IETF Logo Mail Archive

AW: "RFC4941bis" and draft-gont-6man-non-stable-iids

Johanna Ullrich <JUllrich@sba-research.org> Fri, 21 July 2017 10:39 UTC

Return-Path: <JUllrich@sba-research.org>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9F9F812ECF0 for <ipv6@ietfa.amsl.com>; Fri, 21 Jul 2017 03:39:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FZy6a8iSu1Qf for <ipv6@ietfa.amsl.com>; Fri, 21 Jul 2017 03:39:11 -0700 (PDT)
Received: from mail.sba-research.org (mail.sba-research.org [188.21.236.108]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E5D65127337 for <6man@ietf.org>; Fri, 21 Jul 2017 03:39:10 -0700 (PDT)
Received: from SATVIEEX03.securityresearch.local (172.16.0.17) by SATVIEEX03.securityresearch.local (172.16.0.17) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Fri, 21 Jul 2017 12:39:08 +0200
Received: from SATVIEEX03.securityresearch.local ([fe80::a91d:83ac:63e0:937c]) by SATVIEEX03.securityresearch.local ([fe80::a91d:83ac:63e0:937c%12]) with mapi id 15.00.1210.000; Fri, 21 Jul 2017 12:39:08 +0200
From: Johanna Ullrich <JUllrich@sba-research.org>
To: Francis Dupont <Francis.Dupont@fdupont.fr>, Brian E Carpenter <brian.e.carpenter@gmail.com>
CC: Fernando Gont <fgont@si6networks.com>, Suresh Krishnan <suresh.krishnan@gmail.com>, "6man@ietf.org" <6man@ietf.org>
Subject: AW: "RFC4941bis" and draft-gont-6man-non-stable-iids
Thread-Topic: "RFC4941bis" and draft-gont-6man-non-stable-iids
Thread-Index: AQHTAfSlU3QyWVcLoEaMNQ1+r7EaXKJeFvol
Date: Fri, 21 Jul 2017 10:39:07 +0000
Message-ID: <1500633546946.27169@sba-research.org>
References: Your message of Fri, 21 Jul 2017 16:40:56 +1200. <71240a1a-6e8f-3509-a2f2-dc38308ff1c1@gmail.com>, <201707210740.v6L7edWt004994@givry.fdupont.fr>
In-Reply-To: <201707210740.v6L7edWt004994@givry.fdupont.fr>
Accept-Language: de-DE, de-AT, en-US
Content-Language: de-DE
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-ms-exchange-transport-fromentityheader: Hosted
x-originating-ip: [192.168.100.18]
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/Rj5tZi9tB2hWmZG9Zo1W1z75zo4>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Jul 2017 10:39:14 -0000

>> Now the I-D name is temporary so it should be more important to
>> discuss about its content...
+1

Beyond Fernando's issues, I'd like to add the following:
* Subsequent addresses are concatenated with each other. 
* There is no entropy added when calculating the next IID based on the current history value.
* Instead, only values that are likely to be known by other parties (MAC addresses) are included. 
* Initial randomization of the algorithm is rather low (only 64 bits).

With regard to the specific algorithms that are proposed in draft-gont-6man-non-stable-iids:
I prefer to use randomized IIDs as it bears advantages. If a random number generator became vulnerable at some point in the future, the generator would be fixed anyway and the privacy extension implementation would automatically benefit. In addition, no alternative version of the privacy extension for devices without stable storage is needed.

The algorithm of RFC 4941 must not be used. An adversary is able to perform address correlation having reasonable effort, and protection against such attacks is the privacy extension's one and only purpose.

Regards,
Johanna Ullrich

________________________________________
Von: ipv6 <ipv6-bounces@ietf.org> im Auftrag von Francis Dupont <Francis.Dupont@fdupont.fr>
Gesendet: Freitag, 21. Juli 2017 09:40
An: Brian E Carpenter
Cc: Fernando Gont; Suresh Krishnan; 6man@ietf.org
Betreff: Re: "RFC4941bis" and draft-gont-6man-non-stable-iids

When following a number it can get a specific meaning: in a postal
address bis (and ter) means something was inserted between two
numbers (usually between N and N + 2 as streets have an even side
and an odd side).

In the IETF context I agree "bis" means more a revamp and major
changes come from consolidation with other related documents
published after.

So in the RFC4941bis particular case the name is really arguable
and IMHO if the new mechanism is not backward compatible the bis
name should not be used.

Now the I-D name is temporary so it should be more important to
discuss about its content...

Regards

Francis.Dupont@fdupont.fr

--------------------------------------------------------------------
IETF IPv6 working group mailing list
ipv6@ietf.org
Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6
--------------------------------------------------------------------

v2.23.0 | Report a Bug | By Email