[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Plan for moving forward

To: Lakshminath Dondeti <ldondeti@xxxxxxxxxxxx>
Subject: Re: Plan for moving forward
From: Eric Rescorla <ekr@xxxxxxxxxxxxxxxxxxxx>
Date: Thu, 07 Jun 2007 12:04:06 -0700
Cc: Matt Lepinski <mlepinski@xxxxxxx>, ietf-rtpsec@xxxxxxx
In-reply-to: <46684DE4.4090408@xxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-rtpsec/mail-archive/>
List-id: <ietf-rtpsec.imc.org>
List-unsubscribe: <mailto:ietf-rtpsec-request@imc.org?body=unsubscribe>
References: <07b201c7a737$f0526500$c2f0200a@xxxxxxxxxxxxxx> <tslira2y78y.fsf@xxxxxxx> <4667A2DA.9020805@xxxxxxxxxxxx> <20070607131056.2585D33C58@xxxxxxxxxxxxxx> <46683E8A.1090905@xxxxxxxxxxxx> <46684318.7020708@xxxxxxx> <466845F2.100@xxxxxxxxxxxx> <466849EA.3000305@xxxxxxx> <46684DE4.4090408@xxxxxxxxxxxx>
Sender: owner-ietf-rtpsec@xxxxxxxxxxxx
User-agent: Wanderlust/2.14.0 (Africa) Emacs/21.3 Mule/5.0 (SAKAKI)

At Thu, 07 Jun 2007 11:26:44 -0700,
Lakshminath Dondeti wrote:
> 
> 
> Thanks Matt.  I know of cases where skipping the self-signed cert on the 
> UAC side would be considered necessary.  Broadly speaking whereas 
> verifying server-side certs as in case of https is alright, client-side 
> certs, self-signed or not, are not really viable at the moment.

Can you provide more support for this claim?

The problems with client auth in HTTPS are almost entirely due
to user interface, but in the of DTLS-SRTP, they client auth
is hidden under the covers of the implementation and so this
is not an issue.

-Ekr

Follow-Ups:
- Re: Plan for moving forward
  - From: Lakshminath Dondeti

References:
- RE: Plan for moving forward
  - From: Dan Wing
- Re: Plan for moving forward
  - From: Sam Hartman
- Re: Plan for moving forward
  - From: Lakshminath Dondeti
- Re: Plan for moving forward
  - From: Eric Rescorla
- Re: Plan for moving forward
  - From: Lakshminath Dondeti
- Re: Plan for moving forward
  - From: Richard Barnes
- Re: Plan for moving forward
  - From: Lakshminath Dondeti
- Re: Plan for moving forward
  - From: Matt Lepinski
- Re: Plan for moving forward
  - From: Lakshminath Dondeti

Prev by Date: Re: Additional use cases? (Re: Plan for moving forward)
Next by Date: Re: Plan for moving forward
Previous by thread: Re: Plan for moving forward
Next by thread: Re: Plan for moving forward
Index(es):
- Date
- Thread