Re: [dnssd] I-D Action: draft-huitema-dnssd-privacy-00.txt
"Christian Huitema" <huitema@huitema.net> Wed, 23 March 2016 04:27 UTC
Return-Path: <huitema@huitema.net>
X-Original-To: dnssd@ietfa.amsl.com
Delivered-To: dnssd@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 245D312D6F3 for <dnssd@ietfa.amsl.com>; Tue, 22 Mar 2016 21:27:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.501
X-Spam-Level:
X-Spam-Status: No, score=-0.501 tagged_above=-999 required=5 tests=[BAYES_05=-0.5, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PluO5vdkhPyU for <dnssd@ietfa.amsl.com>; Tue, 22 Mar 2016 21:27:54 -0700 (PDT)
Received: from xsmtp11.mail2web.com (xsmtp31.mail2web.com [168.144.250.234]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7575212D66A for <dnssd@ietf.org>; Tue, 22 Mar 2016 21:27:54 -0700 (PDT)
Received: from [10.5.2.14] (helo=xmail04.myhosting.com) by xsmtp11.mail2web.com with esmtps (TLS-1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.63) (envelope-from <huitema@huitema.net>) id 1aiaMc-0000Lx-4z for dnssd@ietf.org; Wed, 23 Mar 2016 00:27:53 -0400
Received: (qmail 21925 invoked from network); 23 Mar 2016 04:25:45 -0000
Received: from unknown (HELO huitema1) (Authenticated-user:_huitema@huitema.net@[24.16.156.113]) (envelope-sender <huitema@huitema.net>) by xmail04.myhosting.com (qmail-ldap-1.03) with ESMTPA for <dnssd@ietf.org>; 23 Mar 2016 04:25:44 -0000
From: Christian Huitema <huitema@huitema.net>
To: 'Tim Chown' <tjc@ecs.soton.ac.uk>, dnssd@ietf.org
References: <20160310013909.9336.65458.idtracker@ietfa.amsl.com> <7E27ED38-3858-4080-A31E-2116EA2DD436@ecs.soton.ac.uk> <EMEW3|53a64596503ce821209d6d873fee625as2GNBl03tjc|ecs.soton.ac.uk|7E27ED38-3858-4080-A31E-2116EA2DD436@ecs.soton.ac.uk>
In-Reply-To: <EMEW3|53a64596503ce821209d6d873fee625as2GNBl03tjc|ecs.soton.ac.uk|7E27ED38-3858-4080-A31E-2116EA2DD436@ecs.soton.ac.uk>
Date: Tue, 22 Mar 2016 21:25:43 -0700
Message-ID: <055301d184bc$11a0e450$34e2acf0$@huitema.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="Windows-1252"
Content-Transfer-Encoding: 7bit
X-Mailer: Microsoft Outlook 15.0
Thread-Index: AQIT3HtUSd1CzI+WTk3PSxCkI12h1wJZ1p8tAxB9ygCetmoE8A==
Content-Language: en-us
Archived-At: <http://mailarchive.ietf.org/arch/msg/dnssd/fCHVBzpXJRR7liDlJMSKnPXqu1k>
Subject: Re: [dnssd] I-D Action: draft-huitema-dnssd-privacy-00.txt
X-BeenThere: dnssd@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Discussion of extensions to Bonjour \(mDNS and DNS-SD\) for routed networks." <dnssd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnssd>, <mailto:dnssd-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnssd/>
List-Post: <mailto:dnssd@ietf.org>
List-Help: <mailto:dnssd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnssd>, <mailto:dnssd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Mar 2016 04:27:56 -0000
On Thursday, March 17, 2016 4:12 PM, Tim Chown wrote: > > Hi, > > Ralph and I would welcome comments to the list on this draft. > > Tim Yep. Me too. This draft (https://datatracker.ietf.org/doc/draft-huitema-dnssd-privacy/) is the continuation of the work to minimize metadata disclosure went moving to random locations, and in particular when connecting to Wi-Fi hot spots. The first big disclosure comes with the MAC address, and can be addressed with MAC address randomization. The next big disclosure are the DHCP messages, which use to disclose things like DNS name of the node, and the DNS traffic, which would happily pass a full log of visited URL to the DNS server chosen by the hot spot manager. The IETF has been working on that with the DHCP anonymity profile, and with the DNS Privacy work in DPRIVE. Which means we have to look at the next big disclosure source, which happens to be DNS-SD. The draft proposes essentially to obfuscate the names used in DNS-SD so that cooperating parties understand them, but they look like gibberish to casual observers. I am sure that DNS-SD WG members have opinions about that. -- Christian Huitema
- [dnssd] Fwd: I-D Action: draft-huitema-dnssd-priv… Tim Chown
- Re: [dnssd] I-D Action: draft-huitema-dnssd-priva… Christian Huitema
- Re: [dnssd] I-D Action: draft-huitema-dnssd-priva… Alf Watt
- Re: [dnssd] I-D Action: draft-huitema-dnssd-priva… Tom Pusateri
- Re: [dnssd] I-D Action: draft-huitema-dnssd-priva… Alf Watt
- Re: [dnssd] I-D Action: draft-huitema-dnssd-priva… Christian Huitema
- Re: [dnssd] I-D Action: draft-huitema-dnssd-priva… Alf Watt