Re: [Ila] [5gangip] Fwd: New Version Notification for draft-herbert-ipv6-prefix-address-privacy-00.txt
Tom Herbert <tom@quantonium.net> Wed, 21 February 2018 15:47 UTC
Return-Path: <tom@quantonium.net>
X-Original-To: ila@ietfa.amsl.com
Delivered-To: ila@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C930712D7E5 for <ila@ietfa.amsl.com>; Wed, 21 Feb 2018 07:47:38 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=quantonium-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Vy7LFAzLrJqO for <ila@ietfa.amsl.com>; Wed, 21 Feb 2018 07:47:36 -0800 (PST)
Received: from mail-wr0-x22d.google.com (mail-wr0-x22d.google.com [IPv6:2a00:1450:400c:c0c::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1813112D7F4 for <ila@ietf.org>; Wed, 21 Feb 2018 07:47:35 -0800 (PST)
Received: by mail-wr0-x22d.google.com with SMTP id z12so5784125wrg.4 for <ila@ietf.org>; Wed, 21 Feb 2018 07:47:34 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=quantonium-net.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=bel8Ra0BY/PJWs+MpX3Lhv7Q8dnDZ2QSJsm0KphmXzg=; b=DUEr+4TrwQSen4MXT6T8ZtPEaaszh04V+E+QpGPNFmGhtwtE5TEWIvv60BoQM/IHyT 1QpUxbVlPJ/Ic4H9N8y6ptPSBQeE0A1UW+vpXDkYm9WEPOsYLwry7h9swtBoRdU6C3CG /c1oOU/lMUF2Ksv1DK4VztMkQDsyoLerHg72HA8bd+DhJaieXJw/Zsuu8D2SguC6zny7 AMLCdRuIqISftaz7a6JL7qokFDBVqLXfrlZu2BF/Wu/54PNhJ1Ndfmj3cb09UZ1cPEtN Gp8lJOwZ+kp15bhcJYNRhEGyBV2iwLqWPG0QOTFPX3LBv9y+E0FpHfiUkpDrhulh0dKF +KXA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=bel8Ra0BY/PJWs+MpX3Lhv7Q8dnDZ2QSJsm0KphmXzg=; b=hx2As11KyB2oh5TWBHE08GHEm0rVfKipto7zpI5XY3Ga8Qb3XizGQ5O6Nz76a8ETi+ lRh4nZLoxrcYQ1NheUfbNP5EA/JoYP+4wHAlK25FOvdRsWpNr1NLI0KSAYYgKIXJjEuN bTfZEqxw9x9bzrsVTkASwA9Lu1Q0fvtfRuGNxcIUIzKLJXqyRxfqdqhAMMPXxWAcayR3 ZIR7ByA1TAdQR9qBViXQ9Cx07rZp7qEwWnM9JQMWjwdZESqWqitiRjx1cMVnl89ST4vX V/46a3aMv8nyCtUl7wtRkbl7iufIndokrM6UaNmDg6MzsinULEDXXPKNnFHhwmC2GKP1 qinQ==
X-Gm-Message-State: APf1xPDQKm/qR/7/Urk2E3yWSe2mvMJ7KiO6gXuIPNdSwM0V+7E7QAMk wFk2gT5ablIgVXDRJwssvxx9qynlGf1avmgh2w55rQ==
X-Google-Smtp-Source: AH8x22604Sl0kOsY8JGZOsnP+rj/SkdlhKIm7Hw0BTOjbipP8NCeT2Ux/Kc/nb5gno1qy8c/f6Edul6EO7wvWZW8maM=
X-Received: by 10.223.143.101 with SMTP id p92mr3454238wrb.241.1519228053515; Wed, 21 Feb 2018 07:47:33 -0800 (PST)
MIME-Version: 1.0
Received: by 10.223.156.210 with HTTP; Wed, 21 Feb 2018 07:47:32 -0800 (PST)
In-Reply-To: <alpine.DEB.2.20.1802211549260.3478@uplift.swm.pp.se>
References: <151906718318.18731.8986618406430268357.idtracker@ietfa.amsl.com> <CAPDqMeqajavRJ85fUkrdxg1Bjz54kHuWfqbnGgpM7Br7T6MVmQ@mail.gmail.com> <alpine.DEB.2.20.1802211549260.3478@uplift.swm.pp.se>
From: Tom Herbert <tom@quantonium.net>
Date: Wed, 21 Feb 2018 07:47:32 -0800
Message-ID: <CAPDqMerU9k4DEQrMi8qyneYB=i=1qnuwRiUf8FQoGrd_QxUmZQ@mail.gmail.com>
To: Mikael Abrahamsson <swmike@swm.pp.se>
Cc: int-area@ietf.org, ila@ietf.org, 5GANGIP <5gangip@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ila/-XQcWheemt88-FaXs7IufkLziVs>
Subject: Re: [Ila] [5gangip] Fwd: New Version Notification for draft-herbert-ipv6-prefix-address-privacy-00.txt
X-BeenThere: ila@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Identifier Locator Addressing <ila.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ila>, <mailto:ila-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ila/>
List-Post: <mailto:ila@ietf.org>
List-Help: <mailto:ila-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ila>, <mailto:ila-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Feb 2018 15:47:39 -0000
On Wed, Feb 21, 2018 at 6:55 AM, Mikael Abrahamsson <swmike@swm.pp.se> wrote: > On Mon, 19 Feb 2018, Tom Herbert wrote: > >> This draft discusses issue of privacy in IPv6 network prefix assignment. >> Specifically the privacy problems of an assigned network prefix becoming a >> persistent identifier for devices (e.g. /64 assignment to devices in mobile >> networks). The use of identifier/locator split is suggested as a solution. > > > Current state of available address for a PDN is /64. In most implementations > I am aware of, if the PDN is brought down, and then up again, a new /64 will > be used. The host can therefore control this part of "privacy", cycle PDN > when it feels it's appropriate to get new address space to avoid tracking. I > am supportive of this approach and any spatial overlap of multiple > PDNs/address space approach, so that connections can be moved over to use > the new address, gracefully. > > I consider anything that gives the host less than /64 worth of addresses a > regression from current situation. We can always discuss if /80 is enough > etc, but anyhow, it's a regression that should be presented front and center > by any proposed change to current state of affairs. > > I have now read section 6 twice, and I still have no idea how many usable > addresses the host has available to itself according to > draft-herbert-ipv6-prefix-address-privacy-00. > > Can you please enlighten me? > Mikael, As mentioned in section 6, addresses contain no hierachy beyond the provider prefix so the space over which addresses are assign can be flat large space (/32, /48, etc). The goal is that from any outside observer all addresses seem to be randomly chosen from the space with no means to create correlations. Host are assigned addresses from the space. The goal is that all addresses appear to be randomly assigned in that space. Conceptually, a host could request assignment for inidivual millions or billions of addresses, but that won't scale. The alternative suggested is to assign addresses in blocks using hidden aggregation as described in section 6.2.2.2. Blocks would contain multiple addresses (could be thousands, millions, etc.). Tom
- [Ila] Fwd: New Version Notification for draft-her… Tom Herbert
- Re: [Ila] [5gangip] Fwd: New Version Notification… Jon Crowcroft
- Re: [Ila] [5gangip] Fwd: New Version Notification… Tom Herbert
- Re: [Ila] [5gangip] Fwd: New Version Notification… Lorenzo Colitti
- Re: [Ila] [5gangip] Fwd: New Version Notification… Mikael Abrahamsson
- Re: [Ila] [5gangip] Fwd: New Version Notification… Lorenzo Colitti
- Re: [Ila] [5gangip] Fwd: New Version Notification… Tom Herbert
- Re: [Ila] [5gangip] Fwd: New Version Notification… Lorenzo Colitti
- Re: [Ila] [5gangip] Fwd: New Version Notification… Mikael Abrahamsson
- Re: [Ila] [5gangip] Fwd: New Version Notification… Tom Herbert
- Re: [Ila] [5gangip] Fwd: New Version Notification… Mikael Abrahamsson
- Re: [Ila] [5gangip] Fwd: New Version Notification… Tom Herbert
- Re: [Ila] [5gangip] Fwd: New Version Notification… Lorenzo Colitti
- Re: [Ila] [5gangip] Fwd: New Version Notification… Tom Herbert
- Re: [Ila] [5gangip] Fwd: New Version Notification… Dino Farinacci
- Re: [Ila] [5gangip] Fwd: New Version Notification… AshwoodsmithPeter
- Re: [Ila] [5gangip] Fwd: New Version Notification… Tom Herbert