IETF Logo Mail Archive

Re: [tram] Alissa Cooper's Discuss on draft-ietf-tram-stun-origin-05: (with DISCUSS)

Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 12 May 2015 16:42 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AE6F21A8AF6; Tue, 12 May 2015 09:42:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.21
X-Spam-Level:
X-Spam-Status: No, score=-4.21 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZVIyxxYne2xS; Tue, 12 May 2015 09:42:00 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7A1A71A87E9; Tue, 12 May 2015 09:42:00 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 39F3BBEAA; Tue, 12 May 2015 17:41:59 +0100 (IST)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id aiydlj1AUW3H; Tue, 12 May 2015 17:41:59 +0100 (IST)
Received: from [134.226.36.180] (stephen-think.dsg.cs.tcd.ie [134.226.36.180]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id 0F2F7BE8E; Tue, 12 May 2015 17:41:59 +0100 (IST)
Message-ID: <55522D57.8090009@cs.tcd.ie>
Date: Tue, 12 May 2015 17:41:59 +0100
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.6.0
MIME-Version: 1.0
To: Simon Perreault <sperreault@jive.com>, Alissa Cooper <alissa@cooperw.in>, Oleg Moskalenko <mom040267@gmail.com>
References: <20150511233012.17046.42319.idtracker@ietfa.amsl.com> <CALDtMr+x2Mi8v0jwFUscryccjc7Zf0o-mPo64S2dpHPqnnoXUA@mail.gmail.com> <A14F5400-21EB-4EE0-B988-CDA929EAE5A2@cooperw.in> <555153F0.4050204@cs.tcd.ie> <55522411.10104@jive.com>
In-Reply-To: <55522411.10104@jive.com>
OpenPGP: id=D66EA7906F0B897FB2E97D582F3C8736805F8DA2; url=
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
Archived-At: <http://mailarchive.ietf.org/arch/msg/tram/TUG-ObtgawyRr-dR2D4xzlyoJ14>
Cc: tram-chairs@ietf.org, "tram@ietf.org" <tram@ietf.org>, draft-ietf-tram-stun-origin.shepherd@ietf.org, draft-ietf-tram-stun-origin.ad@ietf.org, IESG <iesg@ietf.org>, draft-ietf-tram-stun-origin@ietf.org
Subject: Re: [tram] Alissa Cooper's Discuss on draft-ietf-tram-stun-origin-05: (with DISCUSS)
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 May 2015 16:42:08 -0000


On 12/05/15 17:02, Simon Perreault wrote:
> Le 2015-05-11 21:14, Stephen Farrell a écrit :
>> There's also this issue. If user credentials can collide over >1
>> "realm" (where authentication realm means in the HTTP basic/digest
>> sense) then those are almost certainly human memorable (why else
>> could they collide with non-negligible probability?) and in the
>> case of STUN/TURN and, in particular, WebRTC, setting up to use
>> human memorable credentials is just basically broken given that
>> the humans aren't actually logging in to the STUN/TURN server.
> 
> In the case where a single entity controls the authentication databases
> for all tenants of a single server, you're right. However, that
> condition does not hold in general. That is, we really do need to
> properly handle username collisions across realms.

Sorry, I'm really not getting that. It is not a name for
a person, at least in WebRTC, right? It is some name
agreed between the WebRTC JS code and the TURN server. And
I'd hope it ought change frequently if it matters at all
or else it'll be scraped from the JS (or debug tooling).

> 
> That is a pain point that is currently being handled with a number of
> operational hacks. Clever username generation is one of them. It does
> work for some use cases, but not in general.
> 
> What you're describing is current practice, and we don't like it.
> 
> I'd appreciate if we could recognize that there is a problem with
> current practice, 

I believe I did that already.

> and actually discuss the merits of the ORIGIN
> solution. I understand the privacy concerns, but I don't get two things:
> 
> 1) Are those concerns identical or different from those applying to,
> e.g., the Host HTTP header, or the SNI TLS extension? If they're
> different, how are they different?

They may or may not be different but doing something better also
may or may not be more tractable. And the world has changed since
e.g. SNI was defined. (There is also desire to hide SNI in the
TLS 1.3 handshake if possible. We don't know if it will be possible
or not but the desire is there and is real.)

> 
> 2) Is there a proposal that could fix the privacy issue? So far I've
> seen IESG members pointing out the issue, authors acknowledging the
> issue, but no discussion of solutions.

>From my POV, that is the discussion we are having and that is not
yet done.

S.

> 
> Simon
>

v2.23.0 | Report a Bug | By Email