IETF Logo Mail Archive

Re: Address privacy

Tom Herbert <tom@herbertland.com> Wed, 29 January 2020 01:24 UTC

Return-Path: <tom@herbertland.com>
X-Original-To: ipv6@ietfa.amsl.com
Delivered-To: ipv6@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 926771200EF for <ipv6@ietfa.amsl.com>; Tue, 28 Jan 2020 17:24:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.897
X-Spam-Level:
X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CepYsIEWl9vu for <ipv6@ietfa.amsl.com>; Tue, 28 Jan 2020 17:24:42 -0800 (PST)
Received: from mail-ed1-x52a.google.com (mail-ed1-x52a.google.com [IPv6:2a00:1450:4864:20::52a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8C8231200B3 for <ipv6@ietf.org>; Tue, 28 Jan 2020 17:24:42 -0800 (PST)
Received: by mail-ed1-x52a.google.com with SMTP id c26so16833394eds.8 for <ipv6@ietf.org>; Tue, 28 Jan 2020 17:24:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=AmAzw8Cw4lxfq2URdDLQd4ToH0oyX5X5abF5IDaBzFY=; b=s0J/fRSZaRZ/D6mLSjh6K8l63i4vQzd2O+LF99qjWXyZjAxXMyOndfTNuJSOFizW2v /qkJpsVmuHXEAjcsdnHBI0isD+ZU+zD0YKA3cCleXwq83EGDrqAdOtV1CxIOXuAE0Mk6 PqUv795JgMACPgjMuBQCVWesbSZyBcgrDXBnqk8QVh7G8TTho7uY7AdaMgt7dDEW8UIg PExnRqbe5Nz/Yf6A7la9wVyn0vCUPDDAYDkQmFqfv3BeJrr89FNJ8dLQudbxUnlGTub5 /RVwljbFymBmSgxKI5dBNf5C8fxHacA9EDr9NBvnnjbnmIg3DGCPTQH7BxLN8Uk964jG qCWQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=AmAzw8Cw4lxfq2URdDLQd4ToH0oyX5X5abF5IDaBzFY=; b=tNxGDNueaLFmLaFpA9O4pxezixa9Dom4KrG13F7aC+Kja5NH4FrxqoXx4za7L7Mi6L ISVOsHgt1dF96qe2dYDDclj81HpE0UwsdZnP3gIOf58sMZXl5HUYQM3mfbpxMswl7Iku ojZr7wdfj8HQwZX5n9UzDkDDlKozrFtZybV8fY13TasyQJubDdwI6uWZuAYr/kFRgTtw HbBhhi6gNuhnirecjz7/N4CCZgCuL7tzSy8dkE45RUynnEbDAKAP9qID51KoGxUPJkGm YkAm+P/+K9uKSHpNfyYh2/dPCr8GwwVpNyoV+PZ2ombjqL77eDvF/7LhIZwDImESYhYX /1/w==
X-Gm-Message-State: APjAAAUzA6m8omLWeJoTHWaG/xK86/djeNw2L89pbkfRbmj/MF+Iyusj 2FrEwB0TsSX5YVVaYpSFpXnhCPmwomUYfmcssS98Eg==
X-Google-Smtp-Source: APXvYqwupLOtRInFJ4WeSOUg2mgZYRlOhqcK4sPqcYXwbE+1TXkXFUB7WSZbZ8+E9XO1wLWAGuB5KFFUh+qKOLheeGw=
X-Received: by 2002:a50:eb95:: with SMTP id y21mr5822581edr.212.1580261081042; Tue, 28 Jan 2020 17:24:41 -0800 (PST)
MIME-Version: 1.0
References: <03C832CE-7282-4320-BF1B-4CB7167FE6BE@employees.org> <1962.1579823388@localhost> <f83ab037-9125-bb74-dbac-68850aeb1020@huitema.net> <CBB23ABE-A7A3-4208-873C-E47EE063E34B@fugue.com> <11855.1579980079@localhost> <CALx6S36V_VjaxhELYcsgDYLWsCkj20p6gtiY9T9Q=9-9Oibyjw@mail.gmail.com> <32626.1580060558@localhost> <CALx6S37prWACD0jv9c-XHD-JtPqZAcgeT2Ax0EZHkiQaDR4t=g@mail.gmail.com> <419b7c7a-e364-7951-5a44-6c39e1da65fb@joelhalpern.com> <CALx6S36802oDaEgojAPq2c6hM_s1BayidXPh1Sc6RZmZa9UHpQ@mail.gmail.com> <6c5ba72d-9289-90ba-a1c9-2307ed29a4da@foobar.org> <a98bf2ab-32e7-459b-14d2-5e0e1c65a229@si6networks.com> <CALx6S36J5TPnXJQyMW2NUbQV6KL_oqUQ01m+BEzBJ+xcHpmQWw@mail.gmail.com> <bc0d1eb8-2301-224d-dc33-19f6a60e593e@si6networks.com> <CALx6S34i67ivt8t1P3omRVzsj9NfxY2t41JLjmjT6X0vtBQHKQ@mail.gmail.com> <1fc7816e-6179-28d6-7b11-be2027561a54@si6networks.com> <CALx6S37KXfLE22uHMZTD41+jR7fdZd9PZGqO-r4SE2LehtN=Gg@mail.gmail.com> <2d312ecf-e037-5c24-28d7-2a2c3dc06363@si6networks.com> <CALx6S37A1QzR0PhDUzujXGiB+a-9c1qG4g8TE8KOcxOLKP18TQ@mail.gmail.com> <42900FAF-7FD8-46D8-9831-5B9E520814BB@fugue.com> <CALx6S36f41nbj=2fibt9X2EpDO1Rz6o2Fm-QeNMvUfzPCu10jw@mail.gmail.com> <9096841F-5564-4FCF-8423-DB1905D74CE0@steffann.nl>
In-Reply-To: <9096841F-5564-4FCF-8423-DB1905D74CE0@steffann.nl>
From: Tom Herbert <tom@herbertland.com>
Date: Tue, 28 Jan 2020 17:24:28 -0800
Message-ID: <CALx6S37UbzfjU0u+5qZzg7GuMyhBLZCOnqGa5XfUptE+ZmNH_Q@mail.gmail.com>
Subject: Re: Address privacy
To: Sander Steffann <sander@steffann.nl>
Cc: Ted Lemon <mellon@fugue.com>, Fernando Gont <fgont@si6networks.com>, 6man WG <ipv6@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/ipv6/tRNtLQazQ_dUyOdem0VwB-JVybI>
X-BeenThere: ipv6@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ipv6/>
List-Post: <mailto:ipv6@ietf.org>
List-Help: <mailto:ipv6-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Jan 2020 01:24:45 -0000

On Tue, Jan 28, 2020 at 4:56 PM Sander Steffann <sander@steffann.nl> wrote:
>
> Hi,
>
> > Addresses might be correlated to a provider, but no correlations can
> > be made between addresses within the provider space so attributing
> > different flows to the same user cannot be done. A NAT device with a
> > large number backend users would exhibit these properties even in
> > IPv4.
>
> It's the "with a large number backend users" bit. In many many situations that's not the case.
>
Yes, that's not a general solution and I'm not advocating it. However,
I do believe when it comes to privacy in addressing, NAT can better
properties than temporary IP addresses because it is effectively
single use addresses that prevent correlations between independent
communications. Law enforcements push to eliminate CGNAT is
testimonial to that
(https://www.theregister.co.uk/2017/10/18/europol_cgnat/).

Tom



> Cheers,
> Sander
>

v2.23.0 | Report a Bug | By Email