Re: [5gangip] [DMM] Fwd: New Version Notification for draft-nordmark-id-loc-privacy-00.txt
Behcet Sarikaya <sarikaya2012@gmail.com> Tue, 03 July 2018 15:36 UTC
Return-Path: <sarikaya2012@gmail.com>
X-Original-To: 5gangip@ietfa.amsl.com
Delivered-To: 5gangip@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6090D130EA8 for <5gangip@ietfa.amsl.com>; Tue, 3 Jul 2018 08:36:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.749
X-Spam-Level:
X-Spam-Status: No, score=-1.749 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MtCcN69uDijX for <5gangip@ietfa.amsl.com>; Tue, 3 Jul 2018 08:36:40 -0700 (PDT)
Received: from mail-wm0-x22d.google.com (mail-wm0-x22d.google.com [IPv6:2a00:1450:400c:c09::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A0693130E68 for <5gangip@ietf.org>; Tue, 3 Jul 2018 08:36:39 -0700 (PDT)
Received: by mail-wm0-x22d.google.com with SMTP id p11-v6so2763180wmc.4 for <5gangip@ietf.org>; Tue, 03 Jul 2018 08:36:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:reply-to:in-reply-to:references:from:date:message-id :subject:to:cc; bh=zj1ITMTNnre2CWU8MHvjMMGzfnygpspt0UWDxuPpfws=; b=M+c9gNKgSU4JdtTKV+q/5EZCYGcuy9P0ViFxtrkXo2TyJoR1ekY185te+pPXGc8rRU yc+pf9AiD0zlDS04nLOrsJr72EZwsu3wxfHb20hfELIxR5i4PBkDBADP0ntwO0ZrExqm vb6Ita8cT7FzlGX0KBLFDWpxI0FOX8BbnDOcEJAgDamE7VUwXC9/85oJQ5gPQJmhQxO4 lMjo5CvUW2wMWtsmzik1rvxTotgxYbtSKgEzRFG3N8/mLUFpoKoY46KL1R1SmHpldxwW bdCCragIn/jZ/KmIe60zc/mAITXq2G1NOr73YPsq/lZz62ANTXrEpXdw055oAn31h1mm pwzg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:reply-to:in-reply-to:references :from:date:message-id:subject:to:cc; bh=zj1ITMTNnre2CWU8MHvjMMGzfnygpspt0UWDxuPpfws=; b=hlUKQB0hXtTZPjQc5VuL6anF/z9GhUf2EP5IfRXEXV44NKsF7UITRdAEO9ArVVK0mZ WHThPGl0mUdBZgDtNEjuF/LCbOZbm2gtilm5ODTUlzJXbDRclau4ms648alHtN99e9cI PqTvPgjS32PLNeDEIuv/xUjfiRKdNxv/mU/tp69z9CSzgHnHXhBc2+/bsTzbJmX0V/7I 71pzfI6WgShHmCmd0W5uv2srJK23LvYrub84mNprB88uI3lGP2hQb0spqLWikT3CHP9o /jtxNA4EBLhSMcx2Ij8EXEJwtbu5xRqwB2XpsmhwA4yRpa7V9pm86pRAVH83X7GkuHix WZsw==
X-Gm-Message-State: APt69E11qZfEJwlkP6F77obcnQsUev7WVCwkrHx309LqH4rcLnBF6p33 Ug+oemwjl7CHQ7izrzoQNu1wyyNWIP7Iri1txM4=
X-Google-Smtp-Source: AAOMgpcdOiwI6Os7YKzA2dhC2rwyQNYxKUF6k39tZlIHr81/4Nd14ssDBdh0y8kXnh0QcEYoA+9sce0jo7mkydGCZfE=
X-Received: by 2002:a1c:1745:: with SMTP id 66-v6mr1684131wmx.38.1530632198070; Tue, 03 Jul 2018 08:36:38 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:a5d:4387:0:0:0:0:0 with HTTP; Tue, 3 Jul 2018 08:36:37 -0700 (PDT)
Reply-To: sarikaya@ieee.org
In-Reply-To: <CAPDqMeoEDbM0FbOHAmWCNU8zmsRvk7cxYCv39OLSrXytdb-BfA@mail.gmail.com>
References: <153057085187.16368.17027473724315322445.idtracker@ietfa.amsl.com> <3c9865b6-5819-ab4c-7d0d-87d36949591a@acm.org> <CAEeTejLoOU2aXhD+SxsHuJ2Xr14aCH0wzj6_PBcQXLxRYQfmzQ@mail.gmail.com> <CAPDqMepRAro+xHbniXFarZ20Ac8PYJGTKBj6619NUsXVgPvhTg@mail.gmail.com> <CAEeTejL-1ZfQerWYOaVXN0M=TB-mSHGTY6YVd91e3SwVbiogCA@mail.gmail.com> <CAPDqMeoEDbM0FbOHAmWCNU8zmsRvk7cxYCv39OLSrXytdb-BfA@mail.gmail.com>
From: Behcet Sarikaya <sarikaya2012@gmail.com>
Date: Tue, 03 Jul 2018 10:36:37 -0500
Message-ID: <CAC8QAcfnWYzaBdosOEhLLFAtof1R5oBYkUkC=jdZsB-LSi2sfw@mail.gmail.com>
To: Jon Crowcroft <jon.crowcroft@cl.cam.ac.uk>
Cc: 5GANGIP <5gangip@ietf.org>
Content-Type: multipart/alternative; boundary="00000000000072ae9205701a1465"
Archived-At: <https://mailarchive.ietf.org/arch/msg/5gangip/TJZkGemGPGpKM-HStA5rkjGSG0w>
Subject: Re: [5gangip] [DMM] Fwd: New Version Notification for draft-nordmark-id-loc-privacy-00.txt
X-BeenThere: 5gangip@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: "Discussion of implications of the upcoming 5th Generation \(fixed and\) Mobile communication systems on IP protocols." <5gangip.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/5gangip>, <mailto:5gangip-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/5gangip/>
List-Post: <mailto:5gangip@ietf.org>
List-Help: <mailto:5gangip-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/5gangip>, <mailto:5gangip-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Jul 2018 15:36:43 -0000
Again in the spirit of clean cc list :-) On Tue, Jul 3, 2018 at 10:33 AM, Tom Herbert <tom@quantonium.net> wrote: > On Tue, Jul 3, 2018 at 8:19 AM, Jon Crowcroft > <jon.crowcroft@cl.cam.ac.uk> wrote: > > beware of sidechannel attacks - eg. a sequence of efficient routes can > > determine a sequence of locations just from latency/rtt estimation > > (observe outbound data and likely return path ack packets) - you want > > privacy, you're gonna pay > > > Jon, let's have it and see what the price is to pay, then we can consider the next steps. Behcet > > Yep, we also know there is a lot of effort being done to extract > information from cipher text like apply machine learning to the data. > As compute and data acquisition techniques advance, attacks on the > Internet only get more sophisticated. Work will always be needed to > mitigate new attacks and that will have cost. It's a never ending > problem, but it's worth it to continually try to solve IMHO. > > Tom > > > > On Tue, Jul 3, 2018 at 5:14 PM, Tom Herbert <tom@quantonium.net> wrote: > >> On Mon, Jul 2, 2018 at 10:01 PM, Jon Crowcroft > >> <jon.crowcroft@cl.cam.ac.uk> wrote: > >>> what we need is compact onion routing - maybe we could call it garlic > routing. > >>> > >>> in all seriousness, if people are worried about privacy with regards > >>> network operators, or state actors co-ercing network operators, at > >>> this level, that is what you want. otherwise forget about efficient > >>> mobile routing - the fact is that the signature of the set of > >>> locations you visit is enough to re-identify a node pretty quickly - > >>> its been done (see wetherall's work on this a few years back on simply > >>> looking at sequences of wifi AP associations, without bothing with end > >>> system mac addr, to uniquely matc individual (indeed, find their home) > >>> - you have to get the threat model appropriately...and proportioately > >> > >> Jon, > >> > >> The threat is not limited to coming from network operators, it is > >> basically from the whole Internet. IP addresses must be sent as clear > >> text, and when they encode personally identifiable information then > >> that can be used by third parties to compromise privacy. In mobile > >> addresses, the threat is both comprising identity and location of the > >> user. Identity can be compromised when the same address (or device > >> specific prefix in case of RFC4941 addresses) is reused for different > >> flows, location is compromised when an address encodes a locator that > >> can be used to determine specific location. There are publicized > >> examples of third parties using IP addresses to expose identity and > >> location (e.g. https://theintercept.com/2018/03/26/facebook-data-ice- > immigration/). > >> > >> In order to provide privacy in addressing, IP addresses need to be > >> purged of PII. This likely entails minimizing aggregation and a high > >> frequency of address change in a host. On the surface, this does seem > >> to be in conflict with "efficient mobile routing" as you mentioned, > >> however I don't believe that efficient routing is an acceptable trade > >> off for not providing adequate privacy to users. Alternatives that > >> achieve both goals should be investigated. > >> draft-herbert-ipv6-prefix-address-privacy-00 suggests "hidden > >> aggregation" as one possibility. > >> > >> Tom > >> > >>> > >>> On Mon, Jul 2, 2018 at 11:42 PM, Erik Nordmark <nordmark@acm.org> > wrote: > >>>> > >>>> This is a rough draft, but hopefully it can stimulate more discussion > around > >>>> privacy considerations. > >>>> > >>>> -------- Forwarded Message -------- > >>>> Subject: New Version Notification for draft-nordmark-id-loc-privacy- > 00.txt > >>>> Date: Mon, 02 Jul 2018 15:34:11 -0700 > >>>> From: internet-drafts@ietf.org > >>>> To: Erik Nordmark <nordmark@sonic.net> > >>>> > >>>> > >>>> A new version of I-D, draft-nordmark-id-loc-privacy-00.txt > >>>> has been successfully submitted by Erik Nordmark and posted to the > >>>> IETF repository. > >>>> > >>>> Name: draft-nordmark-id-loc-privacy > >>>> Revision: 00 > >>>> Title: Privacy issues in ID/locator separation systems > >>>> Document date: 2018-07-02 > >>>> Group: Individual Submission > >>>> Pages: 6 > >>>> URL: > >>>> https://www.ietf.org/internet-drafts/draft-nordmark-id-loc- > privacy-00.txt > >>>> Status: https://datatracker.ietf.org/doc/draft-nordmark-id-loc- > privacy/ > >>>> Htmlized: https://tools.ietf.org/html/ > draft-nordmark-id-loc-privacy-00 > >>>> Htmlized: > >>>> https://datatracker.ietf.org/doc/html/draft-nordmark-id-loc-privacy > >>>> > >>>> > >>>> Abstract: > >>>> There exists several protocols and proposals for identifier/locator > >>>> split which have some form of control plane by which participating > >>>> nodes can use to share their current id to locator information with > >>>> their peers. This document explores some of the privacy > >>>> considerations for such a system. > >>>> > >>>> > >>>> > >>>> > >>>> Please note that it may take a couple of minutes from the time of > submission > >>>> until the htmlized version and diff are available at tools.ietf.org. > >>>> > >>>> The IETF Secretariat > >>>> > >>>> _______________________________________________ > >>>> 5gangip mailing list > >>>> 5gangip@ietf.org > >>>> https://www.ietf.org/mailman/listinfo/5gangip > >>> > >>> _______________________________________________ > >>> 5gangip mailing list > >>> 5gangip@ietf.org > >>> https://www.ietf.org/mailman/listinfo/5gangip > >> > >> _______________________________________________ > >> 5gangip mailing list > >> 5gangip@ietf.org > >> https://www.ietf.org/mailman/listinfo/5gangip > > _______________________________________________ > dmm mailing list > dmm@ietf.org > https://www.ietf.org/mailman/listinfo/dmm >
- [5gangip] Fwd: New Version Notification for draft… Erik Nordmark
- Re: [5gangip] Fwd: New Version Notification for d… Jon Crowcroft
- Re: [5gangip] Fwd: New Version Notification for d… Jon Crowcroft
- Re: [5gangip] Fwd: New Version Notification for d… Tom Herbert
- Re: [5gangip] Fwd: New Version Notification for d… Jon Crowcroft
- Re: [5gangip] [DMM] Fwd: New Version Notification… Behcet Sarikaya
- Re: [5gangip] Fwd: New Version Notification for d… Tom Herbert
- Re: [5gangip] Fwd: New Version Notification for d… Behcet Sarikaya
- Re: [5gangip] Fwd: New Version Notification for d… Dirk.von-Hugo