[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: Plan for moving forward

To: "'Lakshminath Dondeti'" <ldondeti@xxxxxxxxxxxx>, "'Eric Rescorla'" <ekr@xxxxxxxxxxxxxxxxxxxx>
Subject: RE: Plan for moving forward
From: "Dan Wing" <dwing@xxxxxxxxx>
Date: Mon, 4 Jun 2007 23:08:26 -0700
Authentication-results: sj-dkim-1; header.From=dwing@xxxxxxxxx; dkim=pass (s ig from cisco.com/sjdkim1004 verified; );
Cc: "'Cullen Jennings'" <fluffy@xxxxxxxxx>, <ietf-rtpsec@xxxxxxx>, "'Sam Hartman'" <hartmans-ietf@xxxxxxx>, "'Tim Polk'" <tim.polk@xxxxxxxx>, <jon.peterson@xxxxxxxxxxx>
Dkim-signature: v=0.5; a=rsa-sha256; q=dns/txt; l=2212; t=1181023710; x=1181887710; c=relaxed/simple; s=sjdkim1004; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=dwing@xxxxxxxxx; z=From:=20=22Dan=20Wing=22=20<dwing@xxxxxxxxx> |Subject:=20RE=3A=20Plan=20for=20moving=20forward |Sender:=20; bh=eT1AUp7qr6ePdFGJe2VaPiVyQBdtWi4MX66tvF8YUOM=; b=YMuiMyaVV6xyLjaU4UpwUsgAvL9Io5D3B7TgoMy0IxqZJ3W/Cf/+z5AwfBkW6LveEayrWDxf yWmBysSqgI6HI3P5xAHPsa0tm3BIMMCpeoyxDiRxUNYqdciWKFFjO6WBL0SE/Xdj44IAdCIZn+ 49MDNJHhHphUzZq4wwVl1rdPg=;
In-reply-to: <46621AF5.7050309@xxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-rtpsec/mail-archive/>
List-id: <ietf-rtpsec.imc.org>
List-unsubscribe: <mailto:ietf-rtpsec-request@imc.org?body=unsubscribe>
Sender: owner-ietf-rtpsec@xxxxxxxxxxxx
Thread-index: Acelf4Xx2Zo8nwysS16yd8hvo15jKwBt7bgA

> >> On 6/2/2007 10:36 AM, Eric Rescorla wrote:
> >>> At Sat, 2 Jun 2007 10:29:56 -0700,
> >>> Totally agree. I'm just saying that we ought to think of the 
> >>> authentication as happening in the signalling and being 
> >>> transferred
> >>> into the media. We should try to avoid having authentication 
> >>> mechanisms which authenticate only the media and not the 
> >>> signalling.
> >> Why?  If we apply this to other use cases, this is akin to 
> >> saying that 
> >> we ought to tie access authentication to end-to-end secure 
> >> communication.
> > 
> > What other uses cases?
> > 
> > This group is about keying secure RTP sessions that are set up 
> > via SIP. In that context, SIP is the layer at which identities
> > are meaningful and end-to-end secure communication is about
> > leveraging those identities into the provision of secure media.
> 
> Hmmm, that's one model.  But, why do those two layers have to 
> be tied so strongly?

Because the media layer needs the signaling layer, or else it
doesn't exist.

The signaling layer (SIP, RTSP, what have you) is necessary for
the media layer.  There isn't any way to create a media layer
without signaling -- you need to signal your transport address 
(without it, you can't get media).  

> >> I can see the point that in case of SIP, communicating parties may 
> >> choose to use identities asserted in the signaling path.
> > 
> > I'm not sure what you mean by "asserted". The identities or 
> > only relevant in the signalling path. What's needed here is that
> > the media path setup makes sure you're talking to the same entities.
> 
> There may be an identity relevant within the local domain and another 
> end-to-end. 

Ok, I can see that.  I could be 001234 locally (employee number)
and dwing@xxxxxxxxx end-to-end.

> The sense I am getting is that we will just have to 
> establish DTLS-SRTP session using the SIP-level identity and then use 
> other means to prove the second identity.  It looks like we will also 
> have to live with arbitrary notions of client-server relationships in 
> each session.

Can you throw a use-case bone over the wall for everyone to chew on?

-d

Follow-Ups:
- Additional use cases? (Re: Plan for moving forward)
  - From: Lakshminath Dondeti
- Re: Plan for moving forward
  - From: Sam Hartman

References:
- Re: Plan for moving forward
  - From: Lakshminath Dondeti

Prev by Date: Re: Clarity of consensus
Next by Date: RE: Media Security Requirements Draft
Previous by thread: Re: Plan for moving forward
Next by thread: Re: Plan for moving forward
Index(es):
- Date
- Thread