IETF Logo Mail Archive

RE: Topic IPv6

"Tony Hain" <alh-ietf@tndh.net> Mon, 21 November 2016 20:16 UTC

Return-Path: <alh-ietf@tndh.net>
X-Original-To: ietf@ietfa.amsl.com
Delivered-To: ietf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 90860127076 for <ietf@ietfa.amsl.com>; Mon, 21 Nov 2016 12:16:49 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.288
X-Spam-Level:
X-Spam-Status: No, score=-3.288 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, RP_MATCHES_RCVD=-1.497, SPF_PASS=-0.001, T_DKIM_INVALID=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=fail (1056-bit key) reason="fail (bad RSA signature)" header.d=tndh.net
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hMdFzsO-9SD9 for <ietf@ietfa.amsl.com>; Mon, 21 Nov 2016 12:16:47 -0800 (PST)
Received: from express.tndh.net (express.tndh.net [IPv6:2001:470:e930:1240:20d:56ff:fe04:4c0a]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6E05412007C for <ietf@ietf.org>; Mon, 21 Nov 2016 12:16:47 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=tndh.net; s=dkim; h=Subject:Content-Transfer-Encoding:Content-Type:MIME-Version:Message-ID:Date:In-Reply-To:References:To:From; bh=goyostpkNZ15UZy14mxy8x2vFkIj9FIwivCsovVZS0I=; b=AuhrH3BHz+gZCDTGgLlu0k1IuEpIKA/PkE4WLo2Ki1c/KoLmn29EEZCs8eeOsZbpEowzOqt0XtDBzc30uaLHZlN92R5c7vkBe6X/fgcqYv7op4cf+vV6/tqDZ5iUPaKc+mUwjv+zbcsq0VIaSCQp7KrheoY8Dd2zNFpaSBCFPKwApOcZ;
Received: from express.tndh.net ([2001:470:e930:1240:20d:56ff:fe04:4c0a] helo=eaglet) by express.tndh.net with esmtp (Exim 4.72 (FreeBSD)) (envelope-from <alh-ietf@tndh.net>) id 1c8v0q-000IiR-PO; Mon, 21 Nov 2016 12:16:46 -0800
From: Tony Hain <alh-ietf@tndh.net>
To: 'Alexander Nevalennyy' <avnevalenniy@gmail.com>, ietf@ietf.org
References: <CAGxDXJ9L-Zfu+Wn8MogOn_yKgDKKuUVyqNp5mxNYaJZd-371qA@mail.gmail.com> <20161121135800.hj773gvjquay7ka5@nic.fr> <CAGxDXJ_j+U2yngKPqK+ciHSG9B2CsTRYPq8swqbVZZBOfYB37Q@mail.gmail.com> <20161121145039.p56dd5cpczxaivyl@nic.fr> <CAGxDXJ_zAXt_QD8vpW29vShV1enXewQ1sshZfOQd+WMU17=DTA@mail.gmail.com> <CAGxDXJ-Hkvfh=E_C8ReqBE-LoN+cRR9g5d=ZnusapoNSw3i8yQ@mail.gmail.com>
In-Reply-To: <CAGxDXJ-Hkvfh=E_C8ReqBE-LoN+cRR9g5d=ZnusapoNSw3i8yQ@mail.gmail.com>
Date: Mon, 21 Nov 2016 12:16:26 -0800
Message-ID: <04c201d24434$2329dd20$697d9760$@tndh.net>
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
X-Mailer: Microsoft Outlook 14.0
Thread-Index: AQEHFIZdJatyRQo0dGlv2Y0NdTByXwLgUCq9AObnFA8CMJ1RAgGFAvY+As+wYGaiJ7pTwA==
Content-Language: en-us
X-SA-Exim-Connect-IP: 2001:470:e930:1240:20d:56ff:fe04:4c0a
X-SA-Exim-Mail-From: alh-ietf@tndh.net
Subject: RE: Topic IPv6
X-SA-Exim-Version: 4.2
X-SA-Exim-Scanned: Yes (on express.tndh.net)
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf/Qy3RbYDThCFV_6ZrGM-BAKbk1ZE>
X-BeenThere: ietf@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: IETF-Discussion <ietf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ietf>, <mailto:ietf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf/>
List-Post: <mailto:ietf@ietf.org>
List-Help: <mailto:ietf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ietf>, <mailto:ietf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 21 Nov 2016 20:16:49 -0000

> From: ietf [mailto:ietf-bounces@ietf.org] On Behalf Of Alexander Nevalennyy
> Sent: Monday, November 21, 2016 7:45 AM
> To: ietf@ietf.org
> Subject: Re: Topic IPv6
>
> Does anybody want to help me with writing Internet-draft?
> It saves emotions and time of a lot of engineers. 
> I will be glad if somebody help me. Maybe, my idea is not great, but have a chance as other ideas.

Alexander,

The reaction you have been getting on this list is due to people forgetting that not everyone has been working on IPv6 for 20+ years. If it were simple enough for you to dig through the archives of all the conversations on an array of lists over that time you would find that ideas on your list have been discussed multiple times in many different contexts. 

One issue you might be having with generating interest in creating a draft is that you have not clearly stated your goal. You listed some technical approaches as a set, which might imply certain goals, but depending on which country and set of laws that are being assumed, those are likely to be different for each person reading them.

To try and bring some focus to this, based on your list I will throw out a goal that might be where you were heading---
Goal:
Improve law enforcement's ability to track the economic terrorists that abuse the Internet and its related technologies to attack others.

That may not be what you had in mind, but it is an example of one possible goal. The feedback that will immediately arise for something like the above is that it is in direct conflict with someone else's goal of making sure that 'free speech' voices in countries with oppressive governments have a way to use the Internet without fear. 

The IETF has taken a position that its job is creating technologies and that it is someone else's job to deal with the political implications of those. 

All that said, you might be interested in an expired draft:
https://www.ietf.org/archive/id/draft-hain-ipv6-geo-addr-02.txt

While the goal of that doc was minimizing renumbering events for smaller organizations when they change providers, it has the side effect of providing ~6 meter targeting for the packet source (excluding use of ToR technologies). It also removes the political arguments about which organization 'controls' address prefix allocations by pre-allocating space in a consistent global standard. 

On your point about telephony mapping, most of the people on this list will tell you that despite the use of numbers rather than letters, the current implementation of telephone numbers acts more like names and the conversation will immediately redirect you to DNS. 

Finally, your point about SLAAC appears to assume that the device MAC address is used. While that was the original definition for implementation simplicity, it was always assumed that other sources would be used over time and that the only real requirement is that the IID is unique on the local media. To the point of privacy, it was immediately recognized that a fixed IID would allow nefarious web sites to track a device's movements throughout the day, so SLAAC includes a privacy extension which would appear to be in direct conflict with your other bullet points. Further, if you look at current implementations, SLAAC may result in what appear to be pseudo-random static values for the IID. These are generally based on things like the CPU or graphics chip serial number so they are somewhat consistent over time, but they  do not leak information about which nic vendor an organization has chosen. While those implementations may still appear to point back to a specific device, the OS vendor would have to provide the algorithm to reverse the IID. Even with that or nic derived MAC, the courts would likely throw out any attempt to use that as evidence because I could watch the LAN to see what IID your device was using, then use that IID somewhere else masquerading as you, and you would then have to prove you were not at the other location. See RFC 3971 & 2 as an example mechanism for increasing IID authenticity to limit MAC spoofing. The point is that if your goal is to allow law enforcement to track to a specific device, you need to state that. Then be prepared for the onslaught of privacy advocates that will argue their goals are more important than yours.


If you have a clear goal, and can show that it requires changes to the protocols, then I would recommend taking that to the ipv6 WG. If your goal simply requires operational practice documents, then take that to the v6ops WG. If your goal requires global treaty negotiations, the IETF is the wrong venue...

Tony

v2.23.0 | Report a Bug | By Email