IETF Logo Mail Archive

Re: Stephen Farrell's Discuss on draft-ietf-6man-stable-privacy-addresses-16: (with DISCUSS and COMMENT)

Thomas Narten <narten@us.ibm.com> Thu, 23 January 2014 01:24 UTC

Return-Path: <narten@us.ibm.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 44D191A0200 for <ipv6@ietfa.amsl.com>; Wed, 22 Jan 2014 17:24:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.436
X-Spam-Level:
X-Spam-Status: No, score=-7.436 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.535, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id WTsJOhR2wPjv for <ipv6@ietfa.amsl.com>; Wed, 22 Jan 2014 17:23:56 -0800 (PST)
Received: from e32.co.us.ibm.com (e32.co.us.ibm.com [32.97.110.150]) by ietfa.amsl.com (Postfix) with ESMTP id 778111A0147 for <ipv6@ietf.org>; Wed, 22 Jan 2014 17:23:56 -0800 (PST)
Received: from /spool/local by e32.co.us.ibm.com with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted for <ipv6@ietf.org> from <narten@us.ibm.com>; Wed, 22 Jan 2014 18:23:55 -0700
Received: from d03dlp02.boulder.ibm.com (9.17.202.178) by e32.co.us.ibm.com (192.168.1.132) with IBM ESMTP SMTP Gateway: Authorized Use Only! Violators will be prosecuted; Wed, 22 Jan 2014 18:23:54 -0700
Received: from b03cxnp07029.gho.boulder.ibm.com (b03cxnp07029.gho.boulder.ibm.com [9.17.130.16]) by d03dlp02.boulder.ibm.com (Postfix) with ESMTP id 22E633E4003F; Wed, 22 Jan 2014 18:23:52 -0700 (MST)
Received: from d03av06.boulder.ibm.com (d03av06.boulder.ibm.com [9.17.195.245]) by b03cxnp07029.gho.boulder.ibm.com (8.13.8/8.13.8/NCO v10.0) with ESMTP id s0MNLQ1d7995722; Thu, 23 Jan 2014 00:21:26 +0100
Received: from d03av06.boulder.ibm.com (loopback [127.0.0.1]) by d03av06.boulder.ibm.com (8.14.4/8.13.1/NCO v10.0 AVout) with ESMTP id s0N1RAgV003588; Wed, 22 Jan 2014 18:27:10 -0700
Received: from cichlid.raleigh.ibm.com (sig-9-65-92-95.mts.ibm.com [9.65.92.95]) by d03av06.boulder.ibm.com (8.14.4/8.13.1/NCO v10.0 AVin) with ESMTP id s0N1R8HB003565 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 22 Jan 2014 18:27:10 -0700
Received: from cichlid.raleigh.ibm.com.us.ibm.com (localhost [127.0.0.1]) by cichlid.raleigh.ibm.com (8.14.4/8.12.5) with ESMTP id s0N1NmOv031213; Wed, 22 Jan 2014 20:23:48 -0500
Date: Wed, 22 Jan 2014 20:23:48 -0500
Message-ID: <m3r47z8p97.wl%narten@us.ibm.com>
From: Thomas Narten <narten@us.ibm.com>
To: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Subject: Re: Stephen Farrell's Discuss on draft-ietf-6man-stable-privacy-addresses-16: (with DISCUSS and COMMENT)
In-Reply-To: <20140123001035.19199.91573.idtracker@ietfa.amsl.com>
References: <20140123001035.19199.91573.idtracker@ietfa.amsl.com>
User-Agent: Wanderlust/2.15.9 (Almost Unreal) SEMI-EPG/1.14.7 (Harue) FLIM/1.14.9 (Gojō) APEL/10.8 EasyPG/1.0.0 Emacs/23.1 (x86_64-redhat-linux-gnu) MULE/6.0 (HANACHIRUSATO)
MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue")
Content-Type: text/plain; charset="US-ASCII"
X-TM-AS-MML: disable
X-Content-Scanned: Fidelis XPS MAILER
x-cbid: 14012301-0928-0000-0000-000005E7606E
Cc: 6man-chairs@tools.ietf.org, ipv6@ietf.org, The IESG <iesg@ietf.org>, draft-ietf-6man-stable-privacy-addresses@tools.ietf.org
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 23 Jan 2014 01:24:00 -0000

I have followed, but not commented on the perpass discussion. But I do
share the concern raised by some that pushback as a result of perpass
concerns can easily get out of hand. 

Is this a preview of what's to come?

At Wed, 22 Jan 2014 16:10:35 -0800,
Stephen Farrell wrote:
> ----------------------------------------------------------------------
> DISCUSS:
> ----------------------------------------------------------------------
> 
> 
> (0) Just modifying my disucss to discuss a part of Brian's discuss:-)
> I'm sure we'll sort it out easily enough though. I very much do not
> think that it'd be a good plan to store every address that has been
> generated using this algorithm. That would be making a
> privacy-enhancing feature damage privacy. See [1] for an example.

And can you point me to the text in the draft that suggests doing so?
(Hint: the draft says no such thing.)

Or for that mattter, who has suggested anyone do this? (Again, AFAIK,
no one has suggested this.)

Are we in hyperbole land? Can we please get back to reality?

Are we now going to require that all internal logs be scrubbed of
potentially sensitive material? If we think we are going to stop the
storage and recording of IP addresses on the devices that are actually
using those addresses, that is just nuts. Think this through for a
minute!

I'm sure the IETF could say the IP stack (as part of trying to make
network connectivity work better) shouldn't store/cache addresses it
has used. And maybe as a result the stack will work a little less
efficiently but it at least won't have stored an address it recently
used...

But then we better hope that noone bothers to look in the browser
cache, or /var/log/messages, etc. which will likely have the same
information and much much more...

Thomas

v2.23.0 | Report a Bug | By Email