Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Updates security considerations #30

Merged
merged 3 commits into from Mar 30, 2017

Conversation

Projects
None yet
3 participants
@gloinul
Copy link
Contributor

gloinul commented Mar 27, 2017

The proposal for update securituy considerations that has been circulated on the mailing lists.

gloinul added some commits Mar 27, 2017

Updates security considerations
The proposal for update securituy considerations that has been
circulated on the mailing lists.
@ekr

ekr approved these changes Mar 28, 2017

Copy link

ekr left a comment

LGTM

in certain situations.
</t>
pageno="false" target="RFC5888"/> apply to the BUNDLE extension. Bundle
does not change which information, e.g., RTP streams, that flows over

This comment has been minimized.

@ekr

ekr Mar 28, 2017

you can remove "that"

discussed below. Primarily it changes which addresses and ports, and
thus in which (RTP) sessions that the information is flowing in. This
affects the security contexts being used and can cause previously
separated information flows to share security context. This has very

This comment has been minimized.

@ekr

ekr Mar 28, 2017

"to share the same security context"

sessions. In cases where one would have applied different security
policies on the different RTP streams being bundled, or where the
parties having access to the security contexts would have differed
between the RTP stream additional analysis of the implications are

This comment has been minimized.

@ekr

ekr Mar 28, 2017

comma after "RTP stream".

at least per direction or endpoint. When using SRTP this will be the
case, at least for the IETF defined key-management solutions due to
their SDP attributes (a=crypto, a=fingerprint, a=mikey) and their
classification in <xref target="I-D.ietf-mmusic-sdp-mux-attributes"/>.</t>

This comment has been minimized.

@ekr

ekr Mar 28, 2017

Might want to fix the indent here.

classification in <xref target="I-D.ietf-mmusic-sdp-mux-attributes"/>.</t>

<t><xref target="RFC7941">"RTP Header Extension for the RTP Control
Protocol (RTCP) Source Description Items"</xref> security consideration

This comment has been minimized.

@ekr

ekr Mar 28, 2017

The security considerations of...

<t><xref target="RFC7941">"RTP Header Extension for the RTP Control
Protocol (RTCP) Source Description Items"</xref> security consideration
requires that when RTCP is confidentiality protected that any SDES RTP
header extension carrying an SDES item, like the MID RTP header

This comment has been minimized.

@ekr

ekr Mar 28, 2017

s/like/such as/

@cdh4u cdh4u merged commit 6486ec7 into cdh4u:master Mar 30, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.