Re: [webrtc-stats] Add stats for the negotiated DTLS-SRTP and DTLS cipher suites. from Taylor Brandstetter via GitHub on 2017-10-12 (public-webrtc-logs@w3.org from October 2017)

From: Taylor Brandstetter via GitHub <sysbot+gh@w3.org>
Date: Thu, 12 Oct 2017 20:56:23 +0000
To: public-webrtc-logs@w3.org
Message-ID: <issue_comment.created-336264326-1507841767-sysbot+gh@w3.org>

> Is this the stream cipher only, or does it include the cert ciphers?

Is the cert cipher represented by `RTCCertificateStats.fingerprintAlgorithm`, or are you referring to something different?

> Is there a reference to (D)TLS that you can use to give its definition?

`dtlsCipher` would be the selected "cipher suite" as defined in RFC6101, and `srtpCipher` would be the selected "DTLS-SRTP SRTP Protection Profile" as defined in RFC5764.

> How does this tie in to which certificate you used?

The certificates are used for authentication, and (I believe) play a role in encrypting the key that's ultimately used for media.

> Should it be per-transport or per-certificate?

Per-transport.



-- 
GitHub Notification of comment by taylor-b
Please view or discuss this issue at https://github.com/w3c/webrtc-stats/issues/248#issuecomment-336264326 using your GitHub account

Received on Thursday, 12 October 2017 20:56:18 UTC