[XCON] Re: [MMUSIC] BFCP: SDP usage and k=

To: Nathan Allen Stratton <nathan at robotics.net>
Subject: [XCON] Re: [MMUSIC] BFCP: SDP usage and k=
From: Mark Baugher <mbaugher at cisco.com>
Date: Sat, 12 Feb 2005 13:31:29 -0800
Cc: XCON-IETF <xcon at ietf.org>, mmusic at ietf.org
Iim-sig: v:"1.1"; h:"imail.cisco.com"; d:"cisco.com"; z:"home"; m:"krs"; t:"1108243599.694004"; x:"432200"; a:"rsa-sha1"; b:"nofws:1449"; e:"Iw=="; n:"sQYarK2E51MdcTiUqeif3F7cWdxIfoCiXhdfb9vD5ee/j0jXL15gbFxF2p" "XIweAblu0N6XAgK7k+wrbr7bQDJaCDqOmzqpRUBjIRQAXQ7NzadpmR3pUL6wxaRUtW+c43sl9jC" "50Qg1sXHpPjt8Y+Y16ioyQAQAdSunM4YhevURc="; s:"ga28o0D69itOhrXfNVVwAck34gf7y5FZYripccAM+jy2L55zapP6w7/bjth5Rc7cYoCkqLwS" "b0dCVdSv7omnLeFFkeDsgPkz9pu5nYrowsRLJhGwQCa7Sbin9ChnJe6d9TGgBYcvUH4hSf1sq6T" "rmnf9NJr2Rt4bVJoVsWTZouY="; c:"From: Mark Baugher <mbaugher@cisco.com>"; c:"Subject: Re: [MMUSIC] BFCP: SDP usage and k=3D"; c:"Date: Sat, 12 Feb 2005 13:31:29 -0800"
Iim-verify: s:"y"; v:"y"; r:"60"; h:"imail.cisco.com"; c:"message from imail.cisco.com verified; "
In-reply-to: <Pine.LNX.4.58.0502121558580.5194@barney.robotics.net>
List-help: <mailto:xcon-request@ietf.org?subject=help>
List-id: Centralized Conferencing <xcon.ietf.org>
List-post: <mailto:xcon@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/xcon>, <mailto:xcon-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/xcon>, <mailto:xcon-request@ietf.org?subject=unsubscribe>
References: <4209433A.2000005@nostrum.com> <3d298d2cf5c4d747f4326f93220e2b63@cisco.com> <Pine.LNX.4.58.0502121558580.5194@barney.robotics.net>
Sender: xcon-bounces at ietf.org

On Feb 12, 2005, at 1:01 PM, Nathan Allen Stratton wrote:

...

I glanced at the usage of k= in this I-D, which says that it encodes a shared secret. But where does it specify what kind of shared secret? What algorithm is used for computing the digest? I did not study the draft and may be missing something. If it is completely specified then it avoids the general problem that we found with k= in the past, namely that there is no way to identify the transform to be used and pass additional cryptographic and session parameters that practically always need to be communicated with a cryptographic key. If draft-ietf-mmusic-sdp-bfcp-00.txt does not have these problems and k= signals all needed information, then there may be no problem.
My understanding of mmusic-kmgmt-ext-13 is that it is open to using many different key management protocols. I however am in the dark as to what the draft use of mikey is, I think based on RFC 7311 it is AES, but I am not sure.

The specification that we're discussing makes no mention of MIKEY or the kmgmt I-D. k= is a much different approach than kmgmt. If the authors were to replace k= with something more expressive, then I'd expect that they would use sdescriptions.

The question that I have raised and that I don't think has been answered is whether k= is sufficient for carrying a digest key. The authors could choose to use MIKEY/kmgmt or they could use sdescriptions. Maybe k= meets the application requirements. I don't know, which is why I asked the question: Is there a need to specify the algorithm with the key?

Mark

Mark

<>
Nathan Stratton BroadVoice, Inc. nathan at robotics.net Talk IS Cheap http://www.robotics.net http://www.broadvoice.com


_______________________________________________
XCON mailing list
XCON at ietf.org
https://www1.ietf.org/mailman/listinfo/xcon

References:
- [XCON] BFCP: SDP usage and k=
  - From: Adam Roach
- [XCON] Re: [MMUSIC] BFCP: SDP usage and k=
  - From: Mark Baugher

Prev by Date: Re: [XCON] Re: [MMUSIC] BFCP: SDP usage and k=
Next by Date: [XCON] Re: [MMUSIC] BFCP: SDP usage and k=
Previous by thread: Re: [XCON] Re: [MMUSIC] BFCP: SDP usage and k=
Next by thread: [XCON] Re: [MMUSIC] BFCP: SDP usage and k=
Index(es):
- Date
- Thread

[XCON] Re: [MMUSIC] BFCP: SDP usage and k=

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.