RE: Posting in support for Protcol X, Y, or Z

["Christer Holmberg \(JO/LMF\)" <christer.holmberg@xxxxxxxxxxxx>]

Hi,

>>Does that requirement cover transcoders, media mixers and SBCs, which 
>>may terminate the media, meaning that the media will be de-encrypted, 
>>and forwarded possibly using another format/codec?
> 
>Somewhat; it would depend on how each end authenticates it is 
>talking to the correct device.  For example, if I was using 
>RFC4474 and using DTLS-SRTP, a transcoder under the control 
>f my enterprise could be invoked _before the RFC4474 
>signature was created_, and my enterprise would attest the 
>call is coming from me (which it is, through their 
>transcoder).  I expect ZRTP would fail SAS validation in this 
>similar situation.  I don't know what MIKEYv2 would do.
> 
>Can you write up the specific requirement so it can be 
>included in the update to draft-wing-media-security-requirements?

I think I did propose a new requirement earlier, didn't I? I don't know
whether it needs to be more clear, but it did say that the solution must
support the presence of these kind of middleboxes.

Regards,

Christer