Re: New Version Notification for draft-huitema-6man-random-addresses-00.txt
Tim Chown <tjc@ecs.soton.ac.uk> Wed, 15 July 2015 12:40 UTC
Return-Path: <tjc@ecs.soton.ac.uk>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 18C6F1A8AA6 for <ipv6@ietfa.amsl.com>; Wed, 15 Jul 2015 05:40:27 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.231
X-Spam-Level:
X-Spam-Status: No, score=-1.231 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_NEUTRAL=0.779, T_RP_MATCHES_RCVD=-0.01] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CacRpwwqaboT for <ipv6@ietfa.amsl.com>; Wed, 15 Jul 2015 05:40:25 -0700 (PDT)
Received: from falcon.ecs.soton.ac.uk (falcon.ecs.soton.ac.uk [IPv6:2001:630:d0:f102::25e]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DE6971A8A9E for <ipv6@ietf.org>; Wed, 15 Jul 2015 05:40:24 -0700 (PDT)
Received: from falcon.ecs.soton.ac.uk (localhost.ecs.soton.ac.uk [127.0.0.1]) by falcon.ecs.soton.ac.uk (8.13.8/8.13.8) with ESMTP id t6FCeKNn003097; Wed, 15 Jul 2015 13:40:20 +0100
X-DKIM: Sendmail DKIM Filter v2.8.2 falcon.ecs.soton.ac.uk t6FCeKNn003097
DKIM-Signature: v=1; a=rsa-sha1; c=simple/simple; d=ecs.soton.ac.uk; s=201304; t=1436964021; bh=TVf9/Pbqst3Kp8Sxzn5fLqaIrPM=; h=Mime-Version:Subject:From:In-Reply-To:Date:Cc:References:To; b=Uf3ht/YXRYp3lVB4AC/BYJx4P0EV+x6/2hJBQ/4J+kpfrvYXr9aTbtCdw1omFgGZc 9W2ewpS+35QrwTQ7CzX++HmW7ErcDtoIJZoy2ovNVkt5+B8QXYVqWG9dnZKi4sPEgL ON3wi+eSyPDMZgH54nqKrRsZ8KC9uXem11ebwhqw=
Received: from gander.ecs.soton.ac.uk ([2001:630:d0:f102:250:56ff:fea0:401]) by falcon.ecs.soton.ac.uk (falcon.ecs.soton.ac.uk [2001:630:d0:f102:250:56ff:fea0:68da]) envelope-from <tjc@ecs.soton.ac.uk> with ESMTP (valid=N/A) id r6EDeK3258304712gB ret-id none; Wed, 15 Jul 2015 13:40:20 +0100
Received: from [10.1.11.13] ([194.82.140.195]) (authenticated bits=0) by gander.ecs.soton.ac.uk (8.13.8/8.13.8) with ESMTP id t6FCd2KM004265 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 15 Jul 2015 13:39:02 +0100
Content-Type: text/plain; charset="windows-1252"
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2102\))
Subject: Re: New Version Notification for draft-huitema-6man-random-addresses-00.txt
From: Tim Chown <tjc@ecs.soton.ac.uk>
In-Reply-To: <55966D7D.40508@gmail.com>
Date: Wed, 15 Jul 2015 13:39:02 +0100
Content-Transfer-Encoding: quoted-printable
Message-ID: <EMEW3|69f5c1b5a5daf4f7291b59f86b7bccedr6EDeK03tjc|ecs.soton.ac.uk|58D79755-FAE3-4DDE-A054-86D5F1FF0B8C@ecs.soton.ac.uk>
References: <20150701171258.28235.17688.idtracker@ietfa.amsl.com> <DM2PR0301MB06552EC00BF6C1045DC6AFB7A8A80@DM2PR0301MB0655.namprd03.prod.outlook.com> <55966D7D.40508@gmail.com> <58D79755-FAE3-4DDE-A054-86D5F1FF0B8C@ecs.soton.ac.uk>
To: Alexandru Petrescu <alexandru.petrescu@gmail.com>
X-Mailer: Apple Mail (2.2102)
X-ECS-MailScanner: Found to be clean, Found to be clean
X-smtpf-Report: sid=r6EDeK325830471200; tid=r6EDeK3258304712gB; client=relay,forged,no_ptr,ipv6; mail=; rcpt=; nrcpt=2:0; fails=0
X-ECS-MailScanner-Information: Please contact the ISP for more information
X-ECS-MailScanner-ID: t6FCeKNn003097
X-ECS-MailScanner-From: tjc@ecs.soton.ac.uk
Archived-At: <http://mailarchive.ietf.org/arch/msg/ipv6/XW7tK-W4LnKnJCpEcleQOLuKW9k>
Cc: ipv6@ietf.org
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Jul 2015 12:40:27 -0000
Hi, > On 3 Jul 2015, at 12:09, Alexandru Petrescu <alexandru.petrescu@gmail.com> wrote: > > Indeed, changing the IID as the MAC address changes is a good > idea. It obviously enhances the privacy afforded. > ... There may be a little more to say on IID-MAC address mappings. A different perspective on this issue is the ‘first hop security’ (FHS) one. If a host changes its IP address and not its MAC address, relatively rapidly over a short space of time, then network devices using FHS may block the device from the network, viewing the changes as some kind of attack. This has happened on our university wireless network with Apple and Cisco equipment in the past (though quickly resolved :) where the Apple device created a new privacy address each time the device slept. But also, a device keeping the same IP and changing MAC may fall foul of similar tools, or SAVI-style approaches to FHS. In general, developers of such FHS mechanisms may not develop them on the assumption of such privacy-enhancing mechanisms being in place, so there is a potential conflict between a user’s privacy and an administrator’s desire to detect certain types of attacks. Perhaps this is something to mention in the security section? Tim > > Le 01/07/2015 19:16, Christian Huitema a écrit : >> Following yesterday's discussion with Fernando, Alissa and Dave, I >> prepared this short draft explaining the interaction between MAC >> address randomization and IPv6 addressing privacy. If there is time >> on the agenda, I would be happy to discuss the subject in Prague. >> >> -- Christian Huitema >> >> >> >> -----Original Message----- From: internet-drafts@ietf.org >> [mailto:internet-drafts@ietf.org] Sent: Wednesday, July 1, 2015 10:13 >> AM To: Christian Huitema; Christian Huitema Subject: New Version >> Notification for draft-huitema-6man-random-addresses-00.txt >> >> >> A new version of I-D, draft-huitema-6man-random-addresses-00.txt has >> been successfully submitted by Christian Huitema and posted to the >> IETF repository. >> >> Name: draft-huitema-6man-random-addresses Revision: 00 Title: >> Implications of Randomized Link Layers Addresses for IPv6 Address >> Assignment Document date: 2015-07-01 Group: Individual Submission >> Pages: 8 URL: >> https://www.ietf.org/internet-drafts/draft-huitema-6man-random-addresses-00.txt >> >> >> >> > Status: > https://datatracker.ietf.org/doc/draft-huitema-6man-random-addresses/ >> Htmlized: >> https://tools.ietf.org/html/draft-huitema-6man-random-addresses-00 >> >> >> Abstract: Hosts may assign random link-layer addresses to network >> interfaces in an attempt to increase privacy and reduce trackability. >> Careless assignment of IPv6 addresses may negate the privacy >> advantages of random link-layer addresses. We propose simple >> solutions to ensure that IPv6 addresses do change whenever the link >> layer addresses change. >> >> >> >> >> Please note that it may take a couple of minutes from the time of >> submission until the htmlized version and diff are available at >> tools.ietf.org. >> >> The IETF Secretariat >> >> -------------------------------------------------------------------- >> IETF IPv6 working group mailing list ipv6@ietf.org Administrative >> Requests: https://www.ietf.org/mailman/listinfo/ipv6 >> -------------------------------------------------------------------- >> > > -------------------------------------------------------------------- > IETF IPv6 working group mailing list > ipv6@ietf.org > Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 > --------------------------------------------------------------------
- FW: New Version Notification for draft-huitema-6m… Christian Huitema
- Re: FW: New Version Notification for draft-huitem… Alexandru Petrescu
- Re: New Version Notification for draft-huitema-6m… Tim Chown
- Re: New Version Notification for draft-huitema-6m… Fernando Gont