Re: [DMM] Stephen Farrell's Discuss on draft-ietf-dmm-4283mnids-04: (with DISCUSS and COMMENT)
Suresh Krishnan <suresh.krishnan@ericsson.com> Thu, 16 February 2017 05:41 UTC
Return-Path: <suresh.krishnan@ericsson.com>
X-Original-To: dmm@ietfa.amsl.com
Delivered-To: dmm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F1DAB1293FC; Wed, 15 Feb 2017 21:41:04 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0smEXSykPyve; Wed, 15 Feb 2017 21:41:03 -0800 (PST)
Received: from usplmg20.ericsson.net (usplmg20.ericsson.net [198.24.6.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21A41120725; Wed, 15 Feb 2017 21:41:03 -0800 (PST)
X-AuditID: c618062d-d5fff700000009d8-f8-58a54b72566c
Received: from EUSAAHC001.ericsson.se (Unknown_Domain [147.117.188.75]) by (Symantec Mail Security) with SMTP id FE.C7.02520.37B45A85; Thu, 16 Feb 2017 07:49:26 +0100 (CET)
Received: from EUSAAMB107.ericsson.se ([147.117.188.124]) by EUSAAHC001.ericsson.se ([147.117.188.75]) with mapi id 14.03.0319.002; Thu, 16 Feb 2017 00:40:58 -0500
From: Suresh Krishnan <suresh.krishnan@ericsson.com>
To: "Stephen Farrell (stephen.farrell@cs.tcd.ie)" <stephen.farrell@cs.tcd.ie>
Thread-Topic: Stephen Farrell's Discuss on draft-ietf-dmm-4283mnids-04: (with DISCUSS and COMMENT)
Thread-Index: AQHSh/PRwQAujh07hES6JsHlZ79hE6FrcmiA
Date: Thu, 16 Feb 2017 05:40:57 +0000
Message-ID: <5E7FEA76-F882-425E-98D9-0D48E50E4AE2@ericsson.com>
References: <148720843433.31432.10415791688976362439.idtracker@ietfa.amsl.com>
In-Reply-To: <148720843433.31432.10415791688976362439.idtracker@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-originating-ip: [147.117.188.11]
Content-Type: multipart/signed; boundary="Apple-Mail=_92CA925C-0EAC-4602-A1B9-D232E3B5803C"; protocol="application/pkcs7-signature"; micalg="sha1"
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFtrJIsWRmVeSWpSXmKPExsUyuXSPt26Z99IIg5//pSw6Tm9mtrj/qMbi 1sJDLBYz/kxkttg77SaLxfS919gd2Dwmvv3I4rG2+yqbx5IlP5kCmKO4bFJSczLLUov07RK4 MjY3nmUsuO9W8eLOB/YGxqsOXYycHBICJhLdD7axdTFycQgJrGeUOL3oD5SznFFi1bwdTCBV bEBVG3Z+BrNFBHwl5u55zAxSxCzwhlHi94xOFpCEsECyROfXA2wQRSkSZ57cY4SwjST6Hh5n BbFZBFQlet/1gdXwCthLnDzTDjSIA2ibn8TlfzYgYU4Bf4mDq9eyg9iMAmIS30+tAdvLLCAu cevJfCaIq0UkHl48zQZhi0q8fPyPFcJWkvj4ez47xG1TgB5Y2swIsUtQ4uTMJywTGEVmIZk1 C1ndLCR1EEXaEssWvmaeBXQfs4COxOSFjBBhU4nXRz9C2dYSM34dZIOwFSWmdD9kX8DIsYqR o7S4ICc33chgEyMwEo9JsOnuYLw/3fMQowAHoxIPr8HSJRFCrIllxZW5hxhVgFofbVh9gVGK JS8/L1VJhLeNeWmEEG9KYmVValF+fFFpTmrxIUZpDhYlcd641ffDhQTSE0tSs1NTC1KLYLJM HJxSDYxJTzh+lTy690tOU/KtluG+yyKhMmVLzuvucrxut7LWt+9fRIJd3FWhcmadibvqFgQ4 vvn1kvdBbm7u0Q+Tp0aemCMqoartfcD9qOxyXq3tvLaVHu/YTiV61Z/q2MW+iUc0ZHOx+E6L vXJv10Y+Whtivu+b2vxV/w+dmHBVjnu7JkOdGV+T3FslluKMREMt5qLiRADuHcHLzAIAAA==
Archived-At: <https://mailarchive.ietf.org/arch/msg/dmm/CRLGDSsPDWWFf3iJOzLZrbQuGG0>
Cc: "max.ldp@alibaba-inc.com" <max.ldp@alibaba-inc.com>, "draft-ietf-dmm-4283mnids@ietf.org" <draft-ietf-dmm-4283mnids@ietf.org>, "dmm-chairs@ietf.org" <dmm-chairs@ietf.org>, The IESG <iesg@ietf.org>, "dmm@ietf.org" <dmm@ietf.org>
Subject: Re: [DMM] Stephen Farrell's Discuss on draft-ietf-dmm-4283mnids-04: (with DISCUSS and COMMENT)
X-BeenThere: dmm@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Distributed Mobility Management Working Group <dmm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dmm>, <mailto:dmm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dmm/>
List-Post: <mailto:dmm@ietf.org>
List-Help: <mailto:dmm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dmm>, <mailto:dmm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 16 Feb 2017 05:41:05 -0000
Hi Stephen, > On Feb 15, 2017, at 8:27 PM, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote: > > Stephen Farrell has entered the following ballot position for > draft-ietf-dmm-4283mnids-04: Discuss > > When responding, please keep the subject line intact and reply to all > email addresses included in the To and CC lines. (Feel free to cut this > introductory paragraph, however.) > > > Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html > for more information about IESG DISCUSS and COMMENT positions. > > > The document, along with other ballot positions, can be found here: > https://datatracker.ietf.org/doc/draft-ietf-dmm-4283mnids/ > > > > ---------------------------------------------------------------------- > DISCUSS: > ---------------------------------------------------------------------- > > > I don't consider that merely mentioning that there are some > privacy issues (maybe) is nearly sufficient here. Instead I > would argue that any of these identifier types that could have > privacy implications need to be specifically justified or else > dropped. By specifically justified, I mean that there ought be > an argument (and a fairly holistic one) that the Internet is > better, and not worse, if we define a codepoint that allows > MIPv6 (and later, other protocols) to use that identifier. I > do accept that my position is perhaps innovative, in terms of > IETF processes, so I'll split the discuss into two parts, one > process oriented and mostly for the IESG, and the second > relating to the content of the draft. > > (1) For the IESG: is it ok that we introduce (codepoints for) > a slew of new long-term stable privacy-sensitive identifiers > just because they might someday be needed, or do we need to > have specific justification for defining such things? I would > argue the latter, but that may need us to validate that there > is IETF consensus for that somehow, and perhaps in the > meantime hold on to this draft. Part of my reasoning is that > once we define such codepoints (e.g. for IMSIs) then that > inevitably means that other protocols, and not just MIPv6, > will do the same eventually, so accepting this draft basically > means accepting that we end up commonly and perhaps > carelessly, passing such highly-sensitive information about on > the Internet in many protocols and in many contexts. My > argument here I think does adhere to various of our BCPs that > do argue for security and privacy, but I do also accept that > this may be novel and to some extent goes against another of > our generally accepted ideas which is that we benefit from > folks documenting things even if those things are sub-optimal > in various ways. So I'd argue this is a real case for an IESG > discussion - I know what I think, but what do the rest of you > think? Yes. I think it is worth having that discussion given that few more ADs have expressed concerns similar to yours. On the flip side, I think at least few of these identifiers are already conveyed using other layers in some of the SDO networks. Regards Suresh
- [DMM] Stephen Farrell's Discuss on draft-ietf-dmm… Stephen Farrell
- Re: [DMM] Stephen Farrell's Discuss on draft-ietf… Suresh Krishnan
- Re: [DMM] Stephen Farrell's Discuss on draft-ietf… Charlie Perkins
- Re: [DMM] Stephen Farrell's Discuss on draft-ietf… Suresh Krishnan
- Re: [DMM] Stephen Farrell's Discuss on draft-ietf… Sri Gundavelli (sgundave)
- [DMM] FW: Stephen Farrell's Discuss on draft-ietf… Sri Gundavelli (sgundave)
- Re: [DMM] Stephen Farrell's Discuss on draft-ietf… Stephen Farrell