Re: [tram] ALPN identifiers for STUN and TURN - what is an application?
Paul Kyzivat <pkyzivat@alum.mit.edu> Thu, 31 July 2014 20:32 UTC
Return-Path: <pkyzivat@alum.mit.edu>
X-Original-To: tram@ietfa.amsl.com
Delivered-To: tram@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4E5B81A0084 for <tram@ietfa.amsl.com>; Thu, 31 Jul 2014 13:32:35 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.235
X-Spam-Level:
X-Spam-Status: No, score=-1.235 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, SPF_SOFTFAIL=0.665] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lAEk7uXn7mnO for <tram@ietfa.amsl.com>; Thu, 31 Jul 2014 13:32:34 -0700 (PDT)
Received: from QMTA11.westchester.pa.mail.comcast.net (qmta11.westchester.pa.mail.comcast.net [IPv6:2001:558:fe14:44:76:96:59:211]) by ietfa.amsl.com (Postfix) with ESMTP id D86231A001E for <tram@ietf.org>; Thu, 31 Jul 2014 13:32:33 -0700 (PDT)
Received: from omta20.westchester.pa.mail.comcast.net ([76.96.62.71]) by QMTA11.westchester.pa.mail.comcast.net with comcast id Z4BF1o0021YDfWL5B8YZ4A; Thu, 31 Jul 2014 20:32:33 +0000
Received: from Paul-Kyzivats-MacBook-Pro.local ([50.138.229.164]) by omta20.westchester.pa.mail.comcast.net with comcast id Z8YZ1o00L3ZTu2S3g8YZFy; Thu, 31 Jul 2014 20:32:33 +0000
Message-ID: <53DAA7E1.4080500@alum.mit.edu>
Date: Thu, 31 Jul 2014 16:32:33 -0400
From: Paul Kyzivat <pkyzivat@alum.mit.edu>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: tram@ietf.org
References: <D0008149.45B7F%praspati@cisco.com> <CABkgnnUPOX0=gD0de2j4P=uvw5q4tGjbOj8YFeC+DtK2_Qx-jg@mail.gmail.com>
In-Reply-To: <CABkgnnUPOX0=gD0de2j4P=uvw5q4tGjbOj8YFeC+DtK2_Qx-jg@mail.gmail.com>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20140121; t=1406838753; bh=qY2lf8EIgaJ+O5TM7ou3JVJbrQBF6orm9cgd/SRvtow=; h=Received:Received:Message-ID:Date:From:MIME-Version:To:Subject: Content-Type; b=VYnuodiWiDk/TG1xyxVJOkTZyWzjBrg68/1fbc0xQu1Qf1VO6FkAjOH7WMAr/bv3K jrtpafr5KLyfzR4Zn8VAsGZMxQHFQAoJeW9Mr3GzWEUoOPYOy+0VpV4U+mlruW0ayw Fxv6jo0kOuoaR8Q52B/TT8a6T4FBBaLZD0L9Kre1oUq7NRJCwEnnagDrvwL9E/F/8c 4j5BNOk9zrHEmT9TuodhgYxsLeB0Te7+82HrcOYOyiOIGGbzhDKDLY9JOGvEFuyMYo KllTZ45c9Pg8OhGa7MhL5SjI1KSw0uz25QFV/xE6YonMxwtd8O+07RCe4agPteLCcY YACuwiQV1oJEw==
Archived-At: http://mailarchive.ietf.org/arch/msg/tram/brGDZRvfWh2kT-zzFyc--_SqwRQ
Subject: Re: [tram] ALPN identifiers for STUN and TURN - what is an application?
X-BeenThere: tram@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Discussing the creation of a Turn Revised And Modernized \(TRAM\) WG, which goal is to consolidate the various initiatives to update TURN and STUN." <tram.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/tram>, <mailto:tram-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/tram/>
List-Post: <mailto:tram@ietf.org>
List-Help: <mailto:tram-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/tram>, <mailto:tram-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 31 Jul 2014 20:32:35 -0000
On 7/31/14 2:26 PM, Martin Thomson wrote: > On 31 July 2014 10:57, Prashanth Patil (praspati) <praspati@cisco.com> wrote: >> There was some discussion on the need for separate STUN and TURN identifiers >> during the TRAM session. Separate identifiers could be useful when middle >> boxes such as a firewall want protocol identification e.g as described in >> http://tools.ietf.org/html/draft-hutton-httpbis-connect-protocol-00#section-1. > > I raised this concern previously, and it has been bothering me > somewhat. I'll try to make this a little clearer, and apologies for > the rambling post. > > The application that you are using is what matters in this context. > That's why we have ALPN identifiers for WebRTC. > > Identifying as TURN or STUN isn't as useful, particularly when it > comes to enforcing policy, because they are effectively blank cheques. > "You are establishing a tunnel to a relay, great, what for?" I'll also argue that WebRTC is not an application. It too is just a tunnel (or, if you preferr, transport). Applications ride on top of it. I guess Meetecho or Webex++ or Skype++ would be plausible applications. Of course this is a constantly changing game. We keep adding layers to the stack, and each time we do what used to be an application becomes just a transport for the next layer. But AFAIK WebRTC is *never* an application in its own right. ISTM that it would be more appropriate if the application identifier identified the complete protocol stack that is riding on top of the layer that is carrying the identifier. Thanks, Paul
- [tram] ALPN identifiers for STUN and TURN Prashanth Patil (praspati)
- Re: [tram] ALPN identifiers for STUN and TURN Oleg Moskalenko
- Re: [tram] ALPN identifiers for STUN and TURN Martin Thomson
- Re: [tram] ALPN identifiers for STUN and TURN Justin Uberti
- Re: [tram] ALPN identifiers for STUN and TURN Martin Thomson
- Re: [tram] ALPN identifiers for STUN and TURN - w… Paul Kyzivat
- Re: [tram] ALPN identifiers for STUN and TURN Brandon Williams
- Re: [tram] ALPN identifiers for STUN and TURN Brandon Williams
- Re: [tram] ALPN identifiers for STUN and TURN Prashanth Patil (praspati)
- Re: [tram] ALPN identifiers for STUN and TURN Martin Thomson
- Re: [tram] ALPN identifiers for STUN and TURN Tirumaleswar Reddy (tireddy)