[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [AVT] SRTP and ICMP destination unreachable ...

> "Elisabetta Carrara (EAB)" writes:                             
>
> I think it is sometimes practice not to take drastic
> actions based on unauthenticated ICMP messages.

It might be a good idea to include text somewhere in
the SRTP Security Considerations to bring this point
up explicitly -- the ECONNREFUSED issue is special
because it is visible to the applications programmer
via errno, and not all implementors will realize that
the underlying source of an ECONNREFUSED is an 
unauthenticated ICMP packet. A sentence reminding them
could only help ... 

-------------------------------------------------------------------------
John Lazzaro -- Research Specialist -- CS Division -- EECS -- UC Berkeley
lazzaro [at] cs [dot] berkeley [dot] edu     www.cs.berkeley.edu/~lazzaro
-------------------------------------------------------------------------
_______________________________________________
Audio/Video Transport Working Group
avt@ietf.org
https://www1.ietf.org/mailman/listinfo/avt