Unknown Key-Share Attacks on Uses of TLS with the Session Description Protocol
RFC 8844, “Unknown Key-Share Attacks on Uses of TLS with the Session Description Protocol”, is a Proposed Standard document published in January 2021 by M. Thomson, E. Rescorla. It updates RFC 8122. The canonical text is published by the RFC Editor.
Abstract
This document describes unknown key-share attacks on the use of Datagram Transport Layer Security for the Secure Real-Time Transport Protocol (DTLS-SRTP). Similar attacks are described on the use of DTLS-SRTP with the identity bindings used in Web Real-Time Communications (WebRTC) and SIP identity. These attacks are difficult to mount, but they cause a victim to be misled about the identity of a communicating peer. This document defines mitigation techniques that implementations of RFC 8122 are encouraged to deploy.
What “Proposed Standard” means
An entry-level standards-track specification: stable, peer-reviewed and a solid basis for implementation, though it may still evolve before becoming an Internet Standard.
The canonical text of RFC 8844 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 8843 Negotiating Media Multiplexing Using the Session Description Protocol
- RFC 8845 Framework for Telepresence Multi-Streams
- RFC 8842 Session Description Protocol Offer/Answer Considerations for Datagram Transport Layer Security and Transport Layer Security
- RFC 8846 An XML Schema for the Controlling Multiple Streams for Telepresence Data Model
- RFC 8841 Session Description Protocol Offer/Answer Procedures for Stream Control Transmission Protocol over Datagram Transport Layer Security Transport
- RFC 8847 Protocol for Controlling Multiple Streams for Telepresence
- RFC 8840 A Session Initiation Protocol Usage for Incremental Provisioning of Candidates for the Interactive Connectivity Establishment
- RFC 8848 Session Signaling for Controlling Multiple Streams for Telepresence