IETF Logo Mail Archive

Re: [sipcore] How to signal that a conversation is being recorded

Brian Rosen <br@brianrosen.net> Wed, 08 March 2023 16:31 UTC

Return-Path: <br@brianrosen.net>
X-Original-To: sipcore@ietfa.amsl.com
Delivered-To: sipcore@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8AB9AC15170B for <sipcore@ietfa.amsl.com>; Wed, 8 Mar 2023 08:31:53 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.085
X-Spam-Level:
X-Spam-Status: No, score=-2.085 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=brianrosen.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AIv2O3Og8bbq for <sipcore@ietfa.amsl.com>; Wed, 8 Mar 2023 08:31:49 -0800 (PST)
Received: from mail-il1-x130.google.com (mail-il1-x130.google.com [IPv6:2607:f8b0:4864:20::130]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 24221C151710 for <sipcore@ietf.org>; Wed, 8 Mar 2023 08:31:49 -0800 (PST)
Received: by mail-il1-x130.google.com with SMTP id i19so2192218ila.10 for <sipcore@ietf.org>; Wed, 08 Mar 2023 08:31:49 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=brianrosen.net; s=google; t=1678293108; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=ceo/tOy1q7HhF7PltXyXsQe1kvftY1qsqOkBeXLlgfk=; b=E8NpDS6R832vrGG4WF3X/rHELxwjvAMc9dYPzclRqH7782RWb4XCRQSO5cbXYP0+rt uDo8YIkX/zbO9ccjEL0FYP7M8t6qD8ht2RAigfQ+VfVkmPxwrfJaEeg2g6pf0+tLLJ0m gG3RgmCQKFWJTi2CDm28CcKGZI0kNY+mZunW0=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1678293108; h=to:references:message-id:content-transfer-encoding:cc:date :in-reply-to:from:subject:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=ceo/tOy1q7HhF7PltXyXsQe1kvftY1qsqOkBeXLlgfk=; b=IvPSlbDJMx3ZJf1PIKgO+qOaCBMDdBA211gzaikbgEU/CzO/yu8AHWqrWKrCoDmc1s JIDAOhyGs2ukAhJhmvackZfv6ITimp0zGH7ZZL2m+Swsnqrz1UJjbZsHpz2aQiwcmaM2 S5gJw6jdGiw5CGyVaVl5FNc4eRad8+oRIWI3IRNgTFriz8r/chJKm85KHJMi92vlx0zO YOdHnTj93qn1S5PCjnSE2kW4bCaCYEijbIYWyi4S+sNjfQGw9IARvQUIMoW0j5zXNJU1 coiYRAGHhWb3jVh+Kfs1XrPVm7AKb6dO4n5GZztQDEzxtllURhp5KOGrbt2i/GnVuIHC zByw==
X-Gm-Message-State: AO0yUKU3vaIlvWHkawNaOMNywSe9APVmqN7YIH8SR+WRaXHKdOIF8Kqy 8Dj3SiLTchJC3kOkaLFoLhO8ow==
X-Google-Smtp-Source: AK7set9Rp0nkjco8BV6xPVOxnIom6urfVjVntGgGZ9jQIywmpJ4rJ93ZbdxfdCKVqq1S4VRqIqWrpA==
X-Received: by 2002:a05:6e02:156d:b0:313:fb1b:2f86 with SMTP id k13-20020a056e02156d00b00313fb1b2f86mr12544462ilu.0.1678293108224; Wed, 08 Mar 2023 08:31:48 -0800 (PST)
Received: from smtpclient.apple (dynamic-acs-24-154-121-237.zoominternet.net. [24.154.121.237]) by smtp.gmail.com with ESMTPSA id k17-20020a02ccd1000000b003c2b76fcdf2sm4975391jaq.52.2023.03.08.08.31.47 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Wed, 08 Mar 2023 08:31:47 -0800 (PST)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3731.300.101.1.3\))
From: Brian Rosen <br@brianrosen.net>
In-Reply-To: <CO3PR08MB789608162E6B7DBBE687A25089B49@CO3PR08MB7896.namprd08.prod.outlook.com>
Date: Wed, 08 Mar 2023 11:31:36 -0500
Cc: Paul Kyzivat <paul.kyzivat@comcast.net>, "sipcore@ietf.org" <sipcore@ietf.org>
Content-Transfer-Encoding: quoted-printable
Message-Id: <888FE3B6-DE67-4F5E-9858-7D421B048B51@brianrosen.net>
References: <082A7485-5C3C-4356-88A8-6A333A07D60D@brianrosen.net> <25cd2876-3536-c494-f1fd-152ed0013751@comcast.net> <2F8CADCA-CC0B-49E8-9970-97667266CA7F@brianrosen.net> <3b203b28-d957-8e28-0ba0-671f659e623f@comcast.net> <CO3PR08MB789608162E6B7DBBE687A25089B49@CO3PR08MB7896.namprd08.prod.outlook.com>
To: "Ranjit Avasarala (Nokia)" <ranjit.avasarala@nokia.com>
X-Mailer: Apple Mail (2.3731.300.101.1.3)
Archived-At: <https://mailarchive.ietf.org/arch/msg/sipcore/N-O-GK6X307hd3fIpON7RSOsKaw>
Subject: Re: [sipcore] How to signal that a conversation is being recorded
X-BeenThere: sipcore@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: SIP Core Working Group <sipcore.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sipcore>, <mailto:sipcore-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sipcore/>
List-Post: <mailto:sipcore@ietf.org>
List-Help: <mailto:sipcore-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sipcore>, <mailto:sipcore-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 08 Mar 2023 16:31:53 -0000

Why do you think a header is needed in addition to the SDP indication?  This is, after all, a media issue.

Brian

> On Mar 8, 2023, at 11:25 AM, Ranjit Avasarala (Nokia) <ranjit.avasarala@nokia.com> wrote:
> 
> RFC 7866 details on procedures on how participants are notified that session is being recorded
> e.g. using SDP attribute:  a=record:on.
> 
> But can we also have a SIP based mechanism like a new header:  recording: on sent in SIP INVITE by the SRC.  
> 
> Regards
> Ranjit
> 
> -----Original Message-----
> From: sipcore <sipcore-bounces@ietf.org> On Behalf Of Paul Kyzivat
> Sent: Tuesday, March 7, 2023 3:32 PM
> To: Brian Rosen <br@brianrosen.net>
> Cc: sipcore@ietf.org
> Subject: Re: [sipcore] How to signal that a conversation is being recorded
> 
> 
> CAUTION: This is an external email. Please be very careful when clicking links or opening attachments. See http://nok.it/ext for additional information.
> 
> 
> 
> On 3/7/23 8:31 AM, Brian Rosen wrote:
>> The only legal constraints I know (and IANAL) is the requirement to tell the other party that you are recording.
> 
> Perhaps this is a case when input from a lawyer is necessary - to prevent doing something that seems technically fine but that will then be shot down by lawyers.
> 
>> I do understand the issue of a malicious actor in the middle of the path.  My use case wouldn’t have that problem, but the general case would. I suspect that we would note that in the security considerations and suggest that the recording entity insert the indications in the media if they are worried about that threat.  Real fixes would be messy: round-trip with some material only known to the endpoint?  Something like a digital signature with a cert known by the originator as the identity of the recipient?
> It won't be possible to prevent a bad actor with access to the recording mechanism from blocking the notification. (That has always been true, as long as there has been telephone recording.) So I guess the goal is to have clear rules for honest equipment/sw manufacturers. And to minimize the number of components that need to be cognizant of this.
> 
> Obviously, if the indication is sent in the signaling rather than the media it will only be displayed to the end user if the endpoint understands the feature. Not so for indication in the media.
> 
> I think that means that there must be a negotiation between the notifier and each notifyee. If it succeeds then the notification can be omitted from the media and the endpoints will be free to render in the optimal way for the device. If the negotiation fails then the indication needs to be in the media.
> 
> But needing to implement both will be unattractive to implementors.
> 
>        Thanks,
>        Paul
> 
>> 
>> Brian
>> 
>>> On Mar 6, 2023, at 10:05 PM, Paul Kyzivat <paul.kyzivat@comcast.net> wrote:
>>> 
>>> Brian,
>>> 
>>> Are there legal constraints here?
>>> 
>>> I presume that the party doing the recording has a legal obligation to ensure an indication makes it to the other participants that are being recorded. OTOH there may be others in the call that might wish to suppress the indication, to one or more of the participants.
>>> 
>>> If the indication is in the signaling, then everybody in the signaling path has an opportunity to meddle with the indication.
>>> 
>>> That is potentially also true if the indication is in the media. But it may at least be a lot harder to do.
>>> 
>>> I have no recommendation yet, just exploring.
>>> 
>>>     Thanks,
>>>     Paul
>>> 
>>> On 3/6/23 5:51 PM, Brian Rosen wrote:
>>>> Many are familiar with a requirement to insert an audible indication of a voice call being recorded, and in some circumstances, visible indication of a video recording.   SIPREC provides the recording mechanism, and it’s possible for the SIPREC client to insert the indications.  This doesn’t work very well in applications like emergency services, where recording often happens in multiple places.  We don’t want multiple media insertions.  The usual SIP way to do things like this is to pass the indication as data in signaling, and render the audio/video/whatever locally.
>>>> Suppose we wanted to do that: we would need to pass to all endpoints (think conference) the information that the session was being recorded.
>>>> Does that make sense?
>>>> What would you suggest we use to carry that indication?
>>>> Brian
>>>> _______________________________________________
>>>> sipcore mailing list
>>>> sipcore@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/sipcore
>>> 
>>> _______________________________________________
>>> sipcore mailing list
>>> sipcore@ietf.org
>>> https://www.ietf.org/mailman/listinfo/sipcore
>> 
> 
> _______________________________________________
> sipcore mailing list
> sipcore@ietf.org
> https://www.ietf.org/mailman/listinfo/sipcore

v2.46.0 | Report a Bug | By Email | System Status