IETF Logo Mail Archive

Re: [tram] Alissa Cooper's Discuss on draft-ietf-tram-stun-origin-05: (with DISCUSS)

Alan Johnston <alan.b.johnston@gmail.com> Thu, 14 May 2015 16:08 UTC

Return-Path: <alan.b.johnston@gmail.com>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BCEFC1A879F; Thu, 14 May 2015 09:08:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id h9PI8PxrteTE; Thu, 14 May 2015 09:08:48 -0700 (PDT)
Received: from mail-vn0-x233.google.com (mail-vn0-x233.google.com [IPv6:2607:f8b0:400c:c0f::233]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0C3A81A8797; Thu, 14 May 2015 09:08:48 -0700 (PDT)
Received: by vnbf190 with SMTP id f190so5493429vnb.10; Thu, 14 May 2015 09:08:47 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=cs6+FAkwUvc+p36z8wzWnXQdaDpJvWSPIxmCqTmTnus=; b=VuiI29msoUnsERJ/dFXqbwPjPJQ7WU+IqnpKQv4LG7KPbmaRki0u6MdLmog95lWaxW daka6p0+tNC7vftw6h1WqcBxGHzJOOunEJlvhUhqxfGu5bjo6CFZAC/lCtsvUnz7xslo eC9ybFEjOkFj1u58y7nEzpeNuymAnYTckrwqXJOBJsNyDEdKhc7wd1bsukKhLtiiDMvp IdqMvojiZeDqqtIpd8Xc/xnDIfrnz563lOiCrhfRohJawHM3L3/3xzwWfoCoToHjY0kT WILLGBmnftJ6CEzbvk7KLssFAg7yJGFuU9XPLtqXBzBUG9YAnkRLJgZKpqRzqX0QmphZ RyqA==
MIME-Version: 1.0
X-Received: by 10.52.240.137 with SMTP id wa9mr4419313vdc.97.1431619727146; Thu, 14 May 2015 09:08:47 -0700 (PDT)
Received: by 10.52.106.100 with HTTP; Thu, 14 May 2015 09:08:47 -0700 (PDT)
In-Reply-To: <CAKKJt-cBB-Cekj5e4cC8PUk=1KZKRNm8pn2pBdg4tqd4MRsaZw@mail.gmail.com>
References: <20150511233012.17046.42319.idtracker@ietfa.amsl.com> <93BEDDC39A54294B9E78C7860516FA47673B781F@AZ-US1EXMB06.global.avaya.com> <13E02B6B-0D89-4AD3-8B69-06426A26732E@cooperw.in> <CAKKJt-cBB-Cekj5e4cC8PUk=1KZKRNm8pn2pBdg4tqd4MRsaZw@mail.gmail.com>
Date: Thu, 14 May 2015 11:08:47 -0500
Message-ID: <CAKhHsXFg_QgiJXOXjUJiGZgWMedOVUuZFsJf7wZK_ftYdwEFEg@mail.gmail.com>
From: Alan Johnston <alan.b.johnston@gmail.com>
To: Spencer Dawkins at IETF <spencerdawkins.ietf@gmail.com>
Content-Type: multipart/alternative; boundary="20cf30780dae4a461a05160cf1aa"
Archived-At: <http://mailarchive.ietf.org/arch/msg/tram/Cc1Wipx6LQtNvZSNzouDuvltR5E>
Cc: "tram-chairs@ietf.org" <tram-chairs@ietf.org>, "tram@ietf.org" <tram@ietf.org>
Subject: Re: [tram] Alissa Cooper's Discuss on draft-ietf-tram-stun-origin-05: (with DISCUSS)
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 14 May 2015 16:08:50 -0000

Thanks, Spencer.  I think this is a very good path forward. I will join
next week's call.

- Alan -

On Thu, May 14, 2015 at 10:55 AM, Spencer Dawkins at IETF <
spencerdawkins.ietf@gmail.com> wrote:

> Dear TRAMsters,
>
> Thanks to everyone who has helped with IESG evaluation for this draft so
> far.
>
> We had a nice conversation on today's formal telechat about this document,
> and I summarized the state of play as
>
> --- BEGIN
>
> Barry's Discuss has been resolved
>
> Ben's Discuss has been resolved
>
> Benoit forwarded the OPSDIR review that hadn't gotten where it needed to
> go, and it will be handled
>
> The Gen-ART review will be handled
>
> Stephen's Discuss had a few parts
>
> - what "analytics" are we talking about here? I think the answer was "for
> network operation and debugging". This was also in Alissa's Discuss, but
> she was OK with adding text to explain that. Origin was intended to be the
> equivalent of Host in HTTP, and the analytic impact is no worse than one IP
> address per realm, which is what's used today.
>
> - this also touched on "MUST NOT send Origin if it's privacy-sensitive,
> but Stephen didn't think that was the right answer
>
> - Stephen also asked why Origin and third-party-auth were both needed. The
> answer was that SIP would require a lot of changes to use third-party-auth.
>
> Alissa's Discuss had a few parts, and Stephen included a couple of
> additional questions in her ballot thread.
>
> - what kinds of things needed to be logged, and what the privacy
> implications were
>
> - whether unauthenticated requests could be twiddled with. The answer is
> that they can be, so you should require authentication if you care.
>
> - Stephen included a question about unique usernames across realms
>
> - Stephen included a question about a client with a username in more than
> one realm  playing games with which username it submits to avoid charging.
> I thought the answer was that anyone charging would be doing it off either
> signaling or media and not off STUN, but Simon corrected me that charging
> for operators who only provide TURN servers would be in scope, so it's
> still an open question. This was also in Stephen's Discuss thread, on
> "lying",
>
> - Stephen included a question about user-memorable usernames being
> long-lived, and tied to an identity. The answer was that this is not true
> for RTCWeb, but was true for SIP.
>
> --- END
>
> After chatting on the call, here's what I think needs to happen.
>
> There are relatively minor comments and questions, most of which have been
> answered, but there are a couple of large and more intertwined questions
> that the IESG needs help with, especially in understanding the relationship
> between Origin and third-party-authz, and how long-lived usernames (in SIP)
> versus short-lived or even ephemeral usernames (which are possible in
> RTCWeb) work in the same protocol mechanism.
>
> The IESG has regularly-scheduled "informal telechats" every two weeks, to
> work through questions like this. It would be helpful for Simon (as
> document shepherd) and any authors who should participate to attend one, so
> we can work through the high-order questions.
>
> The next informal telechat is next week, May 21, at 10 AM EDT. The
> coordinates are
>
>
> https://workgreen.webex.com/workgreen/j.php?MTID=m305722fec48b24d34908d4074b6f0bbe
> Meeting number: 826 345 248
> Meeting password: 1234
>
> If you'd like to take the opportunity to have that conversation, please
> let me know, and I'll add draft-ietf-tram-stun-origin to the agenda.
>
> Thanks for all your work to date, and we'll get through the questions.
>
> Spencer
>
> _______________________________________________
> tram mailing list
> tram@ietf.org
> https://www.ietf.org/mailman/listinfo/tram
>
>

v2.23.0 | Report a Bug | By Email