1. Introduction

As detailed in [RFC8826], one of the potential privacy risks in WebRTC [RFC8825] is the exposure of local IP addresses. When a WebRTC application establishes a peer-to-peer connection, it gathers candidate IP addresses to share with the remote peer for connectivity checks. This process, defined in ICE [RFC8445], can reveal the user's private IP addresses (e.g., within a home or corporate network) to the application and the remote peer.

Exposing local IP addresses can allow fingerprinting of the user (by identifying the network configuration) and potential attacks on local network devices. This document provides recommendations for browsers and applications to manage this risk by limiting which IP addresses are exposed, balancing privacy concerns with the need for optimal direct connectivity.

1. Introduction​

1. Introduction