Minutes for PERC at interim-2016-perc-1

Meeting Minutes Privacy Enhanced RTP Conferencing (perc) WG
Title Minutes for PERC at interim-2016-perc-1
State Active
Other versions plain text
Last updated 2016-01-11

Meeting Minutes

   PERC Virtual Interim - 01.11.2016

Chairs - Richard Barnes, Suhas Nandakumar

* Intro and recap from last call
* Focus: Header extensions
* Question: Do we need E2E-protected header extensions at all?
* Or can the MDD do whatever it wants with extensions?
* Question: If the MDD is limited, what capabilities does it need with regard to extensions?
    * Change the [identifier numbers]
    * Append extensions
    * Append encrypted extensions
    * Remove extensions 
    * Read encrypted extensions
    * Other?

* Magnus: Discussion of header extensions
* Wrap-up: Where are we on the questions?

Summary/Conclusions from the call

End to End Authentication Conclusion - IS DESIRABLE
	a) Removal of authenticated E2E header extension is NOT NEEDED
	b) Mutable with having original authenticated value is OPTIONAL

End to End Confidentiality Conclusion - IS DESIRABLE and NICE TO HAVE
    a) If a use-case demands for a strictly privacy reasons, E2E Conf might be needed 

Individual Extensions Considerations

Transmission Time offsets (RFC5450)
  -- less relevant and might be never be used.
  -- no decision made

SMPTE time-code mapping (RFC5484)
  -- same conclusion as RFC5450
  -- no decision made

Synchronisation metadata (RFC6051)
  -- MDD Modify 	: NO
  -- E2E Auth 		: YES
  -- E2E Conf		: NO

Client to Mixer Audio Level (RFC6464)
  2 plausible options
  Option 1:
    -- E2E Auth		: YES
    -- MDD modify 	: NO
    -- E2E Conf         : NO

    Use-case: Receiving end point being able to detect false audio level
    advertisement by the source. Given the MDD has no view into
    audio, clients end-points can lie easily.

  Option 2:
    -- E2E Auth		: NO
    -- MDD modify 	: YES, Remove at the last hop to the receiver
    -- E2E Conf         : NO
   One might want to use this option to save the bandwidth. Is there
   a real value in removing the extension ?

  * Document the security risk associated with the leaked media content.
  * Might be possible to indicate audio levels in a secure fashion in future.
  * Other option might be to forward all the stream regardless of the 
    audio level (continuous transmission)

Mixer to Client Audio Level (RFC6465)
    -- E2E Auth		: YES
    -- MDD modify 	: NO
    -- E2E Conf         : YES
    This might be needed while:
    	a) source end-point mixes
    	b) end to end contributing sources

    * Need to be confirmed on the list if we need to support source end-point
    mixing use-cases.
    * most cases the recommendation is not to use this approach

Coordination of video orientation (CVO)
    -- E2E Auth		        : YES
    -- MDD modify 	        : NO
    -- E2E Conf                 : ??? (MDD might need to see it in certain use-cases)

Region of Interest (ROI)
   -- Deferred till the group discusses RTCP in perc context.

SDES Information (CNAME)
    -- E2E Auth		        : YES
    -- MDD modify 	        : NO
    -- E2E Conf                 : NO

    * Assume RFC7022 is the way CNAMEs are constructed for PERC purposes.
    * If E2E RTCP is supported, E2E Auth might not be needed.

    -- E2E Auth		: NO
    -- MDD modify 	: YES
    -- E2E Conf         : NO

    * MDD needs to modify and might add a new one
    * From security standpoint, a malicious MDD might end up mixing up streams/layers
    * Do we need the original value in the case of modification for E2E Secure Signaling use-cases

RTP Framemarking
    -- E2E Auth		: YES (also depends on MDD being able to modify)
    -- MDD modify 	: NO (do we need to support last hop removal?)
    -- E2E Conf         : NO

Dealing with Header Extension ID, Negotiation & Misc
  * MDD needs to modify
  * how to handle negotiation of ID vs the usage of a particular extension. 
  * how does this work if the parameters are stripped and IDs are reused.
  * Concern about dealing with E2E header extensions that can be removed by the MDD
    due to far end not supporting a particular extension