IETF Logo Mail Archive

Re: 64bit MAC addresses and SLAAC

Alexandre Petrescu <alexandre.petrescu@gmail.com> Wed, 17 June 2020 11:16 UTC

Return-Path: <alexandre.petrescu@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3BA5B3A0980 for <ipv6@ietfa.amsl.com>; Wed, 17 Jun 2020 04:16:48 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: 1.671
X-Spam-Level: *
X-Spam-Status: No, score=1.671 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_CUSTOM_MED=0.001, FORGED_GMAIL_RCVD=1, FREEMAIL_FROM=0.001, FREEMAIL_REPLY=1, NML_ADSP_CUSTOM_MED=0.9, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FN85DA3QHamz for <ipv6@ietfa.amsl.com>; Wed, 17 Jun 2020 04:16:46 -0700 (PDT)
Received: from cirse-smtp-out.extra.cea.fr (cirse-smtp-out.extra.cea.fr [132.167.192.148]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 625643A097D for <ipv6@ietf.org>; Wed, 17 Jun 2020 04:16:46 -0700 (PDT)
Received: from pisaure.intra.cea.fr (pisaure.intra.cea.fr [132.166.88.21]) by cirse-sys.extra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id 05HBGf3t011245; Wed, 17 Jun 2020 13:16:41 +0200
Received: from pisaure.intra.cea.fr (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id B1473206964; Wed, 17 Jun 2020 13:16:41 +0200 (CEST)
Received: from muguet2-smtp-out.intra.cea.fr (muguet2-smtp-out.intra.cea.fr [132.166.192.13]) by pisaure.intra.cea.fr (Postfix) with ESMTP id A0BC4206A4E; Wed, 17 Jun 2020 13:16:41 +0200 (CEST)
Received: from [10.8.35.150] (is154594.intra.cea.fr [10.8.35.150]) by muguet2-sys.intra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id 05HBGfd6022696; Wed, 17 Jun 2020 13:16:41 +0200
Subject: Re: 64bit MAC addresses and SLAAC
To: sarikaya@ieee.org, Bob Hinden <bob.hinden@gmail.com>
Cc: IPv6 List <ipv6@ietf.org>
References: <e8a25961-5ac9-d35e-77dd-bf86f45cd077@gmail.com> <a17ae9f3-001c-07f6-84f9-a0ca583e6a00@gmail.com> <7AE5B6D0-AB01-4077-A9EF-5BD86F428681@gmail.com> <CAC8QAcdDjQvonke7hytV8pCYsTAjATNi560v_b32jus_jDW8bw@mail.gmail.com>
From: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Message-ID: <b43a00f5-c957-923a-cef4-ed541ebdb39a@gmail.com>
Date: Wed, 17 Jun 2020 13:16:41 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:68.0) Gecko/20100101 Thunderbird/68.9.0
MIME-Version: 1.0
In-Reply-To: <CAC8QAcdDjQvonke7hytV8pCYsTAjATNi560v_b32jus_jDW8bw@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: fr
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/3O4iGQ7aDUS-IoW70z0OpP5WnaQ>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 17 Jun 2020 11:16:48 -0000


Le 16/06/2020 à 17:38, Behcet Sarikaya a écrit :
> 
> 
> On Mon, Jun 15, 2020 at 4:02 PM Bob Hinden <bob.hinden@gmail.com 
> <mailto:bob.hinden@gmail.com>> wrote:
> 
> Alexandre,
> 
>> On Jun 15, 2020, at 1:23 PM, Alexandre Petrescu
> <alexandre.petrescu@gmail.com <mailto:alexandre.petrescu@gmail.com>>
>  wrote:
>> 
>> Hi,
>> 
>> Before the sanitary situation I was studying an issue at ISO.
>> 
>> The issue is about 64bit MAC addresses and SLAAC.
>> 
>> SLAAC needs a 48bit MAC addresses in order to work, and it can
> not work with a 64bit MAC address; (but yes, it can with 64bit 
> IIDs).
> 
> SLACC does not specify the length of the Interface ID, it does not 
> require require 48-bit MAC addresses, and the reason for Modified 
> EUI-64 Format Interface Identifiers in RFC4291 was to support 64bit 
> EUI-64 Identifiers.   We have since moved away from using MAC 
> addresses as Interface IDs.  See RFC 8064.
> 
> 
> 
> +1

Well, I tend to agree with some aspects, but disagree with others.

I agree that putting a MAC address in clear in an IP address raises
significant privacy issues.  These issues should be dealt with, and have
been so.

One way is to use RFC7217 and RFC8064 which, when implemented, offer a
means to put a random number in these many bits of an IID of an IP
address, rather than a hard-wired and thus easily trackable MAC address.

However, that view is not necessarily enough.

There are many problems with RFC7217 plus RFC8064, among which:

- RFC8064 recommends simply stable IIDs; to do that it uses RFC7217
   which defines stables IIDs _within_ a subnet.  That is an
   inconsistency.  A stable IID with a stable prefix is often needed for
   mobility, and, a same IID within distinct prefixes might ease
   administration; yet none of these two aspects seems mentioned.

- neither RFC8064 nor RFC7217 mention the use of random numbers in MAC
   addresses.  Yet that is implemented in Windows at least.

- RFC8064 is somehow not implemented in linux, even though linux does
   offer privacy IIDs.  The part of RFC8064 that is not implemented in
   linux is the part that says that the IID length can be anything and
   not necessarily 64.

Because of these reasons, generally speaking about SLAAC and IID
generation, there might still be other necessary ways to generate IIDs
than just 64bit random IIDs.  Easy to remember IIDs, same IIDs for
distinct interfaces, are a couple of new potential rules that come to mind.

If so, probably the easiness of generating IP addresses containing MAC
addresses might also be a good idea in some context: just copy paste the
64bit (random) MAC address to the last 8 bytes of the IP address.

Alex

> Behcet
> 
> Bob
> 
> 
>> 
>> The document ISO/CD 22738:2019(E) under development at that time
> does specify a 64bit MAC address for optical camera communications 
> (OCC, akin to IEEE 802.15.7).
>> 
>> This might be an additional requirement for SLAAC improvements.
> Or not.
>> 
>> Alex
>> 
>> --------------------------------------------------------------------
>
>>
>> 
> IETF IPv6 working group mailing list
>> ipv6@ietf.org <mailto:ipv6@ietf.org> Administrative Requests: 
>> https://www.ietf.org/mailman/listinfo/ipv6 
>> --------------------------------------------------------------------
>
>>
>> 
> --------------------------------------------------------------------
>  IETF IPv6 working group mailing list ipv6@ietf.org 
> <mailto:ipv6@ietf.org> Administrative Requests: 
> https://www.ietf.org/mailman/listinfo/ipv6 
> --------------------------------------------------------------------
>

v2.23.0 | Report a Bug | By Email