Hi Russ, sorry for missing this. I have a pull request open against
my spec with the changes I've made.
https://github.com/martinthomson/drafts/pull/31
On 19 April 2016 at 05:35, Russ Housley <housley(_at_)vigilsec(_dot_)com> wrote:
Minor Concerns:
I think it would really help
the reader to say at the beginning something like: "The confidentiality
protections ensure that media is protected from other applications, but
the confidentiality protections do not extend to traffic on the data
channels."
Yes, this is a good change. I have adopted it.
I understand why authentication and confidentiality are often used
together. However, it is very unclear to me why there ought to be a
linkage between c-webrtc and authentication since this service really
is only a promise to not share media with other applications.
I've trimmed down the text on authentication. You are right that it
basically doesn't matter here.
After reading the whole document, I went back and read the Abstract
again. I do not think it captures the real intent of the document.
I've taken a variation on your text. I think that it's a better framing.