richard Barnes