Re: [ietf-privacy] [Int-area] NAT Reveal / Host Identifiers
Stephen Farrell <stephen.farrell@cs.tcd.ie> Fri, 06 June 2014 15:59 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: ietf-privacy@ietfa.amsl.com
Delivered-To: ietf-privacy@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AA55E1A0085; Fri, 6 Jun 2014 08:59:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.551
X-Spam-Level:
X-Spam-Status: No, score=-2.551 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.651] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FoqXCNx7ojFY; Fri, 6 Jun 2014 08:59:36 -0700 (PDT)
Received: from mercury.scss.tcd.ie (mercury.scss.tcd.ie [134.226.56.6]) by ietfa.amsl.com (Postfix) with ESMTP id 53FFB1A007A; Fri, 6 Jun 2014 08:59:36 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mercury.scss.tcd.ie (Postfix) with ESMTP id 63A5ABF79; Fri, 6 Jun 2014 16:59:29 +0100 (IST)
Received: from mercury.scss.tcd.ie ([127.0.0.1]) by localhost (mercury.scss.tcd.ie [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id y-ynNuFVaQnZ; Fri, 6 Jun 2014 16:59:29 +0100 (IST)
Received: from [134.226.36.180] (stephen-think.dsg.cs.tcd.ie [134.226.36.180]) by mercury.scss.tcd.ie (Postfix) with ESMTPSA id CE653BF7D; Fri, 6 Jun 2014 16:59:25 +0100 (IST)
Message-ID: <5391E55E.9000105@cs.tcd.ie>
Date: Fri, 06 Jun 2014 16:59:26 +0100
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.5.0
MIME-Version: 1.0
To: mohamed.boucadair@orange.com, Ted Lemon <ted.lemon@nominum.com>
References: <E87B771635882B4BA20096B589152EF628724B2C@eusaamb107.ericsson.se> <539016BE.3070008@gmx.net> <53906711.5070406@cs.tcd.ie> <5390D2F8.6000801@gmail.com> <1B87ABE4-1CA1-450D-BA96-3018DF39F08D@nominum.com> <787AE7BB302AE849A7480A190F8B93300141B4@OPEXCLILM23.corporate.adroot.infra.ftgroup> <8A4C0802-DE9A-4ADF-AEA5-61DEC2AFB25B@nominum.com> <787AE7BB302AE849A7480A190F8B933001433C@OPEXCLILM23.corporate.adroot.infra.ftgroup>
In-Reply-To: <787AE7BB302AE849A7480A190F8B933001433C@OPEXCLILM23.corporate.adroot.infra.ftgroup>
X-Enigmail-Version: 1.6
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf-privacy/u-el6vVDjsSTY9Frmv8eFt9nSKc
Cc: "ietf-privacy@ietf.org" <ietf-privacy@ietf.org>, "int-area@ietf.org" <int-area@ietf.org>, Brian E Carpenter <brian.e.carpenter@gmail.com>
Subject: Re: [ietf-privacy] [Int-area] NAT Reveal / Host Identifiers
X-BeenThere: ietf-privacy@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Internet Privacy Discussion List <ietf-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-privacy>, <mailto:ietf-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-privacy/>
List-Post: <mailto:ietf-privacy@ietf.org>
List-Help: <mailto:ietf-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-privacy>, <mailto:ietf-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Jun 2014 15:59:37 -0000
Hi Med, On 06/06/14 12:41, mohamed.boucadair@orange.com wrote: > [Med] I'm not sure about this Ted. There are other initiatives that > try to solve the issue for particular use cases, see for instance > this effort for HTTP: > http://tools.ietf.org/html/draft-ietf-appsawg-http-forwarded-10. The > rationale of the "host identifier scenarios" document is to group all > use cases suffering from the same problem instead of focusing on one > single case. This allows having a big picture view of the problem > space. I think XFF is actually a good example of why we ought not adopt this work. XFF is widely deployed already but somewhat flakey in terms of interop so the authors of the above draft aimed to produce a spec that just addressed interop. (*) That was adopted by an area WG without (IMO) ever really considering the privacy implications, and definitely without any effort having been made to develop a more privacy-friendly mechanism (which could have been done, again IMO) to solve what were the claimed use-cases. By the time it got to the IESG that was in practice unfixable and after some fairly painful discussions it ended up with 4 abstain ballots, including mine. [1] (For those who quite reasonably don't need to care about IESG balloting, an abstain means approximately "yuk.":-) Of course that all also pre-dated BCP188 and the last year's shenanigans so I'd hope we have learned to not keep doing that. I'd be delighted if those who could get a better solution implemented/deployed were to attempt to try to address the privacy issues with XFF but it seems that at least in that case relevant folks don't care (sufficiently;-) deeply about our privacy to go do that. S. [1] https://datatracker.ietf.org/doc/draft-ietf-appsawg-http-forwarded/ballot/ (*) To be clear: I think the authors were genuinely just trying to fix what they saw as an interop problem.
- [ietf-privacy] NAT Reveal / Host Identifiers Hannes Tschofenig
- Re: [ietf-privacy] NAT Reveal / Host Identifiers Stephen Farrell
- Re: [ietf-privacy] NAT Reveal / Host Identifiers mohamed.boucadair
- Re: [ietf-privacy] NAT Reveal / Host Identifiers Stephen Farrell
- Re: [ietf-privacy] NAT Reveal / Host Identifiers mohamed.boucadair
- Re: [ietf-privacy] NAT Reveal / Host Identifiers mohamed.boucadair
- Re: [ietf-privacy] [Int-area] WG Adoption Joel M. Halpern
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Ted Lemon
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Bernard Aboba
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… mohamed.boucadair
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Ted Lemon
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… mohamed.boucadair
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brian E Carpenter
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] WG Adoption Brian E Carpenter
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brian E Carpenter
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brian E Carpenter
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Horne, Rob
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Eric Burger
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… David Singer
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Dan Wing
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brandon Williams
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brandon Williams
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Eliot Lear
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Ted Lemon
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… joel jaeggli
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brian E Carpenter
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Eliot Lear
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Ted Lemon
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… mohamed.boucadair
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… mohamed.boucadair
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Dirk.von-Hugo
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… mohamed.boucadair
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brandon Williams