[Council] zrtp-hash in XEP-0262

Matthew Miller linuxwolf at outer-planes.net
Wed Apr 18 15:00:23 UTC 2012


On Apr 18, 2012, at 08:46, Peter Saint-Andre wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> On 4/18/12 8:41 AM, Kevin Smith wrote:
>> On Wed, Apr 18, 2012 at 3:37 PM, Peter Saint-Andre
>> <stpeter at stpeter.im> wrote:
>>> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
>>> 
>>> Last week I received a note from Phil Zimmermann about ZRTP. He 
>>> pointed out that a separate zrtp-hash attribute must be included
>>> in the signaling for each separate media stream (e.g., if both
>>> audio and video are both included in the session, there must be
>>> two zrtp-hash attributes, one for each media stream, each of
>>> which carries a separate Hello message). Therefore I propose
>>> adding the following sentence to the end of Section 1 of
>>> XEP-0262:
>>> 
>>> Note that to ensure proper security, a separate zrtp-hash is
>>> needed for each media stream (e.g., if a session includes both
>>> audio and video then the values of the <zrtp-hash/> element
>>> included in each <description/> element MUST be different).
>>> 
>>> If the Council thinks that this change requires wider review,
>>> I'll be happy to send a message to the standards@ and jingle@
>>> lists.
>> 
>> Seems (a) reasonable (change) to me.
> 
> Right, it really was implicit before (because the <zrtp-hash/> element
> is a child of the <description/> element), but I think Phil is right
> that it's best to make this explicit.
> 

+1 on making things more normatively explicit!
+1 on the change
0 on widening review


- m&m

Matthew A. Miller
<http://goo.gl/LK55L>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 2238 bytes
Desc: not available
URL: <http://mail.jabber.org/pipermail/council/attachments/20120418/c516af4e/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 535 bytes
Desc: This is a digitally signed message part
URL: <http://mail.jabber.org/pipermail/council/attachments/20120418/c516af4e/attachment.pgp>


More information about the Council mailing list