Re: Disabling temporary addresses by default?

[Michael Richardson <mcr+ietf@sandelman.ca>]

Mark Smith <markzzzsmith@gmail.com> wrote:
    >> The main reason this topic comes has up is due to possible impact of
    >> usage of the temporary address when it gets deprecated with long lived
    >> session.
    >> 

    > Devices and their end-users that desire address privacy are unlikely to
    > have long lived connections.

    > Can you provide an example of a common long lived connection that would
    > occur with a laptop or smartphone? I can't think of one.

Maybe you could ask the question differently;

_Can you provide an example of a common long lived connection that would
 occur with an Android or Linux based wireless device?_

(Yes, I've just excluded Apple iOS, because AFAIK, there are no iOS based IoT
devices other than smartphones)

So, let me give you my list now:
1) Point of Sale tablet in store (iPad or Android)
2) (smart)TV for use in the living room
3) (smart)TV used as screen for security system
4) Laptop at home with SSH connection, or VPN to office. (Networks are fast
   enough/low-enough latency today to do X-windows over SSH across town)
5) Billions of IoT devices using MQTT.
6) NFS, SSHFS
7) All the HTTP/1.1 stuff using push notifications, for devices that don't
   leave the home: Smart Fridge, kids tablet, reading tablet, 

Do these devices benefit from the privacy that temporary addresses provide?
That's a different question.  Have most of these devices had to learn to
reconnect? Or to point it another way, have applications had to learn to make
up for a layer-3/4 which is was rendered unreliable by NAT44? yes. 
Is that well architected? No.

I would argue that we (Ubuntu,Android,etc.) have moved forward with temporary
addresses by default without enough work around the side.  Meanwhile, PLPTMU
is still not enabled by default, which I think is a significantly more
important thing.

    > Even back in the early 1990s, when fixed location desktops were the
    > main personal computing device, long lived client connections were
    > rare. If you wanted a reliable long lived connection for something, you
    > didn't use your desktop, you used the hosts/servers that were in
    > computer rooms protected by UPS.

I disagree.

In the 1990s my office desktop had long lived connections (logins, X-windows
sessions, even RDP sessions) that lived for weeks.  Between power
interruptions, or OS patches.  More the later actually, but this was the
1990s, so it wasn't automatic.

Yes, you are right, power failures are an annoyance, especially when it's 90
seconds every Sunday night at 5pm {I'm looking at you UQO.ca}, but a $80 UPS
solved that.

I stopped lugging a laptop around around in 2010, opting for a desktop system
(with many monitors and ergonomic keyboard) at each major location,
plus... well.. Internet.   I tried no-laptop (tablet only), but projecting
slides at IETF was one of the pain points, and I now have a capable laptop,
but it's not my, as you said, my primary location.  The desktop at the office
with UPS is.

-- 
]               Never tell me the odds!                 | ipv6 mesh networks [ 
]   Michael Richardson, Sandelman Software Works        | network architect  [ 
]     mcr@sandelman.ca  http://www.sandelman.ca/        |   ruby on rails    [