Re: [ietf-privacy] [Int-area] NAT Reveal / Host Identifiers
Joe Touch <touch@isi.edu> Thu, 05 June 2014 20:43 UTC
Return-Path: <touch@isi.edu>
X-Original-To: ietf-privacy@ietfa.amsl.com
Delivered-To: ietf-privacy@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1])
by ietfa.amsl.com (Postfix) with ESMTP id 86A2E1A0278;
Thu, 5 Jun 2014 13:43:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.851
X-Spam-Level:
X-Spam-Status: No, score=-4.851 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.651]
autolearn=ham
Received: from mail.ietf.org ([4.31.198.44])
by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id lTybOCzNxueq; Thu, 5 Jun 2014 13:43:32 -0700 (PDT)
Received: from boreas.isi.edu (boreas.isi.edu [128.9.160.161])
(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
(No client certificate requested)
by ietfa.amsl.com (Postfix) with ESMTPS id 4424F1A018E;
Thu, 5 Jun 2014 13:43:32 -0700 (PDT)
Received: from [128.9.160.166] (abc.isi.edu [128.9.160.166])
(authenticated bits=0)
by boreas.isi.edu (8.13.8/8.13.8) with ESMTP id s55KgRuT023551
(version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NOT);
Thu, 5 Jun 2014 13:42:27 -0700 (PDT)
Message-ID: <5390D633.9070006@isi.edu>
Date: Thu, 05 Jun 2014 13:42:27 -0700
From: Joe Touch <touch@isi.edu>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64;
rv:24.0) Gecko/20100101 Thunderbird/24.5.0
MIME-Version: 1.0
To: Brian E Carpenter <brian.e.carpenter@gmail.com>,
Stephen Farrell <stephen.farrell@cs.tcd.ie>
References: <E87B771635882B4BA20096B589152EF628724B2C@eusaamb107.ericsson.se>
<539016BE.3070008@gmx.net> <53906711.5070406@cs.tcd.ie>
<5390D2F8.6000801@gmail.com>
In-Reply-To: <5390D2F8.6000801@gmail.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-ISI-4-43-8-MailScanner: Found to be clean
X-MailScanner-From: touch@isi.edu
Archived-At: http://mailarchive.ietf.org/arch/msg/ietf-privacy/veuFE_5hBbWP_hFK9N9BPYbmHoU
X-Mailman-Approved-At: Fri, 06 Jun 2014 08:11:56 -0700
Cc: "ietf-privacy@ietf.org" <ietf-privacy@ietf.org>, int-area@ietf.org
Subject: Re: [ietf-privacy] [Int-area] NAT Reveal / Host Identifiers
X-BeenThere: ietf-privacy@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Internet Privacy Discussion List <ietf-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf-privacy>,
<mailto:ietf-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ietf-privacy/>
List-Post: <mailto:ietf-privacy@ietf.org>
List-Help: <mailto:ietf-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf-privacy>,
<mailto:ietf-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 05 Jun 2014 20:43:33 -0000
On 6/5/2014 1:28 PM, Brian E Carpenter wrote: ... > As a matter of fact I tend to agree with many of your criticisms > of the draft, and I like the idea (below) of adding what we might > call the misuse cases. That's a discussion the intarea WG could have. > > Brian I'd vote for WG adoption, and agree with the above with the caveat that such "misuse" should focus on: a) ways proposed mechanisms "undo" current mechanisms that *might* have been intended to preserve privacy (e.g., NATs are deployed for lots of reasons, and we never know intent per se, but privacy preservation CAN be a reason) b) ways proposed mechanisms can exceed restoring what such devices "undo" and be used to track hosts, processes, or other identities beyond what the original packet *would have already exposed*. I.e., for a device that inserts the source IP address and TCP source port for NAT traversal, it would at best be considered to 'undo' the potential privacy-creation intent of a NAT, but would NOT be considered to exceed what the original packet conveyed. Joe
- [ietf-privacy] NAT Reveal / Host Identifiers Hannes Tschofenig
- Re: [ietf-privacy] NAT Reveal / Host Identifiers Stephen Farrell
- Re: [ietf-privacy] NAT Reveal / Host Identifiers mohamed.boucadair
- Re: [ietf-privacy] NAT Reveal / Host Identifiers Stephen Farrell
- Re: [ietf-privacy] NAT Reveal / Host Identifiers mohamed.boucadair
- Re: [ietf-privacy] NAT Reveal / Host Identifiers mohamed.boucadair
- Re: [ietf-privacy] [Int-area] WG Adoption Joel M. Halpern
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Ted Lemon
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Bernard Aboba
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… mohamed.boucadair
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Ted Lemon
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… mohamed.boucadair
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brian E Carpenter
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] WG Adoption Brian E Carpenter
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brian E Carpenter
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brian E Carpenter
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Horne, Rob
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Eric Burger
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… David Singer
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Dan Wing
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brandon Williams
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brandon Williams
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Eliot Lear
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Ted Lemon
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… joel jaeggli
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brian E Carpenter
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Eliot Lear
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Ted Lemon
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… mohamed.boucadair
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… mohamed.boucadair
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Dirk.von-Hugo
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Stephen Farrell
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… mohamed.boucadair
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Joe Touch
- Re: [ietf-privacy] [Int-area] NAT Reveal / Host I… Brandon Williams