[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [MMUSIC] RTSP & NAT: Symmetric RTP

To: Magnus Westerlund <magnus.westerlund@era.ericsson.se>
Subject: Re: [MMUSIC] RTSP & NAT: Symmetric RTP
From: philippe.gentric@philips.com
Date: Wed, 12 Feb 2003 15:50:46 +0100
Cc: IETF MMUSIC WG <mmusic@ietf.org>
List-help: <mailto:mmusic-request@ietf.org?subject=help>
List-id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-post: <mailto:mmusic@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/mmusic>,<mailto:mmusic-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/mmusic>,<mailto:mmusic-request@ietf.org?subject=unsubscribe>
Sender: mmusic-admin@ietf.org

Magnus,

I count  2 issues left :

1) STUN and RTP/RTCP co-located:

I dont understand your concern here?

the STUN draft says: "A STUN  server can even be embedded within an end system."
I assume it means exactly that, no?

in practice it is easy for the server to discreminate between incomming STUN and incomming RTP or RTCP,
since STUN and RTCP have completely different header structures;
alos the STUN header contain a 128 bits nonce and the RTP/RTCP headers contain
at least one 32 bits nonce ....
So first the risk of collision is extremely small...
secondly a good implementation will always include structural/coherence checks, right ?

so what harm can it do that mis-formed RTCP packets would not cause
in the first place anyway ?


2) Sending RTP at a different IP address than the RTSP client is un-secure.

True.

Unfortunately this is a property of RTSP today ;-)

A) for NATs we simply want to extend it so that the RTP and RTCP
can have both different IP addresses instead of "only" different port numbers
> the additional danger is small compared to the benefit
and:

B) there is a need to fix that security hole _anyway_

One possible fix would be to define a RTCP extension whereby
before sending RTP data the server sends a "confirmation request"
with a Nonce and waits (with as short a time out as possible)
for a RTCP "confirmation responce" containing the same nonce and
originating from the correct target IP.

defeating that is pretty difficult (afaik it requires a man in the middle
in control of a router to trap the request and spoof the reply,
with a guy in that position your concerns are probably elsewhere !-)


regards,



Philippe Gentric
Software Architect
Philips MP4Net
"philippe dot gentric at philips dot com"
http://www.platform4.philips.com

_______________________________________________
mmusic mailing list
mmusic@ietf.org
https://www1.ietf.org/mailman/listinfo/mmusic

Follow-Ups:
- Re: [MMUSIC] RTSP & NAT: Symmetric RTP
  - From: Magnus Westerlund

Prev by Date: [MMUSIC] Minutes from Feb 5 RTSP telecon
Next by Date: Re: [MMUSIC] RTSP and NATs
Previous by thread: Re: [MMUSIC] RTSP & NAT: Symmetric RTP
Next by thread: Re: [MMUSIC] RTSP & NAT: Symmetric RTP
Index(es):
- Date
- Thread