IETF Logo Mail Archive

Re: [siprec] Stephen Farrell's Discuss on draft-ietf-siprec-metadata-20: (with DISCUSS and COMMENT)

Stephen Farrell <stephen.farrell@cs.tcd.ie> Fri, 04 March 2016 14:16 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: siprec@ietfa.amsl.com
Delivered-To: siprec@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3D7DD1A01FA; Fri, 4 Mar 2016 06:16:04 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.302
X-Spam-Level:
X-Spam-Status: No, score=-4.302 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x-alXFTPbb9R; Fri, 4 Mar 2016 06:16:01 -0800 (PST)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 706941A01F6; Fri, 4 Mar 2016 06:16:01 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 19260BE55; Fri, 4 Mar 2016 14:16:00 +0000 (GMT)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id IHeXYUEnFjTw; Fri, 4 Mar 2016 14:15:59 +0000 (GMT)
Received: from [134.226.36.93] (bilbo.dsg.cs.tcd.ie [134.226.36.93]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 6ED97BE4D; Fri, 4 Mar 2016 14:15:59 +0000 (GMT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; s=mail; t=1457100959; bh=qFnDhk0qRVfrhTWWgGW0e56Inx9Q8vxr+ZfzfnX/Q2Y=; h=Subject:To:References:Cc:From:Date:In-Reply-To:From; b=SXbdcYJZA5CC0XK1es/MoU+Rh7BGovUrmDgVbWSpowzNdQgNypnaMMawZ2D3IFRHQ /7P20wRzp2uHep10ZNy5UxywFHd+GsCEg2UdMDntMgbJI+f/Ve8Wt+/W0/6n7+EEB9 Yn5t3ML5xlm8IJEeYzRqYZfRwXkVXdYWnV9OW/+s=
To: "Ram Mohan R (rmohanr)" <rmohanr@cisco.com>, The IESG <iesg@ietf.org>
References: <20160302110853.23213.23639.idtracker@ietfa.amsl.com> <D2FD2694.5326B%rmohanr@cisco.com>
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Openpgp: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url=
Message-ID: <56D9989F.1010103@cs.tcd.ie>
Date: Fri, 04 Mar 2016 14:15:59 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:38.0) Gecko/20100101 Thunderbird/38.5.1
MIME-Version: 1.0
In-Reply-To: <D2FD2694.5326B%rmohanr@cisco.com>
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="------------ms030100060301020101010407"
Archived-At: <http://mailarchive.ietf.org/arch/msg/siprec/n6EEaK9iMVFj3GQxXhEgkqKZXpw>
Cc: "draft-ietf-siprec-metadata@ietf.org" <draft-ietf-siprec-metadata@ietf.org>, "siprec@ietf.org" <siprec@ietf.org>, "siprec-chairs@ietf.org" <siprec-chairs@ietf.org>
Subject: Re: [siprec] Stephen Farrell's Discuss on draft-ietf-siprec-metadata-20: (with DISCUSS and COMMENT)
X-BeenThere: siprec@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: SIP Recording Working Group Discussion List <siprec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/siprec>, <mailto:siprec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/siprec/>
List-Post: <mailto:siprec@ietf.org>
List-Help: <mailto:siprec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/siprec>, <mailto:siprec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Mar 2016 14:16:04 -0000

Hiya,

On 02/03/16 17:51, Ram Mohan R (rmohanr) wrote:
> Hi Stephen,
> 
> See inline
> 
> -----Original Message-----
> From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
> Date: Wednesday, 2 March 2016 at 4:38 PM
> To: The IESG <iesg@ietf.org>
> Cc: "draft-ietf-siprec-metadata@ietf.org"
> <draft-ietf-siprec-metadata@ietf.org>, Brian Rosen <br@brianrosen.net>,
> "siprec-chairs@ietf.org" <siprec-chairs@ietf.org>, Brian Rosen
> <br@brianrosen.net>, "siprec@ietf.org" <siprec@ietf.org>
> Subject: Stephen Farrell's Discuss on draft-ietf-siprec-metadata-20: (with
> DISCUSS and COMMENT)
> 
>> Stephen Farrell has entered the following ballot position for
>> draft-ietf-siprec-metadata-20: Discuss
>>
>> When responding, please keep the subject line intact and reply to all
>> email addresses included in the To and CC lines. (Feel free to cut this
>> introductory paragraph, however.)
>>
>>
>> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
>> for more information about IESG DISCUSS and COMMENT positions.
>>
>>
>> The document, along with other ballot positions, can be found here:
>> https://datatracker.ietf.org/doc/draft-ietf-siprec-metadata/
>>
>>
>>
>> ----------------------------------------------------------------------
>> DISCUSS:
>> ----------------------------------------------------------------------
>>
>>
>>
>> (1) In section 10 you have a MUST for integrity and confid,
>> which is good, but then RECOMMEND S/MIME, which is, I think,
>> mythical. Wouldn't it be better to reflect reality
>> (hop-by-hop TLS) and then say what actual security
>> considerations arise, e.g. who might be on the path and how
>> can they (mis)behave?
> 
> Yes. This needs some changes. After the discussions with SecDir we thought
> it would be good to refer to Security Consideration section of protocol
> draft (section 12 general and 12.1 of
> https://tools.ietf.org/html/draft-ietf-siprec-protocol-18#page-38) 12.1
> covers the TLS the mutual Authentication and also talk about who else can
> be in the path (para 2).
> 
> Since the metadata is always going to be carried as a body in the
> protocol, all the considerations there are equally applicable here.
> 
> With this the proposed text for Security consideration in this draft would
> be:
> 
> NEW:
> The procedures mentioned in security consideration section of
> [I-D.ietf-siprec-protocol] MUST be implemented by SRC and SRS
> for mutual authentication.
> Some implementations may have the SRC choose parts of metadata that
>      can be sent to the SRS.  In other cases, SRCs may send metadata that
>      is not appropriate for the SRS to record.  Which metadata is actually
>      recorded by the SRS must be carefully considered to balance privacy
>      concerns with usability.  Implementations MUST control what metadata
>      is recorded, and MUST NOT save metadata sent by the SRC that does not
>      conform to the recording policy of the SRS.  Metadata in storage
>      needs to be provided with a level of security that is comparable to
>      that of the recording session.
> 
> 
> Would this be better ? Or else we will have to replicate most of the text
> from Protocol to here again.

Yes, that's good, and no I'd not replicate text from the protocol
spec, your reference with a MUST above is fine. (I re-read the
security considerations of the protocol spec, and I think it covers
things well enough.)

Thanks,
S.

> 
> 
> Ram
>>
>> (2) 6.10: Don't you need to say to use UUID version 4 with
>> random numbers and to not use MAC addresses?  IOW, refer to
>> RFC4122, Section 4.4 for how to generate UUIDs.
>>
>> Note that issues related to both of the above were part
>> of the discussion that ensued from the secdir review. [1]
>>
>>   [1] https://www.ietf.org/mail-archive/web/secdir/current/msg06370.html
>>
>>
>> ----------------------------------------------------------------------
>> COMMENT:
>> ----------------------------------------------------------------------
>>
>>
>>
>> - section 4, last para: How could an SRC know this and hence
>> what it's safe to omit?
>>
>> - 6.9: I would have thought that more precision about
>> fractional seconds support would be useful here, or else, to
>> just say that you're limiting to single-second granularity.
>> Wouldn't doing one or the other be better? Otherwise you
>> might get different s/w ordering events in different orders
>> unexpectedly.
>>
>>
>

v2.29.0 | Report a Bug | By Email | System Status