IETF Logo Mail Archive

Re: [sipcore] How to signal that a conversation is being recorded

Brian Rosen <br@brianrosen.net> Fri, 10 March 2023 14:58 UTC

Return-Path: <br@brianrosen.net>
X-Original-To: sipcore@ietfa.amsl.com
Delivered-To: sipcore@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 92B3EC0DC7D9 for <sipcore@ietfa.amsl.com>; Fri, 10 Mar 2023 06:58:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.084
X-Spam-Level:
X-Spam-Status: No, score=-2.084 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, T_SPF_PERMERROR=0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=brianrosen.net
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zNFo4wgfT8ha for <sipcore@ietfa.amsl.com>; Fri, 10 Mar 2023 06:58:04 -0800 (PST)
Received: from mail-il1-x134.google.com (mail-il1-x134.google.com [IPv6:2607:f8b0:4864:20::134]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D3EBBC169501 for <sipcore@ietf.org>; Fri, 10 Mar 2023 06:58:04 -0800 (PST)
Received: by mail-il1-x134.google.com with SMTP id w4so3084974ilv.0 for <sipcore@ietf.org>; Fri, 10 Mar 2023 06:58:04 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=brianrosen.net; s=google; t=1678460284; h=references:to:cc:in-reply-to:date:subject:mime-version:message-id :from:from:to:cc:subject:date:message-id:reply-to; bh=TFgLAj3NJOAxBlFdtVR8Sz/zcfdqFm3o7PrtaG+M3dU=; b=TOs5qhoOzRvBeWp+pl7tlNrMjSAekyVnn2UUW55xNiALECSb6tdCipoRVLvK0kE/oF zvYAGWCoe/IJ+FXZOxvnrlduT4q41jAsyz/WEGJpq0WefnJPSiEcSCNsNrp9dI51yqUH Pwc2UnHfKi3JpFx7Arp+U5zxG0SyRs/koPR1s=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; t=1678460284; h=references:to:cc:in-reply-to:date:subject:mime-version:message-id :from:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to; bh=TFgLAj3NJOAxBlFdtVR8Sz/zcfdqFm3o7PrtaG+M3dU=; b=Kc3omhfGk2dV79eQr6Iu1vbFKOFT6HGzoHMQVNO8Lzl3MsoL76eQvj4xhfE7TZtPrX xPmGsBFKxUhH+rbhlD0iaVNHwARbr6PJJzsqbrgmMPtZL1oF9sNJd0y76fV6uPe/Oirv +smnvhrmGU97+Gam/Y0n5cLNBIAyaxje8qB8t47NKL/V6BleFtQGDjSmwyOl9C0sJgcI /xqAj7e+2QbIAfBc26nL3YdrS+5LwW5N1FH+zUIXB/Jm/s2jZ/+oq+fJLvqFub167OnP Kg9aqPtp4KYIKDQubTUgbakJEms5Ab186DXvSrAW6prOZXvtYoBqFrpA4yUytlXdzixg eLtg==
X-Gm-Message-State: AO0yUKWCEFYYnD7VinJlvJaMQ5NJe731eTUB6W9HUxMYRsKKG+K0khrH emeDzIYCrpgpjQ/GWBkauzNZyg==
X-Google-Smtp-Source: AK7set+fvKmkcc1T1suIu66aWsbDWes4vf/o2ypOyiRDyjamuIxxIqJgDQrhWPSdS77lup2oU+xXqA==
X-Received: by 2002:a05:6e02:6c2:b0:317:94ad:a724 with SMTP id p2-20020a056e0206c200b0031794ada724mr4016472ils.2.1678460284049; Fri, 10 Mar 2023 06:58:04 -0800 (PST)
Received: from smtpclient.apple (dynamic-acs-24-154-121-237.zoominternet.net. [24.154.121.237]) by smtp.gmail.com with ESMTPSA id y10-20020a92090a000000b0031944d1ce5dsm39996ilg.58.2023.03.10.06.58.03 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Fri, 10 Mar 2023 06:58:03 -0800 (PST)
From: Brian Rosen <br@brianrosen.net>
Message-Id: <1462F6C2-EA78-4B90-9FD5-14B0B7F9BBE9@brianrosen.net>
Content-Type: multipart/alternative; boundary="Apple-Mail=_8914AFEB-2E46-4541-8F43-05B83234CC30"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3731.300.101.1.3\))
Date: Fri, 10 Mar 2023 09:57:51 -0500
In-Reply-To: <CAFXT-psb7Dt4iu8=F6KdBy72=d18hwm1+vJvcv95ucYxe2FV1w@mail.gmail.com>
Cc: Robert Sparks <rjsparks@nostrum.com>, sipcore@ietf.org
To: Ranjit Avasarala <ranjitkav12@gmail.com>
References: <082A7485-5C3C-4356-88A8-6A333A07D60D@brianrosen.net> <25cd2876-3536-c494-f1fd-152ed0013751@comcast.net> <2F8CADCA-CC0B-49E8-9970-97667266CA7F@brianrosen.net> <3b203b28-d957-8e28-0ba0-671f659e623f@comcast.net> <CO3PR08MB789608162E6B7DBBE687A25089B49@CO3PR08MB7896.namprd08.prod.outlook.com> <888FE3B6-DE67-4F5E-9858-7D421B048B51@brianrosen.net> <CO3PR08MB78964DE53F005F1BB16F98B889B49@CO3PR08MB7896.namprd08.prod.outlook.com> <6760d01a-aa1c-93a2-1cd6-d91b05a0dd7d@nostrum.com> <CAFXT-psb7Dt4iu8=F6KdBy72=d18hwm1+vJvcv95ucYxe2FV1w@mail.gmail.com>
X-Mailer: Apple Mail (2.3731.300.101.1.3)
Archived-At: <https://mailarchive.ietf.org/arch/msg/sipcore/Qy5TAb587veOleQl6ZO1C6vOq7M>
Subject: Re: [sipcore] How to signal that a conversation is being recorded
X-BeenThere: sipcore@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: SIP Core Working Group <sipcore.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sipcore>, <mailto:sipcore-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sipcore/>
List-Post: <mailto:sipcore@ietf.org>
List-Help: <mailto:sipcore-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sipcore>, <mailto:sipcore-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Mar 2023 14:58:09 -0000

If you are recording audio, then you probably want whatever indication that is rendered to the user in the audio stream, but if you are recording video, you probably want it in the video stream.  To do that locally, you need to know what is being recorded.

Brian


> On Mar 10, 2023, at 1:01 AM, Ranjit Avasarala <ranjitkav12@gmail.com> wrote:
> 
> Hi Robert
> what use case you can think of for making it stream specific like audio or video?
> 
> On Wed, Mar 8, 2023 at 11:15 AM Robert Sparks <rjsparks@nostrum.com <mailto:rjsparks@nostrum.com>> wrote:
>> I'm not following how that helps.
>> 
>> I suggest also that it would be good, if a mechanism is being built, to 
>> make it stream specific. (Recording audio vs video).
>> 
>> The part of the conversation that says bits need to be signaled in the 
>> SDP (including the ability to ensure the integrity of the SDP), and 
>> that, perhaps, notification needs to exist in media itself makes sense 
>> to me.
>> 
>> RjS
>> 
>> On 3/8/23 11:00 AM, Ranjit Avasarala (Nokia) wrote:
>> > By sending a SIP header like:  recording: on the SRC can avoid sending the whole SDP.
>> >
>> > Regards
>> > Ranjit
>> >
>> > -----Original Message-----
>> > From: Brian Rosen <br@brianrosen.net <mailto:br@brianrosen.net>>
>> > Sent: Wednesday, March 8, 2023 10:32 AM
>> > To: Ranjit Avasarala (Nokia) <ranjit.avasarala@nokia.com <mailto:ranjit.avasarala@nokia.com>>
>> > Cc: Paul Kyzivat <paul.kyzivat@comcast.net <mailto:paul.kyzivat@comcast.net>>; sipcore@ietf.org <mailto:sipcore@ietf.org>
>> > Subject: Re: [sipcore] How to signal that a conversation is being recorded
>> >
>> >
>> > CAUTION: This is an external email. Please be very careful when clicking links or opening attachments. See http://nok.it/ext for additional information.
>> >
>> >
>> >
>> > Why do you think a header is needed in addition to the SDP indication?  This is, after all, a media issue.
>> >
>> > Brian
>> >
>> >> On Mar 8, 2023, at 11:25 AM, Ranjit Avasarala (Nokia) <ranjit.avasarala@nokia.com <mailto:ranjit.avasarala@nokia.com>> wrote:
>> >>
>> >> RFC 7866 details on procedures on how participants are notified that
>> >> session is being recorded e.g. using SDP attribute:  a=record:on.
>> >>
>> >> But can we also have a SIP based mechanism like a new header:  recording: on sent in SIP INVITE by the SRC.
>> >>
>> >> Regards
>> >> Ranjit
>> >>
>> >> -----Original Message-----
>> >> From: sipcore <sipcore-bounces@ietf.org <mailto:sipcore-bounces@ietf.org>> On Behalf Of Paul Kyzivat
>> >> Sent: Tuesday, March 7, 2023 3:32 PM
>> >> To: Brian Rosen <br@brianrosen.net <mailto:br@brianrosen.net>>
>> >> Cc: sipcore@ietf.org <mailto:sipcore@ietf.org>
>> >> Subject: Re: [sipcore] How to signal that a conversation is being
>> >> recorded
>> >>
>> >>
>> >> CAUTION: This is an external email. Please be very careful when clicking links or opening attachments. See http://nok.it/ext for additional information.
>> >>
>> >>
>> >>
>> >> On 3/7/23 8:31 AM, Brian Rosen wrote:
>> >>> The only legal constraints I know (and IANAL) is the requirement to tell the other party that you are recording.
>> >> Perhaps this is a case when input from a lawyer is necessary - to prevent doing something that seems technically fine but that will then be shot down by lawyers.
>> >>
>> >>> I do understand the issue of a malicious actor in the middle of the path.  My use case wouldn’t have that problem, but the general case would. I suspect that we would note that in the security considerations and suggest that the recording entity insert the indications in the media if they are worried about that threat.  Real fixes would be messy: round-trip with some material only known to the endpoint?  Something like a digital signature with a cert known by the originator as the identity of the recipient?
>> >> It won't be possible to prevent a bad actor with access to the recording mechanism from blocking the notification. (That has always been true, as long as there has been telephone recording.) So I guess the goal is to have clear rules for honest equipment/sw manufacturers. And to minimize the number of components that need to be cognizant of this.
>> >>
>> >> Obviously, if the indication is sent in the signaling rather than the media it will only be displayed to the end user if the endpoint understands the feature. Not so for indication in the media.
>> >>
>> >> I think that means that there must be a negotiation between the notifier and each notifyee. If it succeeds then the notification can be omitted from the media and the endpoints will be free to render in the optimal way for the device. If the negotiation fails then the indication needs to be in the media.
>> >>
>> >> But needing to implement both will be unattractive to implementors.
>> >>
>> >>         Thanks,
>> >>         Paul
>> >>
>> >>> Brian
>> >>>
>> >>>> On Mar 6, 2023, at 10:05 PM, Paul Kyzivat <paul.kyzivat@comcast.net <mailto:paul.kyzivat@comcast.net>> wrote:
>> >>>>
>> >>>> Brian,
>> >>>>
>> >>>> Are there legal constraints here?
>> >>>>
>> >>>> I presume that the party doing the recording has a legal obligation to ensure an indication makes it to the other participants that are being recorded. OTOH there may be others in the call that might wish to suppress the indication, to one or more of the participants.
>> >>>>
>> >>>> If the indication is in the signaling, then everybody in the signaling path has an opportunity to meddle with the indication.
>> >>>>
>> >>>> That is potentially also true if the indication is in the media. But it may at least be a lot harder to do.
>> >>>>
>> >>>> I have no recommendation yet, just exploring.
>> >>>>
>> >>>>      Thanks,
>> >>>>      Paul
>> >>>>
>> >>>> On 3/6/23 5:51 PM, Brian Rosen wrote:
>> >>>>> Many are familiar with a requirement to insert an audible indication of a voice call being recorded, and in some circumstances, visible indication of a video recording.   SIPREC provides the recording mechanism, and it’s possible for the SIPREC client to insert the indications.  This doesn’t work very well in applications like emergency services, where recording often happens in multiple places.  We don’t want multiple media insertions.  The usual SIP way to do things like this is to pass the indication as data in signaling, and render the audio/video/whatever locally.
>> >>>>> Suppose we wanted to do that: we would need to pass to all endpoints (think conference) the information that the session was being recorded.
>> >>>>> Does that make sense?
>> >>>>> What would you suggest we use to carry that indication?
>> >>>>> Brian
>> >>>>> _______________________________________________
>> >>>>> sipcore mailing list
>> >>>>> sipcore@ietf.org <mailto:sipcore@ietf.org>
>> >>>>> https://www.ietf.org/mailman/listinfo/sipcore
>> >>>> _______________________________________________
>> >>>> sipcore mailing list
>> >>>> sipcore@ietf.org <mailto:sipcore@ietf.org>
>> >>>> https://www.ietf.org/mailman/listinfo/sipcore
>> >> _______________________________________________
>> >> sipcore mailing list
>> >> sipcore@ietf.org <mailto:sipcore@ietf.org>
>> >> https://www.ietf.org/mailman/listinfo/sipcore
>> 
>> _______________________________________________
>> sipcore mailing list
>> sipcore@ietf.org <mailto:sipcore@ietf.org>
>> https://www.ietf.org/mailman/listinfo/sipcore
> _______________________________________________
> sipcore mailing list
> sipcore@ietf.org
> https://www.ietf.org/mailman/listinfo/sipcore

v2.43.4 | Report a Bug | By Email | System Status