[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Plan for moving forward

To: Lakshminath Dondeti <ldondeti@xxxxxxxxxxxx>
Subject: Re: Plan for moving forward
From: Eric Rescorla <ekr@xxxxxxxxxxxxxxxxxxxx>
Date: Sat, 02 Jun 2007 16:31:02 -0700
Cc: Eric Rescorla <ekr@xxxxxxxxxxxxxxxxxxxx>, Dan Wing <dwing@xxxxxxxxx>, "'Cullen Jennings'" <fluffy@xxxxxxxxx>, ietf-rtpsec@xxxxxxx, "'Sam Hartman'" <hartmans-ietf@xxxxxxx>, "'Tim Polk'" <tim.polk@xxxxxxxx>, jon.peterson@xxxxxxxxxxx
In-reply-to: <4661F5C7.2050504@xxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-rtpsec/mail-archive/>
List-id: <ietf-rtpsec.imc.org>
List-unsubscribe: <mailto:ietf-rtpsec-request@imc.org?body=unsubscribe>
References: <20070602171802.81D1C33C4B@xxxxxxxxxxxxxx> <0b5c01c7a53b$a3f367c0$10676b80@xxxxxxxxxxxxxx> <20070602173623.41C2433C4B@xxxxxxxxxxxxxx> <4661F5C7.2050504@xxxxxxxxxxxx>
Sender: owner-ietf-rtpsec@xxxxxxxxxxxx
User-agent: Wanderlust/2.14.0 (Africa) Emacs/21.3 Mule/5.0 (SAKAKI)

At Sat, 02 Jun 2007 15:57:11 -0700,
Lakshminath Dondeti wrote:
> 
> 
> 
> On 6/2/2007 10:36 AM, Eric Rescorla wrote:
> > At Sat, 2 Jun 2007 10:29:56 -0700,
> 
> > Totally agree. I'm just saying that we ought to think of the 
> > authentication as happening in the signalling and being transferred
> > into the media. We should try to avoid having authentication 
> > mechanisms which authenticate only the media and not the signalling.
> 
> Why?  If we apply this to other use cases, this is akin to saying that 
> we ought to tie access authentication to end-to-end secure communication.

What other uses cases?

This group is about keying secure RTP sessions that are set up 
via SIP. In that context, SIP is the layer at which identities
are meaningful and end-to-end secure communication is about
leveraging those identities into the provision of secure media.

> I can see the point that in case of SIP, communicating parties may 
> choose to use identities asserted in the signaling path.

I'm not sure what you mean by "asserted". The identities or 
only relevant in the signalling path. What's needed here is that
the media path setup makes sure you're talking to the same entities.

-Ekr

Follow-Ups:
- Re: Plan for moving forward
  - From: Lakshminath Dondeti

References:
- Re: Plan for moving forward
  - From: Eric Rescorla
- RE: Plan for moving forward
  - From: Dan Wing
- Re: Plan for moving forward
  - From: Eric Rescorla
- Re: Plan for moving forward
  - From: Lakshminath Dondeti

Prev by Date: Re: Plan for moving forward
Next by Date: Re: Plan for moving forward
Previous by thread: Re: Plan for moving forward
Next by thread: Re: Plan for moving forward
Index(es):
- Date
- Thread