[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Plan for moving forward

To: "'Eric Rescorla'" <ekr@xxxxxxxxxxxxxxxxxxxx>
Subject: RE: Plan for moving forward
From: "Dan Wing" <dwing@xxxxxxxxx>
Date: Sat, 2 Jun 2007 10:29:56 -0700
Authentication-results: sj-dkim-3; header.From=dwing@xxxxxxxxx; dkim=pass (s ig from cisco.com/sjdkim3002 verified; );
Cc: "'Cullen Jennings'" <fluffy@xxxxxxxxx>, "'Lakshminath Dondeti'" <ldondeti@xxxxxxxxxxxx>, <ietf-rtpsec@xxxxxxx>, "'Sam Hartman'" <hartmans-ietf@xxxxxxx>, "'Tim Polk'" <tim.polk@xxxxxxxx>, <jon.peterson@xxxxxxxxxxx>
Dkim-signature: v=0.5; a=rsa-sha256; q=dns/txt; l=1697; t=1180805397; x=1181669397; c=relaxed/simple; s=sjdkim3002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=dwing@xxxxxxxxx; z=From:=20=22Dan=20Wing=22=20<dwing@xxxxxxxxx> |Subject:=20RE=3A=20Plan=20for=20moving=20forward |Sender:=20; bh=vn4ZLOeS3ucOR09MD2qVeqeusZA8seuXWGV6KsxKxiQ=; b=OSoIs+O9jY47uUB1CZnVRS/XgF/rLk6VLS7Xadi84C/tno6m8HULUn0sGUoI8Ka2zoJM4bdm z4rmumMStf6ZBwTWAMWt2Sqh9VBT6W57tUpTzDPqBpiSm86D/mdPxHNa;
In-reply-to: <20070602171802.81D1C33C4B@xxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-rtpsec/mail-archive/>
List-id: <ietf-rtpsec.imc.org>
List-unsubscribe: <mailto:ietf-rtpsec-request@imc.org?body=unsubscribe>
Sender: owner-ietf-rtpsec@xxxxxxxxxxxx
Thread-index: AcelOh5lJlgZBQ8cSJiNHqT6P02VgwAAJv8A


> > I don't think flipping who sends the offer is sufficient -- 
> > DTLS-SRTP,
> > as the several documents are now, uses a=fingerprint to authenticate
> > both endpoints.  What Lakshminath is looking for is a way 
> > for one side
> > to declare that they don't want their certificate used as the 
> > authentication mechanism, but rather wants something else used (a
> > password or something; 'legacy method' encompasses a lot of stuff).
> 
> Hmm... I realize we're used to thinking of certificates as a form
> of authentication, but I think that leads people off track in
> this case. In DTLS-SRTP, the authentication at the DTLS layer 
> serves primarily to bind the authentication performed in the
> signalling plane to the cryptography being done in the media 
> plane. That's why it's OK for the certs to be self-signed and
> just authenticated via fingerprint.

Yes, but in conjunction with SIP-Identity (RFC4474) you get
authentication -- if, of course, you trust the entity that 
created that RFC4474 signature.  I don't usually think of DTLS-SRTP
without SIP-Identity, myself -- without SIP-Identity, you're getting
little more than opportunistic encryption (unless you store the
certificate you used last time with that same party, and/or read 
each other's certificate fingerprints or something akin to that).

> I would argue that from an architectural perspective if you
> want another form of authentication (e.g., EAP) you should
> put that at the SIP layer. Remember, there are plenty of contexts
> in which you need to trust the other endpoint where no media streams
> are set up between you.

Yes, that could be useful for SIP itself.

-d

Follow-Ups:
- Re: Plan for moving forward
  - From: Hannes Tschofenig
- Re: Plan for moving forward
  - From: Eric Rescorla

References:
- Re: Plan for moving forward
  - From: Eric Rescorla

Prev by Date: Re: Plan for moving forward
Next by Date: Re: Plan for moving forward
Previous by thread: Re: Plan for moving forward
Next by thread: Re: Plan for moving forward
Index(es):
- Date
- Thread