IETF Logo Mail Archive

Re: Address privacy

David Farmer <farmer@umn.edu> Thu, 30 January 2020 21:33 UTC

Return-Path: <farmer@umn.edu>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 82CA612001A for <ipv6@ietfa.amsl.com>; Thu, 30 Jan 2020 13:33:09 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=umn.edu
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0Hvdvn3iki15 for <ipv6@ietfa.amsl.com>; Thu, 30 Jan 2020 13:33:07 -0800 (PST)
Received: from mta-p6.oit.umn.edu (mta-p6.oit.umn.edu [134.84.196.206]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2DD631200A1 for <ipv6@ietf.org>; Thu, 30 Jan 2020 13:33:07 -0800 (PST)
Received: from localhost (unknown [127.0.0.1]) by mta-p6.oit.umn.edu (Postfix) with ESMTP id 487tr24wwCz9vZ27 for <ipv6@ietf.org>; Thu, 30 Jan 2020 21:33:06 +0000 (UTC)
X-Virus-Scanned: amavisd-new at umn.edu
Received: from mta-p6.oit.umn.edu ([127.0.0.1]) by localhost (mta-p6.oit.umn.edu [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rRv-kB4iUpLI for <ipv6@ietf.org>; Thu, 30 Jan 2020 15:33:06 -0600 (CST)
Received: from mail-qt1-f199.google.com (mail-qt1-f199.google.com [209.85.160.199]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by mta-p6.oit.umn.edu (Postfix) with ESMTPS id 487tr23K7Rz9vYVW for <ipv6@ietf.org>; Thu, 30 Jan 2020 15:33:06 -0600 (CST)
Received: by mail-qt1-f199.google.com with SMTP id c8so3177402qte.22 for <ipv6@ietf.org>; Thu, 30 Jan 2020 13:33:06 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=umn.edu; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=jykJLftU9ZEsab+RAGMl+7W+FzEZm5HzDd1kVPRDnDc=; b=B08W4tNV7nxwfrC1AwWuD8iShJlilbtNyzBgOOYV2XcZ0dkySLYKSVuAyJ29MuZlxb +pncaL8uNccsEW4uveiuGe2MFa70GZa9DVDvpTxuQb2g8u8wk8NKh7EGwF5eiI1E6mYP K4OpDoL+AfGkgZD0wses1n7o65krJu6C5J5b9a9HUN38tYmDI+SxeexrxrpC5+WxOLGp Cdx8rAbkOHpkqegfws450+AHK9Ew6X8n4wX2bpFnp6gsO2zy/rQRqD5VnqS2cBLxasaL 0cLHAKRDkKnTaUjQIC4PKZVNMYH17AyrGzZETlQP0+cJHYuwiKX2DaAmTb0PfGG2UaSd CbJQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=jykJLftU9ZEsab+RAGMl+7W+FzEZm5HzDd1kVPRDnDc=; b=TgYi3ppHCNpr/oN4JsWc2qhRTUm0uZsUnD/32bmiAINdPl41jxNPrIpo6UjfK5sYX0 MS/kHnqxRPULCADrK53hNwHaHKhMD5vp1lAgU6KdmY91e6W/4CfoEC7VsJEiQnhONwM6 +5Lkt8hyfvdjUuJD/6CgOHOA+zwBw7TiCLDtJ2LBEsJ8qFx6qVsOplisQakT+PajU2DL jPtwlevtGBQneqeRnp8jkDHlcKww5WOVD1OGPcxSi6DeDuOr8cXD5fDrcFWDHao2JGDq pd/g3mvoWeLApSgVbIa8xmMKJHvQkaAo+prYMrKB60PKPbwtgMWo7MXO6ZcycOGX9X9/ KxaQ==
X-Gm-Message-State: APjAAAVoxRXSNriHwdpL2hKcyTMGXvB0j29X1hzVB1J984yd9Odr3sIA Z9DPHQ4vBA09+5yw4nDWPJ4wkhExaXIk3Okw80xzFPBIhlkVpWmFOQhH3QWOKNqx4ep3vPg9c7y TOKyLuLtXpLLqlDD9o9RXAUmr
X-Received: by 2002:ae9:e109:: with SMTP id g9mr7527986qkm.141.1580419985265; Thu, 30 Jan 2020 13:33:05 -0800 (PST)
X-Google-Smtp-Source: APXvYqxMsd6o8qWSDffA6MEdWETmk/ss74e+k8zzCGFuKUm16bFMUpeqBYVdAndh3dFSAwVNrFvmGJb4coSRDdQpCRE=
X-Received: by 2002:ae9:e109:: with SMTP id g9mr7527933qkm.141.1580419984692; Thu, 30 Jan 2020 13:33:04 -0800 (PST)
MIME-Version: 1.0
References: <03C832CE-7282-4320-BF1B-4CB7167FE6BE@employees.org> <1962.1579823388@localhost> <f83ab037-9125-bb74-dbac-68850aeb1020@huitema.net> <CBB23ABE-A7A3-4208-873C-E47EE063E34B@fugue.com> <11855.1579980079@localhost> <CALx6S36V_VjaxhELYcsgDYLWsCkj20p6gtiY9T9Q=9-9Oibyjw@mail.gmail.com> <32626.1580060558@localhost> <CALx6S37prWACD0jv9c-XHD-JtPqZAcgeT2Ax0EZHkiQaDR4t=g@mail.gmail.com> <419b7c7a-e364-7951-5a44-6c39e1da65fb@joelhalpern.com> <CALx6S36802oDaEgojAPq2c6hM_s1BayidXPh1Sc6RZmZa9UHpQ@mail.gmail.com> <6c5ba72d-9289-90ba-a1c9-2307ed29a4da@foobar.org> <a98bf2ab-32e7-459b-14d2-5e0e1c65a229@si6networks.com> <CALx6S36J5TPnXJQyMW2NUbQV6KL_oqUQ01m+BEzBJ+xcHpmQWw@mail.gmail.com> <bc0d1eb8-2301-224d-dc33-19f6a60e593e@si6networks.com> <CALx6S34i67ivt8t1P3omRVzsj9NfxY2t41JLjmjT6X0vtBQHKQ@mail.gmail.com> <1fc7816e-6179-28d6-7b11-be2027561a54@si6networks.com> <CALx6S37KXfLE22uHMZTD41+jR7fdZd9PZGqO-r4SE2LehtN=Gg@mail.gmail.com> <2d312ecf-e037-5c24-28d7-2a2c3dc06363@si6networks.com> <42900FAF-7FD8-46D8-9831-5B9E520814BB@fugue.com> <CALx6S36f41nbj=2fibt9X2EpDO1Rz6o2Fm-QeNMvUfzPCu10jw@mail.gmail.com> <CAO42Z2xhmmrYqkBYF9PNSEtyRaZs8bdj_5DjYYk8Bc040OGCmw@mail.gmail.com> <CALx6S36TsYAJgD=s=vA=RpwRsPvQYKagnQB8kXp2mABRLP4HoQ@mail.gmail.com> <30220.1580410995@dooku>
In-Reply-To: <30220.1580410995@dooku>
From: David Farmer <farmer@umn.edu>
Date: Thu, 30 Jan 2020 15:32:48 -0600
Message-ID: <CAN-Dau3TA49mN2Weh2wLGu5Voj5=F6ErSoMsQoMhWJv-Z+MZ9A@mail.gmail.com>
Subject: Re: Address privacy
To: Michael Richardson <mcr+ietf@sandelman.ca>
Cc: 6man WG <ipv6@ietf.org>
Content-Type: multipart/alternative; boundary="000000000000c8a9b2059d6233a6"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/8AFDnGPyRnkbfrx4IVESG_C58_k>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 30 Jan 2020 21:33:09 -0000

On Thu, Jan 30, 2020 at 1:03 PM Michael Richardson <mcr+ietf@sandelman.ca>
wrote:

>
> Tom Herbert <tom@herbertland.com> wrote:
>     > I don't understand why 24 hours is considered the preferred lifetime.
>
> I think that this is a good and definite RFC4941bis comment that we should
> go
> into.
>
> I think that using temporary addresses in series, for short periods of
> time,
> is useless: WHEN IT COMES TO PREVENTING TRACKING WHEN NOT MOBILE.
>

I agree RFC4941 does little to prevent sophisticated tracking
especially when a device is stationary, what it does do is prevent trivial
tracking especially over time frames of months or years. Without RFC4941, a
stationary device could be using the same address for months or even years
at a time, making it trivial to track these devices.

Devices that are linked to or primarily used by humans frequently have
diurnal cycles just as the humans that are using them usually do. Changing
addresses once a day is unlikely to cause too much disruption to
these diurnal cycles, the more frequent the changes the more likely there
will be unanticipated consequences. Even today most applications are
written using an always-on model of networking, where addresses never
change.  And, since most applications are used by humans in a diurnal
cycle, a daily address change is likely to go completely unnoticed by an
application, or at least not have any impact that is noticed by the actual
human user.

In my opinion, anything between 8 and 24 hours in most cases will be more
or less equivalent in most use cases, from privacy and disruption
perspective. Going shorter than 8 hours could provide minor privacy
benefits but is likely to create much more disruption.

Finally, I doubt changing addresses will have any
significant impact on sophisticated tracking even at change frequencies in
the range of minutes and at those change frequencies, network stability is
likely to be impacted, especially with many hosts making address changes at
those frequencies.

Basically, temporary addresses changing on a daily basis seems like a
prudent thing to do, this shouldn't cause too many problems and should
prevent the most trivial forms tracking especially over long time periods
like months and years.

By the way, I think calling them privacy addresses sets the bar way too
high, maybe the title should be changed as well, "Privacy Extensions for
Stateless Address Autoconfiguration in IPv6" is probably setting the bar
too high.   Maybe "Temporary Address Extensions for ..."

Thanks

-- 
===============================================
David Farmer               Email:farmer@umn.edu
Networking & Telecommunication Services
Office of Information Technology
University of Minnesota
2218 University Ave SE        Phone: 612-626-0815
Minneapolis, MN 55414-3029   Cell: 612-812-9952
===============================================

v2.23.0 | Report a Bug | By Email