RE: [Sipping] SIP, SRTP and MIKEY
"Fredrik Lindholm (EAB)" <Fredrik.Lindholm@era.ericsson.se> Mon, 03 February 2003 12:53 UTC
Received: from www1.ietf.org (ietf.org [132.151.1.19] (may be forged)) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA06686 for <sipping-archive@odin.ietf.org>; Mon, 3 Feb 2003 07:53:55 -0500 (EST)
Received: (from mailnull@localhost) by www1.ietf.org (8.11.6/8.11.6) id h13Cwro19169 for sipping-archive@odin.ietf.org; Mon, 3 Feb 2003 07:58:53 -0500
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h13CwrJ19166 for <sipping-web-archive@optimus.ietf.org>; Mon, 3 Feb 2003 07:58:53 -0500
Received: from www1.ietf.org (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id HAA06681 for <sipping-web-archive@ietf.org>; Mon, 3 Feb 2003 07:53:24 -0500 (EST)
Received: from www1.ietf.org (localhost.localdomain [127.0.0.1]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h13Cw8J19124; Mon, 3 Feb 2003 07:58:08 -0500
Received: from ietf.org (odin.ietf.org [132.151.1.176]) by www1.ietf.org (8.11.6/8.11.6) with ESMTP id h139utJ06766 for <sipping@optimus.ietf.org>; Mon, 3 Feb 2003 04:56:55 -0500
Received: from albatross.wise.edt.ericsson.se (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id EAA01672 for <sipping@ietf.org>; Mon, 3 Feb 2003 04:51:28 -0500 (EST)
Received: from esealnt610.al.sw.ericsson.se (esealnt610.al.sw.ericsson.se [153.88.254.69]) by albatross.wise.edt.ericsson.se (8.12.1/8.12.1/WIREfire-1.4) with ESMTP id h139t4KV006483; Mon, 3 Feb 2003 10:55:04 +0100 (MET)
Received: by esealnt610.al.sw.ericsson.se with Internet Mail Service (5.5.2655.55) id <DY5S5NH2>; Mon, 3 Feb 2003 10:55:04 +0100
Message-ID: <1F55F6582266314A85A55F6241509B670575B17F@Esealnt863.al.sw.ericsson.se>
From: "Fredrik Lindholm (EAB)" <Fredrik.Lindholm@era.ericsson.se>
To: 'Steffen Fries' <steffen.fries@siemens.com>
Cc: "'sipping@ietf.org'" <sipping@ietf.org>, "Elisabetta Carrara (EAB)" <Elisabetta.Carrara@era.ericsson.se>
Subject: RE: [Sipping] SIP, SRTP and MIKEY
Date: Mon, 03 Feb 2003 10:51:53 +0100
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2655.55)
Content-Type: text/plain; charset="ISO-8859-1"
Sender: sipping-admin@ietf.org
Errors-To: sipping-admin@ietf.org
X-BeenThere: sipping@ietf.org
X-Mailman-Version: 2.0.12
Precedence: bulk
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/sipping>, <mailto:sipping-request@ietf.org?subject=unsubscribe>
List-Id: SIPPING Working Group (applications of SIP) <sipping.ietf.org>
List-Post: <mailto:sipping@ietf.org>
List-Help: <mailto:sipping-request@ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/sipping>, <mailto:sipping-request@ietf.org?subject=subscribe>
Hi Steffen, I'll guess Elisabetta's mail got lost when she tried to answer you the last time (please also cc: AVT and/or MSEC/MMUSIC if you have questions regarding SRTP and/or MIKEY). Best, Fredrik -----Original Message----- From: Elisabetta Carrara (EAB) Sent: den 17 januari 2003 16:41 To: 'Steffen Fries'; sip@ietf.org Cc: Fredrik Lindholm (EAB) Subject: RE: SRTP and MIKEY usage in SIP Hi Steffen the public-key based methods are most suitable for client-to-client communications. The pre-shared could be for ex a good choice for client(s)-to-server communications. So, for SIP the public-key based may be more suitable, generally speaking. Cheers, /E > -----Original Message----- > From: Steffen Fries [mailto:steffen.fries@siemens.com] > Sent: den 17 januari 2003 16:20 > To: sip@ietf.org > Cc: Elisabetta.Carrara@era.ericsson.se > Subject: SRTP and MIKEY usage in SIP > > > Hi, > > I'm not quite sure, which working group fits best for this > question, thus I'm starting with the SIP WG ;-) > > When SIP and SRTP are used in conjunction, an appropriate > key management is necessary for SRTP. Within the MSEC WG > MIKEY has been defined, which is thought to be used (also) > for SRTP. > > MIKEY and an related draft (draft-ietf-msec-MIKEY-DHHMAC- > 01.txt) offer 4 different key management methods based on: > - pre-shared secrets > - public key encryption > - Diffie Hellman protected with signatures > - Diffie Hellman protected with pre-shared secrets > > When MIKEY and SRTP are to be used in a SIP environment, > what would be a suitable choice out of the four options? > > I'm not sure if the pre-shared secret pased methods are > suitable, since this would assume, that all users who want to > communicate need to exchange a shared secret before. Well, this > could be done by puting a shared secret in the SIP message and > securing this by S/MIME, but then MIKEY would be protected by > symmetric methods, although asymmetric technology was used to > secure the shared secret transport, namely S/MIME. One could > also use the certificates and private keys to secure MIKEY > right from the beginning. > > There might be scenarios where the symmetric case is > appropriate, but I'm not sure if this is a rather general case. > > Is MIKEY generally considered for key management in SIP or will > this rather be done using draft-baugher-mmusic-sdpmediasec- > 00.txt secured by S/MIME? > > The usage of MIKEY and SRTP is especially interesting in > conjunction with other multimedia protocols like H.323. Voice > encryption and associated key management could be performed > across the different signaling protocols. > > Was there already a discussion related to this question, which > I may be missed? > > Regards > Steffen > _______________________________________________ Sipping mailing list https://www1.ietf.org/mailman/listinfo/sipping This list is for NEW development of the application of SIP Use sip-implementors@cs.columbia.edu for questions on current sip Use sip@ietf.org for new developments of core SIP
- [Sipping] SIP, SRTP and MIKEY Steffen Fries
- RE: [Sipping] SIP, SRTP and MIKEY Fredrik Lindholm (EAB)