[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [AVT] Comments on "SRTP Not Mandatory" (draft-perkins-avt-srtp-not-mandatory-01.txt)

To: Dan York <dyork at voxeo.com>
Subject: Re: [AVT] Comments on "SRTP Not Mandatory" (draft-perkins-avt-srtp-not-mandatory-01.txt)
From: Colin Perkins <csp at csperkins.org>
Date: Sun, 2 Nov 2008 10:00:01 +0000
Cc: avt at ietf.org
Delivered-to: ietfarch-avt-web-archive at core3.amsl.com
Delivered-to: avt at core3.amsl.com
In-reply-to: <C6EF8B7C-A55E-490E-93E8-00FDE7B2374D at voxeo.com>
List-archive: <http://www.ietf.org/pipermail/avt>
List-help: <mailto:avt-request@ietf.org?subject=help>
List-id: Audio/Video Transport Working Group <avt.ietf.org>
List-post: <mailto:avt@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/avt>, <mailto:avt-request@ietf.org?subject=unsubscribe>
References: <C6EF8B7C-A55E-490E-93E8-00FDE7B2374D at voxeo.com>
Sender: avt-bounces at ietf.org

Dan,

[Coming back to this very late...]

On 28 Jul 2008, at 21:31, Dan York wrote:

Colin,
A few comments on http://tools.ietf.org/id/draft-perkins-avt-srtp-not-mandatory-01.txt . First, one caveat: I have not been (but amnow) a subscriber to the AVT mailing list and so I did not see anyof the previous discussion on this draft. The first I knew of itwas the Dublin agenda and the discussion today. Having said that,when I search the list archives (using Gmane.org) I can't seem tofind any strong discussion on the list.
Comments:
1. It's not entirely clear to me WHY this draft is necessary. Iheard Cullen's comments today that this would make all of our liveseasier as draft authors and have seen Colin's post here: http://article.gmane.org/gmane.ietf.avt/8084/ Is the issue really that weessentially need a FAQ about SRTP/RTP?

Yes - this has actually been very problematic when trying to getdrafts approved by the IESG.

2. The section on RTP Applications and Deployment Scenarios isnicely done.
3. In section 3 in the second paragraph, I would suggest a betterexample is necessary to demonstrate media security solutions otherthan SRTP than the example using a single TCP connection. In thatexample, TLS is being used to encrypt the *entire* SIP and mediaconnections. Effectively creating a TLS tunnel and putting all theSIP and media traffic through it. A similar example could be givenwith IPSec. In both cases, though, I would argue that they are NOTdoing something special with RTP... they are encrypting the entirechannel and *nothing* is being done specific to RTP.
To put it another way, the example does NOT convince me that SRTPcould not be mandatory *when a security solution is required forRTP*. In this example of TLS encrypting the entire channel, RTP"security" could simply be turned off as there is no need for it.
4. Similarly, in the third paragraph of section 3, the example ofthe secure link layer does not convince me that SRTP could not bemandated as again, it is a situation where doing something to theRTP protocol is not required because the underlying transportmechanism is secure.

Agreed. The main point, though, is that the answer for media securityis not "just use SRTP", it's "use SRTP, unless...", and this draft istrying to explain that the "unless" will always exist.

5. In section 4, "Implications for Key Management", I understandthat you are trying to make the point that there are a wide rangeof options out there, but the reality that I am seeing out there inthe market is that there is only really *one* SRTP key managementprotocol deployed in any meaningful way... "sdescriptions". I'veheard of a few pre-standard DTLS-SRTP efforts and there arecertainly some ZRTP implementations in a few products, but beyondthat I've not seen any serious usage of any of the other mechanismslisted. (I'd love to hear otherwise from others on the list.) Webeat this whole issue up in a whole range of RTPSEC BOFs over thecourse of a number of IETF meetings.
I know you reference draft-ietf-sip-media-security-requirements(which is now up to -07) which defines the requirements for keyexchange protocols, but I would suggest that this draft shouldreflect a bit more closely the actual SRTP usage out there andmention the convergence toward two primary protocols (sdescriptionsand DTLS-SRTP) with another one (ZRTP) out in the market as well.

Those protocols are very closely tied to unicast telephony andconferencing, whereas this draft is considering the full range of RTPuse case. I'd prefer this draft to simply point out that there are arange of keying protocols, and not recommend any of them. I'll try toclarify in the coming revision.

6. In section 5 and 6, I guess maybe I'm looking at this a bitdifferently. The document indicates there are cases where SRTPmakes sense to be used - and there are cases where NO modificationsto RTP are necessary. So it seems to me that you could break RTPencryption out into two cases:
A. TRANSPORT PROTECTION EXISTS - Either through other encryptionmechanisms like TLS or IPSec or physical mechanisms such asdedicated physical channels. In this case, no special security isused for RTP and plain old RTP is sent across the protected transport.
  B. NO TRANSPORT PROTECTION EXISTS - Use SRTP.
I've not seen any other suggestions for security mechanisms thatmodify the RTP beyond SRTP. Are there any others being proposed?

There are likely still users of the basic encryption specified in RFC1889. I'm not aware of any other proposals.

With this in mind, I would suggest that we could summarize it moreas that you have two options for securing RTP: 1) using a securitymechanism that protects the transport of the RTP and allows the RTPto pass unaltered; or 2) use SRTP if you can't (or don't want to)secure the underlying transport.
7. Based on what I said in my #5 above, I would disagree with thefinal sentence of section 6, the Conclusion: "Currently is is muchharder to point out a preferred key-management solution." Asstated earlier, pretty much everyone I know of right now who isdoing SRTP is using sdescriptions as the key management solution.After pounding through 13+ proposals in the RTPSEC BOF, thedirection of the IETF is very clearly on DTLS-SRTP as "the wayforward". I would suggest that this should be mentioned in somemanner.
8. NITS - Two minor ones:
a. Last sentence of last paragraph in section 5... "with anoption of turining on" should obviously be "turning".
b. First paragraph of section 6, second sentence... "In theabsense..." should be "absence".
I'm not saying that we shouldn't have this draft. I understand thatthere is a need to explain why we just don't mandate SRTPeverywhere. But I also think we should promote/recommend that SRTPbe used wherever transport protection isn't available and shouldalso promote/recommend the paths that we see for the SRTP keyexchange going forward.

My working draft now states "SRTP is a preferred solution for theprotection of the RTP traffic in those use cases where it isapplicable. It is out of scope for this memo to recommend apreferred key management solution."


Cheers,
--
Colin Perkins
http://csperkins.org/



_______________________________________________
Audio/Video Transport Working Group
avt at ietf.org
https://www.ietf.org/mailman/listinfo/avt

References:
- [AVT] Comments on "SRTP Not Mandatory" (draft-perkins-avt-srtp-not-mandatory-01.txt)
  - From: Dan York

Prev by Date: [AVT] Fwd: I-D Action:draft-levin-avt-rtcp-burst-00.txt
Next by Date: [AVT] [Fwd: New Version Notification for draft-mattsson-srtp-store-and-forward-01]
Previous by thread: [AVT] Comments on "SRTP Not Mandatory" (draft-perkins-avt-srtp-not-mandatory-01.txt)
Next by thread: [AVT] Breakfast meeting to discuss timestamp alignment issues
Index(es):
- Date
- Thread