Re: [Cfrg] tcpinc: endpoint authentication and session ID privacy

"Salz, Rich" <rsalz@akamai.com> Sat, 01 October 2016 15:48 UTC

Return-Path: <rsalz@akamai.com>
X-Original-To: cfrg@ietfa.amsl.com
Delivered-To: cfrg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 75DFA12B0FE for <cfrg@ietfa.amsl.com>; Sat, 1 Oct 2016 08:48:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.797
X-Spam-Level:
X-Spam-Status: No, score=-3.797 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-2.996, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=akamai.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id eeArJRboLUmQ for <cfrg@ietfa.amsl.com>; Sat, 1 Oct 2016 08:48:32 -0700 (PDT)
Received: from prod-mail-xrelay07.akamai.com (prod-mail-xrelay07.akamai.com [23.79.238.175]) by ietfa.amsl.com (Postfix) with ESMTP id 476E912B0FD for <cfrg@irtf.org>; Sat, 1 Oct 2016 08:48:32 -0700 (PDT)
Received: from prod-mail-xrelay07.akamai.com (localhost.localdomain [127.0.0.1]) by postfix.imss70 (Postfix) with ESMTP id 1956743342F; Sat, 1 Oct 2016 15:48:31 +0000 (GMT)
Received: from prod-mail-relay10.akamai.com (prod-mail-relay10.akamai.com [172.27.118.251]) by prod-mail-xrelay07.akamai.com (Postfix) with ESMTP id 03201433420; Sat, 1 Oct 2016 15:48:31 +0000 (GMT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=akamai.com; s=a1; t=1475336911; bh=S1B3PH6UtP3drXegMBc5Hz81Si6ZTdue/Y9JJl8za8s=; l=374; h=From:To:CC:Date:References:In-Reply-To:From; b=KdHnP+oKrLvbBvB470LfnCACE6A05UKPTPMTiwL58t5ZZHaqOlh/+qA/tKE/OL9Az o1trGjhJbyoTKMBobrhZJeSqrElEleNtWamVjD0fpK49IOruHkoKmmhuHzJurF8XFp 2+i24mXDD740RqoWHaIYqNLeOG8mYvFSCdChdSWA=
Received: from email.msg.corp.akamai.com (ecp.msg.corp.akamai.com [172.27.123.34]) by prod-mail-relay10.akamai.com (Postfix) with ESMTP id F3FA91FC86; Sat, 1 Oct 2016 15:48:30 +0000 (GMT)
Received: from USMA1EX-DAG1MB1.msg.corp.akamai.com (172.27.123.101) by usma1ex-dag1mb1.msg.corp.akamai.com (172.27.123.101) with Microsoft SMTP Server (TLS) id 15.0.1178.4; Sat, 1 Oct 2016 11:48:30 -0400
Received: from USMA1EX-DAG1MB1.msg.corp.akamai.com ([172.27.123.101]) by usma1ex-dag1mb1.msg.corp.akamai.com ([172.27.123.101]) with mapi id 15.00.1178.000; Sat, 1 Oct 2016 11:48:30 -0400
From: "Salz, Rich" <rsalz@akamai.com>
To: Kyle Rose <krose@krose.org>, "cfrg@irtf.org" <cfrg@irtf.org>
Thread-Topic: [Cfrg] tcpinc: endpoint authentication and session ID privacy
Thread-Index: AQHSG/j/pkcxIpLro0+llTewYIbLyaCTvl7A
Date: Sat, 01 Oct 2016 15:48:29 +0000
Message-ID: <a78ce42cf3504cbbb35735b0f45bc43b@usma1ex-dag1mb1.msg.corp.akamai.com>
References: <CAJU8_nXtwpe1_8UpKtKnG3fmpMWuMW7Zcj6SzPAnZ9jmJi9T2g@mail.gmail.com>
In-Reply-To: <CAJU8_nXtwpe1_8UpKtKnG3fmpMWuMW7Zcj6SzPAnZ9jmJi9T2g@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [172.19.41.84]
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/cfrg/Cfpsy1QHWAx2PANaNq9dM7OY_nY>
Cc: "tcpinc-chairs@ietf.org" <tcpinc-chairs@ietf.org>
Subject: Re: [Cfrg] tcpinc: endpoint authentication and session ID privacy
X-BeenThere: cfrg@irtf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Crypto Forum Research Group <cfrg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/cfrg>, <mailto:cfrg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/cfrg/>
List-Post: <mailto:cfrg@irtf.org>
List-Help: <mailto:cfrg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/cfrg>, <mailto:cfrg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Sat, 01 Oct 2016 15:48:34 -0000

> The authors claim (and I am inclined to agree, though I am not a cryptographer) that these session IDs do not in general need to be private


Is correlation possible, such as when I move from my NATted home to work?  (Yes, this is a basic/naïve question, sorry.)