Hi all,
I just ran into this document recently and I am wondering (in light of
the recent discussions) whether this is a good document to publish:
Securing the RTP Protocol Framework: Why RTP Does Not Mandate a Single
Media Security Solution
draft-ietf-avt-srtp-not-mandatory-13.txt
Abstract
This memo discusses the problem of securing real-time multimedia
sessions, and explains why the Real-time Transport Protocol (RTP),
and the associated RTP control protocol (RTCP), do not mandate a
single media security mechanism. Guidelines for designers and
reviewers of future RTP extensions are provided, to ensure that
appropriate security mechanisms are mandated, and that any such
mechanisms are specified in a manner that conforms with the RTP
architecture.
http://tools.ietf.org/html/draft-ietf-avt-srtp-not-mandatory-13
I am wondering whether we do ourselves a favor with trying to justify
the situation and whether there is a chance to fix the problem, at least
on the specification side.
Ciao
Hannes
_______________________________________________
perpass mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/perpass
