IETF Logo Mail Archive

Re: [rtcweb] Revealing IP addresses (Re: Review of draft-ietf-rtcweb-use-cases-and-requirements-10 (Part II))

Stefan Håkansson LK <stefan.lk.hakansson@ericsson.com> Fri, 01 February 2013 12:09 UTC

Return-Path: <stefan.lk.hakansson@ericsson.com>
X-Original-To: rtcweb@ietfa.amsl.com
Delivered-To: rtcweb@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 449F321F8CB4 for <rtcweb@ietfa.amsl.com>; Fri, 1 Feb 2013 04:09:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.912
X-Spam-Level:
X-Spam-Status: No, score=-5.912 tagged_above=-999 required=5 tests=[AWL=0.038, BAYES_00=-2.599, HELO_EQ_SE=0.35, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_MED=-4]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zCjl66iu2hff for <rtcweb@ietfa.amsl.com>; Fri, 1 Feb 2013 04:09:23 -0800 (PST)
Received: from mailgw7.ericsson.se (mailgw7.ericsson.se [193.180.251.48]) by ietfa.amsl.com (Postfix) with ESMTP id 7D72221F89A3 for <rtcweb@ietf.org>; Fri, 1 Feb 2013 04:09:21 -0800 (PST)
X-AuditID: c1b4fb30-b7f0d6d000007e61-18-510bb0700d6e
Received: from esessmw0237.eemea.ericsson.se (Unknown_Domain [153.88.253.125]) by mailgw7.ericsson.se (Symantec Mail Security) with SMTP id 69.17.32353.070BB015; Fri, 1 Feb 2013 13:09:20 +0100 (CET)
Received: from [150.132.141.90] (153.88.115.8) by esessmw0237.eemea.ericsson.se (153.88.115.91) with Microsoft SMTP Server id 8.3.279.1; Fri, 1 Feb 2013 13:09:20 +0100
Message-ID: <510BB070.9040602@ericsson.com>
Date: Fri, 01 Feb 2013 13:09:20 +0100
From: Stefan Håkansson LK <stefan.lk.hakansson@ericsson.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130107 Thunderbird/17.0.2
MIME-Version: 1.0
To: rtcweb@ietf.org
References: <50F97303.4070906@ericsson.com>, , , <CABkgnnWcqZ+dU+87djBQ0z47ufB-Go13mWyPi_ZQA8BPinQJEA@mail.gmail.com>, , <BLU002-W1705DC54006131B55B432A931F0@phx.gbl>, <BLU002-W210B8DBB897CAF5BECC501A931F0@phx.gbl>, <5109265F.6040106@ericsson.com> <BLU002-W123BE6BAA58BE0B26DEA28F931E0@phx.gbl> <510B9A41.8000804@ericsson.com> <510B9FD8.6000008@alvestrand.no>
In-Reply-To: <510B9FD8.6000008@alvestrand.no>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 8bit
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrPJMWRmVeSWpSXmKPExsUyM+JvrW7BBu5Ag8VN2hZr/7WzOzB6LFny kymAMYrLJiU1J7MstUjfLoErY/XzRWwFZ/kr7u7fyNzAOJ2ni5GTQ0LAROLFhGYmCFtM4sK9 9WxdjFwcQgInGSVO9J9lh3BWM0r8fXqXEaSKV0Bb4uzRQ8wgNouAisSSaVtZQGw2gUCJ6/9/ gU0SFYiSeH+1iRmiXlDi5MwnYDUiAsISW1/1AtVwcAgLVEisaXWEmP+cSeL2ibnsIDWcAroS XXc3gfUyC9hKXJhznQXClpdo3jobLC4EVPPu9T3WCYwCs5CsmIWkZRaSlgWMzKsY2XMTM3PS y803MQID7eCW3wY7GDfdFzvEKM3BoiTOG+56IUBIID2xJDU7NbUgtSi+qDQntfgQIxMHp1QD 43Ijo8Uv83k72W+1127Z9Su1V+xN7wLVxz/a009mfSpXaVfY5bHyYnJDn1Kw//ttmjPXHE4V XRm8Iu/xmti374OzAhSPyVc+duXidrHNfHd55jxPHX5ple0OJTHhWkuX2za0/M5cnR2azHDv 8NTMvQoBFQusZok18Nx5uctApzW1k2df8rsbSizFGYmGWsxFxYkAkqfVWwICAAA=
Subject: Re: [rtcweb] Revealing IP addresses (Re: Review of draft-ietf-rtcweb-use-cases-and-requirements-10 (Part II))
X-BeenThere: rtcweb@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Real-Time Communication in WEB-browsers working group list <rtcweb.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/rtcweb>
List-Post: <mailto:rtcweb@ietf.org>
List-Help: <mailto:rtcweb-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/rtcweb>, <mailto:rtcweb-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 01 Feb 2013 12:09:25 -0000

On 2013-02-01 11:58, Harald Alvestrand wrote:
> On 02/01/2013 11:34 AM, Stefan Håkansson LK wrote:
>>>
>>>     A25             It must be possible for the application to
>>>                     refrain from exposing the IP address
>>>
>>> [BA] I am assuming we are talking about exposing the originating IP
>>> address of media, which can be addressed via TURN.
>>> If so, this is more of a protocol than an API requirement. Since the
>>> ICE candidates need to exposed in the API in
>>> order to allow them to be signaled, I am not sure how we can avoid
>>> exposing those to the application.  Similarly, the
>>> HTTP server can obtain the IP address used by the HTTP client. Even
>>> within SIP, there are VIA headers and contact
>>> headers, so it is not easy to avoid disclosure of the IP address to
>>> everyone.  So I think we need to be more clear
>>> about what we are trying to avoid exposing, and to whom.
>>
>> Personally I would like to get rid of this requirement. The
>> application can always get all candidates. To have a way to let the
>> application ask for _only_ the TURN candidates does not change this -
>> that kind of API is more for convenience (so that the app you trust
>> does not have to remove privacy revealing candidates from the offer,
>> but can instead ask the browser to deliver an offer without them).
> I think this requirement is important, but needs reformulation.
>
> Should we instead say
>
> "It MUST be possible to set up a call between two parties A and B
> without one party learning the other party's IP address"

This requirement is not on the browser (or its APIs) per se, if we go 
this path it almost belongs into another category than what we currently 
have.



>
> This doesn't place any requirement that the signalling server should be
> kept in the dark.
>
> _______________________________________________
> rtcweb mailing list
> rtcweb@ietf.org
> https://www.ietf.org/mailman/listinfo/rtcweb

v2.23.0 | Report a Bug | By Email