IETF Logo Mail Archive

Re: 6man w.g. last call for <draft-ietf-6man-default-iids-11.txt>

Brian E Carpenter <brian.e.carpenter@gmail.com> Mon, 16 May 2016 20:30 UTC

Return-Path: <brian.e.carpenter@gmail.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0CEC412D1C0 for <ipv6@ietfa.amsl.com>; Mon, 16 May 2016 13:30:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.7
X-Spam-Level:
X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZNQuqACgnUAz for <ipv6@ietfa.amsl.com>; Mon, 16 May 2016 13:30:29 -0700 (PDT)
Received: from mail-pa0-x235.google.com (mail-pa0-x235.google.com [IPv6:2607:f8b0:400e:c03::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C74B812D138 for <ipv6@ietf.org>; Mon, 16 May 2016 13:30:29 -0700 (PDT)
Received: by mail-pa0-x235.google.com with SMTP id qo8so25843333pab.1 for <ipv6@ietf.org>; Mon, 16 May 2016 13:30:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:to:references:cc:from:organization:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding; bh=ZdzG3fzxxKW37qIeMCOog84RpWbH03kfJODhfhFU4Ug=; b=Pvu2pTTJY6qOa0DN+Fy/hjfTUe/pOpPhPt77ycl78o3vhiMMWjpfCA3LYElNSyhqmA a4O1pZI+M1jL6QUafeb5mCESdXB/iwapnSz0kQel7fdgSWc0A/l8qKVKI13fcTidR2X/ 2mLKP+FjhDfwG6XTQ6KGzyx6sZzfOUL8ra5qiQF2W051YTDAq4NCt2wafBc7Cv2UYTD0 b67lBrMxCvnNIgcnomE4k5tBooVdVi9jBBWOz/6kEBjWySFrwfzxV8ToKVIISP7lNFj5 V+TvyDNn7bZck9W587sw0BGTdV0nIVESKBoXeEt+Z9xtSGV0xPRyFs754aWj5qXVK5P5 ZVvw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:subject:to:references:cc:from:organization :message-id:date:user-agent:mime-version:in-reply-to :content-transfer-encoding; bh=ZdzG3fzxxKW37qIeMCOog84RpWbH03kfJODhfhFU4Ug=; b=SudAeBU6SDtltuaF3MSMxsJNQGMJfrcwVOb5JTzWpKobsrDqi4bwl+azN5m1kdhYDW ekOG0J/0TDfmoNA4eazRT1yQeGppMJl/lu9tlyz4PKbypeF0SeFGG10ZHIfHgNA1t92k uHIz0Ff+bu4jflzWfOYFVfdDWK9sD0YVlAsXsP1R4Pb2WSMk3l5dOtdf8BvTzmWnin/I DpJ71I5mR5H4TKNMXj9+wjqcq4WnOKmSwdoMXjHk75lxnEZZun1bCo6rP4InHwZLyFn+ eF83Q9G+av8cg/CH5d8uznCY8l8lqhECtcVjfUDWpgQTSyWbVske4/yh/b7m/IkywKLq 7Zpg==
X-Gm-Message-State: AOPr4FWmtOw1Do3qYOLW8XgwWweR9F0aE+5Eiw3WvytYnXiIyxrXefbp0pfE8awm//6Ubg==
X-Received: by 10.66.139.70 with SMTP id qw6mr47811660pab.67.1463430629444; Mon, 16 May 2016 13:30:29 -0700 (PDT)
Received: from ?IPv6:2406:e007:442b:1:28cc:dc4c:9703:6781? ([2406:e007:442b:1:28cc:dc4c:9703:6781]) by smtp.gmail.com with ESMTPSA id w187sm49222419pfw.50.2016.05.16.13.30.26 (version=TLSv1/SSLv3 cipher=OTHER); Mon, 16 May 2016 13:30:27 -0700 (PDT)
Subject: Re: 6man w.g. last call for <draft-ietf-6man-default-iids-11.txt>
To: Alissa Cooper <alissa@cooperw.in>
References: <20160428004904.25189.43047.idtracker@ietfa.amsl.com> <89CA2C18-AE61-4D40-8997-221201835944@gmail.com> <6f2edbbc-d208-03a0-3c33-503a05c0bee8@gmail.com> <CAKD1Yr1So_tFFSr=sk8ew-UJG-dWK=U6N9mwJnwkZdNX=__SVQ@mail.gmail.com> <11cf3f90-e693-a640-a372-f419a8f7a1a0@gmail.com> <CAKD1Yr0OPuSmp-OWG-+ZjDsHucQYTG2PMZw7jdiU=4kQqK+tyQ@mail.gmail.com> <663debf7-cfba-b19b-92ef-89cc66b452d8@gmail.com> <CAKD1Yr2Km2A6XO8nvNv31Ti_Rr2j4gse1KLadJPcrgFMKyzszw@mail.gmail.com> <31E1F934-FEA2-4338-8F2C-04E7302F3170@cooperw.in>
From: Brian E Carpenter <brian.e.carpenter@gmail.com>
Organization: University of Auckland
Message-ID: <04271b8d-efc9-7a3f-6200-42cbc3daf919@gmail.com>
Date: Tue, 17 May 2016 08:30:27 +1200
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.0
MIME-Version: 1.0
In-Reply-To: <31E1F934-FEA2-4338-8F2C-04E7302F3170@cooperw.in>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipv6/LzkX8VZQ8bmelo5ChQQ5zY2o9Lg>
Cc: IETF IPv6 Mailing List <ipv6@ietf.org>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 16 May 2016 20:30:31 -0000

On 17/05/2016 05:29, Alissa Cooper wrote:
> Hi Lorenzo,
> 
>> On May 13, 2016, at 8:29 PM, Lorenzo Colitti <lorenzo@google.com> wrote:

...
>> any remote attacker anywhere on the Internet that ever exchanges a packet with that host can track it every time the host visits the same network, *forever*, with no recourse. Section 3 point 1.
>>
>> Either we fix that or we stop asserting that this draft is motivated by privacy considerations.
> 
> I would frankly be thrilled if we could get away from stable addresses altogether. But I’m skeptical about the feasibility of achieving consensus around that at present. Defining the approach in this draft in the meantime is certainly motivated by consideration for privacy improvement for me, even if that improvement is incremental.

Exactly. There is a tussle between enterprise or campus network operators who
have a strong desire for stable addresses (such that they can identify miscreants)
and individuals who want to avoid tracking (such that they can avoid surveillance).
That tussle is not going to go away any time soon, so stable client IIDs are not
going away either.

I don't expect enterprise or campus operators to react well to pseudo-random MAC
addresses, either.

    Brian

v2.23.0 | Report a Bug | By Email