Skip to content

Cloud Recording Encryption: Provide AdditionalInfo configuration #625

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
jmelancongen wants to merge 47 commits into
base: development
Choose a base branch
from
Open

Cloud Recording Encryption: Provide AdditionalInfo configuration #625

jmelancongen wants to merge 47 commits into from

Conversation

@jmelancongen
Copy link
Contributor

@jmelancongen jmelancongen commented Sep 3, 2025
edited
Loading

As discussed during the last telco, we've identified a potential vulnerability in the current proposal at #545 that can happen under these conditions:

  • The system relies on a key server to decrypt PSSH boxes instead of distributing private keys to end-users
  • The configured public keys are reused for multiple devices, for example the keypairs are used for an entire customer account.
  • A threat actor is authorized to view one (Camera X), but not all devices on that account
image

Under these conditions, if the threat actor retrieves encrypted files from other devices, it could request decryption of their PSSH boxes to the key server by claiming these are from Camera X.

The core of the issue is that the Key Server only has the PSSH box as context for its operations. Any other information (url, query parameters, etc) are under the control of the threat actor and cannot be trusted.

The solution to this is the use of the Info field of HPKE, which allows additional data to be used to authenticate the encrypted payload. The Key Server can then know the structure of that field, and perform validations on it, knowing that if the field was tampered, decryption will fail. The field value is provided by the client at configuration time.

Maxime Bédard and others added 30 commits May 23, 2023 11:17
@jflevesque-genetec
Detail the file structure of frame encrypted files
490a0b9
@jflevesque-genetec
Support key rotation for cloud recording
060043f
@jflevesque-genetec
Clarify usage of sym key generated by key rotation
32bdfbc
@jflevesque-genetec
Review formatting and wording of the latest changes
51a188f
@jflevesque-genetec
Clarified wording for the initialization vector
127560b
@jflevesque-genetec
Add certificateId to the data model
1a7d3fd
@jflevesque-genetec
Update pssh box to support multiple certificates
6a3141e
@jflevesque-genetec
Rename and change type for CertificateId in RecordingEncryption
8e197fd
@jflevesque-genetec
Merge branch 'onvif:development' into video/cloud-encryption
96bbd89
@jflevesque-genetec
Apply code review suggestions
3c565d8
@jflevesque-genetec
Update the specification and wording to explicitely define the 2 encr…
e23cca7 
…yption methods
@jflevesque-genetec
Update box definition by using ISOBMFF syntax
af7c136
@jflevesque-genetec
Add padding for encryption key
ac2c863
@jflevesque-genetec
Fix link reference
470f3c9
@jflevesque-genetec
Update CENC to only require the box when using static key encryption
f5860a2
@jflevesque-genetec
Update asymmetric key system description
b8f1adb
@jflevesque-genetec
Update WSDL to return to old data model
dfa96bf
@jflevesque-genetec
Update spec to revert data model so as not to break compatibility
709cf98
@jflevesque-genetec
Fixed typo and remove unused type
8475e50
@jflevesque-genetec
Rename Certificate to AsymmetricEncryption element in wsdl
1181d90
@jflevesque-genetec
Add mention that full key must be used for encryption
a223d7a
@jmelancongen
Merge branch 'development' into video/cloud-encryption
bbca0e1
@jmelancongen
Capabilities & fix advanced security in onvif.xsd
6760db7
@jmelancongen
Cleanup references
8ee1e37
@jmelancongen
Add RSA & EC encryption strategies to recording
48f2744
@jmelancongen
Small cleanups
fb256ba
@jmelancongen
Remove obsolete mention to SHA-1
e308c44
@jmelancongen
Describe how the EncapsulatedSharedSecretSize is calculated
3d53419
@jmelancongen
Clarifications on encryption diagram
7de1b7d
@jmelancongen
Clarifications on configuration & schemes names
11719b8
jmelancongen and others added 14 commits May 26, 2025 09:45
@jmelancongen
Undo unrelated styling changes
ee82c33
@jmelancongen @bsriramprasad
Update doc/RecordingControl.xml
0f223bd 
Co-authored-by: Sriram Bhetanabottla <sriram.bhetanabottla@axis.com>
@jmelancongen @bsriramprasad
Fix typo
10dd6ac 
Co-authored-by: Sriram Bhetanabottla <sriram.bhetanabottla@axis.com>
@jmelancongen @bsriramprasad
Apply suggestions from code review
892a08b 
Co-authored-by: Sriram Bhetanabottla <sriram.bhetanabottla@axis.com>
@jmelancongen
Add RFC & IANA references
0366971
@jmelancongen
Add fault for ambiguous configuration
af34ca4
@jmelancongen
Apply review
9078d6e
@jmelancongen
Complete review
2c42931
@jmelancongen
Remove useless certificate thumbprint algorithm field in PSSH
71f244b
@jmelancongen
Unify the naming of parameters for Encryption V1 and V2
845d4b4
@jmelancongen
Reword Key/KID in the Asymmetric section to differentiate with the co…
b264e7d 
…nfig values
@jmelancongen
Update the SystemId for Asymmetric Encryption due to prior art
6ab7fa4
@jmelancongen
Rename EncryptedKey to EncryptedSymmetricKey to match diagram
1cd325c
@jmelancongen
Add AdditionalInfo configuration field
30d0690
@kieran242 kieran242 mentioned this pull request Sep 3, 2025
Merged
@jmelancongen jmelancongen changed the base branch from development to video/cloud-encryption September 3, 2025 13:52
kieran242
kieran242 approved these changes Sep 4, 2025
View reviewed changes
Copy link
Contributor

@kieran242 kieran242 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@jmelancongen Well thought out sir. I am happy to approve understanding the context from #545.

Base automatically changed from video/cloud-encryption to development September 5, 2025 10:26
@sujithhanwha
Copy link
Contributor

sujithhanwha commented Sep 9, 2025

@jmelancongen , Is this vulnerability only relevant when the same key is used across an entire organization, requiring permissions to be managed via the Info field? If we instead assign distinct certificates to user groups within the organization, would that mitigate the issue?

@jmelancongen
Copy link
Contributor Author

jmelancongen commented Sep 9, 2025

As soon as a public key is used with more than one device. The only mitigation (without this PR) would be to set a distinct keypair for each and every device in the system, which will make management and rotation of these quite painful in large deployments. This proposal resolves this problem using the mechanism that are designed specifically for this purpose

@ocampana-videotec ocampana-videotec added this to the 26.06 milestone Dec 4, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sujithhanwha sujithhanwha sujithhanwha approved these changes

@kieran242 kieran242 kieran242 approved these changes

Assignees

No one assigned

Labels

26.06 IPR needed WG_enh

Projects

None yet

Milestone

26.06

Development

Successfully merging this pull request may close these issues.

6 participants

@jmelancongen @sujithhanwha @kieran242 @ocampana-videotec @jflevesque-genetec