Re: [AVT] RTP: Confidentiality mechanisms

[Stephen Casner <casner@acm.org>]

On Tue, 7 Jan 2003, Colin Perkins wrote:

> Looks reasonable. I suggest a small addition to the second change, to
> indicate that stronger security is under development.
[snip]
> >NEW ADDITION:
> >   In particular, an AES
> >   profile taking into account known plaintext and CBC plaintext
> >   manipulation concerns will be the correct choice in future.
>                          ^ is under development, and

These wording I showed was verbatim from the message Allison sent
requesting these changes.  I'm not sure to what she was referring, but
I interpreted "profile" to be in the AES domain, not RTP domain.  If
that's correct, then I don't think your addition is needed.

I'm guessing from your comment that you interpret this as referring to
the SRTP profile, but that is really past development, except perhaps
for tweaks for IESG approval.  If SRTP is indeed what Allison meant as
well, then I think we should refer to it by name.

                                                        -- Steve

_______________________________________________
Audio/Video Transport Working Group
avt@ietf.org
https://www1.ietf.org/mailman/listinfo/avt