W3C home > Mailing lists > Public > public-webrtc@w3.org > January 2018

Re: Ban ICE-LITE? Re: webRTC and Content Security Policy connect-src

From: Iñaki Baz Castillo <ibc@aliax.net>
Date: Fri, 12 Jan 2018 14:20:48 +0100
Message-ID: <CALiegfm6wMPC+8Xkno1TDoam+=Aimy4aj-cwJfMVAjfrf18GTg@mail.gmail.com>
To: Harald Alvestrand <harald@alvestrand.no>
Cc: Sergio Garcia Murillo <sergio.garcia.murillo@gmail.com>, T H Panton <thp@westhawk.co.uk>, "public-webrtc@w3.org" <public-webrtc@w3.org>, Cullen Jennings <fluffy@iii.ca>
On 12 January 2018 at 14:19, Harald Alvestrand <harald@alvestrand.no> wrote:
> To me, it sounds like we should ban ICE-LITE altogether.
>
> We've got a lot of security story resting on the idea that the ICE
> request/response requires both ends to have seen the SDP.
> If that isn't true for ICE-LITE, then ICE-LITE is not safe for WebRTC.

That's right. However, did you read my proposal to fix that within
ICE/STUN itself?

-- 
Iñaki Baz Castillo
<ibc@aliax.net>
Received on Friday, 12 January 2018 13:21:34 UTC

This archive was generated by hypermail 2.3.1 : Friday, 12 January 2018 13:21:35 UTC