IETF Logo Mail Archive

Re: [ietf-privacy] 答复: Re: 答复: RE: anonymity definition in"draft-hansen-privacy-terminology-03"

Stephen Farrell <stephen.farrell@cs.tcd.ie> Sat, 25 February 2012 13:07 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: ietf-privacy@ietfa.amsl.com
Delivered-To: ietf-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 56E3F21F8587 for <ietf-privacy@ietfa.amsl.com>; Sat, 25 Feb 2012 05:07:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.373
X-Spam-Level:
X-Spam-Status: No, score=-102.373 tagged_above=-999 required=5 tests=[AWL=-0.226, BAYES_00=-2.599, MIME_8BIT_HEADER=0.3, SARE_SUB_ENC_UTF8=0.152, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OUJj11FdQYT8 for <ietf-privacy@ietfa.amsl.com>; Sat, 25 Feb 2012 05:07:12 -0800 (PST)
Received: from scss.tcd.ie (hermes.scss.tcd.ie [IPv6:2001:770:10:200:889f:cdff:fe8d:ccd2]) by ietfa.amsl.com (Postfix) with ESMTP id 431A521F858A for <ietf-privacy@ietf.org>; Sat, 25 Feb 2012 05:07:11 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by hermes.scss.tcd.ie (Postfix) with ESMTP id 02393171C9E; Sat, 25 Feb 2012 13:07:08 +0000 (GMT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cs.tcd.ie; h= content-transfer-encoding:content-type:in-reply-to:references :subject:mime-version:user-agent:from:date:message-id:received :received:x-virus-scanned; s=cs; t=1330175227; bh=PeMi7D0AYUVYE5 YNj9JAWV6wGXAbie1rNNdkDVLf5v4=; b=s8siUIGnn0Xx3ZTHj5+jirXxmhWNd1 6xbzkhIMO9+pn08nNJNgjKS7YFfIy96hFWPId2IBS/yE5y4uAd1u4w8Z5VLLaNmj BR1+FgbcCRgTHsaAaTeNWudSmC59yJY4/Ktf9wzh+KIxBs+D3WIJ5baxkoeCd1YX FuGlm6uOgY7V2bYuMJQyFl9a9JplaRdI+wnNScMmyoNHeTXRsBqWMppyKlsLJz1O oUa/KdYhftFGy6eMjy5SYPrxOqMJC2LsJ+GAUasZDh7/INq9FqwYbj8dBLO7wwmS k1RTwiZy1bUayNHaEf8JDpP0PrXafNk2LHtvkxiOZuB/buFST+wztHhg==
X-Virus-Scanned: Debian amavisd-new at scss.tcd.ie
Received: from scss.tcd.ie ([127.0.0.1]) by localhost (scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10027) with ESMTP id Moyd+jLeGlpm; Sat, 25 Feb 2012 13:07:07 +0000 (GMT)
Received: from [10.87.48.7] (unknown [86.42.23.11]) by smtp.scss.tcd.ie (Postfix) with ESMTPSA id 6EC75171C2F; Sat, 25 Feb 2012 13:07:06 +0000 (GMT)
Message-ID: <4F48DCFA.4010105@cs.tcd.ie>
Date: Sat, 25 Feb 2012 13:07:06 +0000
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux i686 on x86_64; rv:10.0.2) Gecko/20120216 Thunderbird/10.0.2
MIME-Version: 1.0
To: David Chadwick <d.w.chadwick@kent.ac.uk>
References: <OFB573E6ED.4083D82F-ON482579A5.0020B5E3-482579A5.00218D60@zte.com.cn> <EA284556-1D73-47E9-A34E-F47643BAEAB9@cardiff.ac.uk> <4F441C90.4090202@kent.ac.uk> <50C44B6C-9C01-403B-938B-E8582AED790B@gmx.net> <41983DCE-76CD-4CC9-9EFC-CFEC3950F352@wierenga.net> <4F481028.1010302@kent.ac.uk>
In-Reply-To: <4F481028.1010302@kent.ac.uk>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 8bit
Cc: "ietf-privacy@ietf.org" <ietf-privacy@ietf.org>
Subject: Re: [ietf-privacy] 答复: Re: 答复: RE: anonymity definition in"draft-hansen-privacy-terminology-03"
X-BeenThere: ietf-privacy@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Internet Privacy Discussion List <ietf-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-privacy>, <mailto:ietf-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-privacy>
List-Post: <mailto:ietf-privacy@ietf.org>
List-Help: <mailto:ietf-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-privacy>, <mailto:ietf-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 25 Feb 2012 13:07:17 -0000

Well, regardless of venue, seeing a few drafts
that showed us good ways to handle privacy in IETF
protocols would be useful IMO.

For example, the IESG recently reviewed the SIP
common log format. [1] As part of the review I asked
if the WG had considered privacy and the answer was
essentially no and nor had they thought about any
privacy-friendly ways to handle identifiers in
log files that might be exchanged between domains.

It'd have been great to be able to say "go look
at RFC xxxx where it shows you ten possible ways
to do that."

S

[1] http://datatracker.ietf.org/doc/draft-ietf-sipclf-problem-statement/


On 02/24/2012 10:33 PM, David Chadwick wrote:
> Hi Klaas
>
> I agree with you. It might that IRTF is more appropriate for some work
> items, but this is something the ADs can decide
>
> regards
>
> David
>
> On 24/02/2012 18:56, Klaas Wierenga wrote:
>> Hi Hannes,
>>
>> Perhaps I am mistaken, but it seems that there is a bit too much
>> focus on what is possible with *todays* technology. I would rather
>> like to focus on properties we would *like* to see, and possibly work
>> on those in the IETF (but most likely other fora).... But still that
>> is probably not for a terminology document, but I do think we need to
>> be able to express all desirable properties using the terms from the
>> terminology document.
>>
>> Klaas
>>
>> Sent from my iPad
>>
>> On 24 feb. 2012, at 19:47, Hannes
>> Tschofenig<hannes.tschofenig@gmx.net> wrote:
>>
>>> Hi David,
>>>
>>> this specific case seems to have pretty tough privacy requirements:
>>> you want to avoid having relying parties to know who the identity
>>> providers are AND also want to avoid letting identity providers
>>> know which relying parties data subjects talk to AND finally you
>>> want to avoid collusion among relying parties to learn more about
>>> data subjects.
>>>
>>> It is interesting to see how a set of privacy requirements produce
>>> a system that has questionable privacy properties...
>>>
>>> Ciao Hannes
>>>
>>> PS: Whenever one talks about trust it is useful to mention 'who is
>>> trusted by whom to do what'.
>>>
>>> On Feb 22, 2012, at 12:37 AM, David Chadwick wrote:
>>>
>>>>
>>>>
>>>> On 20/02/2012 17:16, Rhys Smith wrote:
>>>>> On 15 Feb 2012, at 06:06, zhou.sujing@zte.com.cn
>>>>> <mailto:zhou.sujing@zte.com.cn> wrote:
>>>>>
>>>>>>> Well, even more, the idp should not know at all which rp I
>>>>>>> talk to in the first place.
>>>>>>
>>>>>> It is a strong privacy reqirement. Idoubt solutions in ABFAB
>>>>>> can provide this feature.
>>>>>
>>>>> Yes, ABFAB cannot do this natively.
>>>>>
>>>>> Though there are always ways around this. SAML cannot do this
>>>>> natively either, but the Cabinet Office (UK government) is in
>>>>> the middle of setting up a national federated infrastructure
>>>>> with exactly this properly, which it achieves by having a
>>>>> gateway in the middle which mediates all traffic.
>>>>
>>>> Hmmm. the design of this is very questionnable (and opaque). Full
>>>> trust must be given to the gateway, without any assurance that it
>>>> is trustworthy. It is not even mentioned in the trust assurance
>>>> document.
>>>>
>>>> regards
>>>>
>>>> David
>>>>
>>>>>
>>>>> Note that this privacy requirement may well be asymmetric -
>>>>> there may be a difference between the IdP not being able to
>>>>> know about which RP the user is using, and the RP not knowing
>>>>> which IdP the user came from...
>>>>>
>>>>> R. -- Dr Rhys Smith Identity, Access, and Middleware
>>>>> Specialist Cardiff University& Janet - the UK's education and
>>>>> research network
>>>>>
>>>>> email: smith@cardiff.ac.uk<mailto:smith@cardiff.ac.uk> /
>>>>> rhys.smith@ja.net<mailto:rhys.smith@ja.net> GPG: 0xDE2F024C
>>>>>
>>>>>
>>>>>
>>>>> _______________________________________________ ietf-privacy
>>>>> mailing list ietf-privacy@ietf.org
>>>>> https://www.ietf.org/mailman/listinfo/ietf-privacy
>>>>
>>>> --
>>>>
>>>> *****************************************************************
>>>>
>>>>
> David W. Chadwick, BSc PhD
>>>> Professor of Information Systems Security School of Computing,
>>>> University of Kent, Canterbury, CT2 7NF Skype Name:
>>>> davidwchadwick Tel: +44 1227 82 3221 Fax +44 1227 762 811 Mobile:
>>>> +44 77 96 44 7184 Email: D.W.Chadwick@kent.ac.uk Home Page:
>>>> http://www.cs.kent.ac.uk/people/staff/dwc8/index.html Research
>>>> Web site:
>>>> http://www.cs.kent.ac.uk/research/groups/iss/index.html Entrust
>>>> key validation string: MLJ9-DU5T-HV8J PGP Key ID is 0xBC238DE5
>>>>
>>>> *****************************************************************
>>>>
>>>>
> _______________________________________________
>>>> ietf-privacy mailing list ietf-privacy@ietf.org
>>>> https://www.ietf.org/mailman/listinfo/ietf-privacy
>>>
>>> _______________________________________________ ietf-privacy
>>> mailing list ietf-privacy@ietf.org
>>> https://www.ietf.org/mailman/listinfo/ietf-privacy
>>
>

v2.23.0 | Report a Bug | By Email