IETF Logo Mail Archive

Re: [Int-area] [5gangip] Fwd: New Version Notification for draft-herbert-ipv6-prefix-address-privacy-00.txt

Tom Herbert <tom@quantonium.net> Wed, 21 February 2018 06:32 UTC

Return-Path: <tom@quantonium.net>
X-Original-To: int-area@ietfa.amsl.com
Delivered-To: int-area@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4CD8212E86E for <int-area@ietfa.amsl.com>; Tue, 20 Feb 2018 22:32:29 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.639
X-Spam-Level:
X-Spam-Status: No, score=-1.639 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, HTML_OBFUSCATE_05_10=0.26, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=quantonium-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ksV3c_NjDo8T for <int-area@ietfa.amsl.com>; Tue, 20 Feb 2018 22:32:26 -0800 (PST)
Received: from mail-wr0-x230.google.com (mail-wr0-x230.google.com [IPv6:2a00:1450:400c:c0c::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5E6281270A7 for <int-area@ietf.org>; Tue, 20 Feb 2018 22:32:26 -0800 (PST)
Received: by mail-wr0-x230.google.com with SMTP id k9so1218139wre.9 for <int-area@ietf.org>; Tue, 20 Feb 2018 22:32:26 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=quantonium-net.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=EleMX5BnEM3FBf4RR3tFWyIRrpLUO9EM9MHsNA8srj8=; b=kdF92BQf1uG1zJCYpcX6fThg2GazN+7GYCvQukJktAIqH3sjixtQv1pEQ3ZICPHiOK kl8bJtJ3p+exw0jPjlm1T3Zlkqc8qpNn4GyWhwbhRsAHAtqEMR/lcJRJgdmJuFlxjVr3 DqXaJIjnkpsJD3/xfgjzqIOmDaaJGzzrYji8JsaMwJQLRh1gy2f3Gdqqc9EDPQhhSPzo JOUfAEj3Yrz/+x3v24BlIxjyrIkLb8SsgIG3M3rHNPthYOCtWB73nAnsf+/ihVbYxryA wCoRdKeEToWtzOGHd1GaoWQST91ah2DVWp/cm6Pd8cnQq2W0PLWvMa8AJlJrw81qARyp 2oBg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=EleMX5BnEM3FBf4RR3tFWyIRrpLUO9EM9MHsNA8srj8=; b=GI/fIQjqkb2cvQumcQ2Y08BYD5KDx9pZvKfhGzcklN0Ty9+JtazBR03qDKmVnMKDAt 0zkCC2KYvG+1NSTVqfn6Vd+TQ8dJ/h2X8oWr26aI7GeV2vWXBq5oNsnx4pYWvFoInfKq 540pvyU9PRTiN7itOGTOUegHBetp9KobFkSVE8ysIhiox4nR8H4KlNJ9pMBdqA8fqmRE mrF/aVXri27d3NPsjA7TE/juE86HxUjK3fBQ+Bsrpll/It+oZ+SDzZ71KUrHJ2kGGIWA rKSnmKtj66QNxxdatOsApQmTdWxPIya72QSLXFfX57dwux/PhNbjY9E7GeHs31/X+u6N wvoA==
X-Gm-Message-State: APf1xPBb5QE+umo0hToNY0Nx+R6y5qxY+FV3g2KWngci43egG9HPJzy3 j2TcwuWGxHl8L9taHrQO0wcE1Woo5nFovpOTuUIUTQ==
X-Google-Smtp-Source: AH8x227gTaMKpldid0r6SCZoZrobnZd3V0ZOrpniZdu/c2uKMGS+ZNwKlxpLr/Dh3Ri9d96Z4bRCyzgj7uoPx8PrN8o=
X-Received: by 10.223.131.133 with SMTP id 5mr1714198wre.153.1519194744638; Tue, 20 Feb 2018 22:32:24 -0800 (PST)
MIME-Version: 1.0
Received: by 10.223.142.142 with HTTP; Tue, 20 Feb 2018 22:32:24 -0800 (PST)
Received: by 10.223.142.142 with HTTP; Tue, 20 Feb 2018 22:32:24 -0800 (PST)
In-Reply-To: <CAEeTejLK2cgEeR3oNrctrQjXyHjnNn8i_TVOcD-Lz0Ni553Y9Q@mail.gmail.com>
References: <151906718318.18731.8986618406430268357.idtracker@ietfa.amsl.com> <CAPDqMeqajavRJ85fUkrdxg1Bjz54kHuWfqbnGgpM7Br7T6MVmQ@mail.gmail.com> <CAEeTejLK2cgEeR3oNrctrQjXyHjnNn8i_TVOcD-Lz0Ni553Y9Q@mail.gmail.com>
From: Tom Herbert <tom@quantonium.net>
Date: Tue, 20 Feb 2018 22:32:24 -0800
Message-ID: <CAPDqMeqVc2r5mBD7qiqZYTofBYnDQr8rLbOsCtK45E-kLxZuOA@mail.gmail.com>
To: Jon Crowcroft <jon.crowcroft@cl.cam.ac.uk>
Cc: int-area@ietf.org, ila@ietf.org, 5GANGIP <5gangip@ietf.org>
Content-Type: multipart/alternative; boundary="94eb2c0d29401961b00565b31776"
Archived-At: <https://mailarchive.ietf.org/arch/msg/int-area/VV6BAF7uZ2xBQuA7mI6TqWB0Jjw>
Subject: Re: [Int-area] [5gangip] Fwd: New Version Notification for draft-herbert-ipv6-prefix-address-privacy-00.txt
X-BeenThere: int-area@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF Internet Area Mailing List <int-area.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/int-area>, <mailto:int-area-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/int-area/>
List-Post: <mailto:int-area@ietf.org>
List-Help: <mailto:int-area-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/int-area>, <mailto:int-area-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Feb 2018 06:32:29 -0000

Jon,

Thanks for the reference. I think that both spatial and temporal
characteristics should be part of strong privacy addresses. Will update the
draft to mention those.

One thing that I'm not sure how to quantify yet is the effects of using
addresses for narrow purposes like a single flow. For instance, if a packet
is seen with some address that might not be useful as a target of attack by
trying to connect to the address. No application would be listening on such
addresses (although this does make ICMP interesting, like whether there
should be a response to echo request).

Tom


On Feb 20, 2018 2:06 AM, "Jon Crowcroft" <jon.crowcroft@cl.cam.ac.uk> wrote:

people may already have read this (and its a while back) but interesting to
see the limited but non zero use of privacy v6 addr
https://www.akamai.com/uk/en/multimedia/documents/technical-publication/
temporal-and-spatial-classification-of-active-ipv6-addresses-technical-
publication.pdf

On Mon, Feb 19, 2018 at 7:15 PM, Tom Herbert <tom@quantonium.net> wrote:

> Hello,
>
> This draft discusses issue of privacy in IPv6 network prefix
> assignment. Specifically the privacy problems of an assigned network
> prefix becoming a persistent identifier for devices (e.g. /64
> assignment to devices in mobile networks).  The use of
> identifier/locator split is suggested as a solution.
>
> Thanks,
> Tom
>
>
> ---------- Forwarded message ----------
> From:  <internet-drafts@ietf.org>
> Date: Mon, Feb 19, 2018 at 11:06 AM
> Subject: New Version Notification for
> draft-herbert-ipv6-prefix-address-privacy-00.txt
> To: Tom Herbert <tom@quantonium.net>
>
>
>
> A new version of I-D, draft-herbert-ipv6-prefix-address-privacy-00.txt
> has been successfully submitted by Tom Herbert and posted to the
> IETF repository.
>
> Name:           draft-herbert-ipv6-prefix-address-privacy
> Revision:       00
> Title:          Privacy in IPv6 Network Prefix Assignment
> Document date:  2018-02-20
> Group:          Individual Submission
> Pages:          17
> URL:
> https://www.ietf.org/internet-drafts/draft-herbert-ipv6-pref
> ix-address-privacy-00.txt
> Status:
> https://datatracker.ietf.org/doc/draft-herbert-ipv6-prefix-a
> ddress-privacy/
> Htmlized:
> https://tools.ietf.org/html/draft-herbert-ipv6-prefix-address-privacy-00
> Htmlized:
> https://datatracker.ietf.org/doc/html/draft-herbert-ipv6-pre
> fix-address-privacy-00
>
>
> Abstract:
>    This document discusses privacy concerns around network prefix
>    assignment in IPv6. It evaluates the privacy threat, proposes a set
>    of ideal criteria for strong privacy, and suggests solutions to
>    achieve a high degree of privacy in addressing.
>
>
>
>
> Please note that it may take a couple of minutes from the time of
> submission
> until the htmlized version and diff are available at tools.ietf.org.
>
> The IETF Secretariat
>
> _______________________________________________
> 5gangip mailing list
> 5gangip@ietf.org
> https://www.ietf.org/mailman/listinfo/5gangip
>

v2.23.0 | Report a Bug | By Email