IETF Logo Mail Archive

Re: [ipwave] Alissa Cooper's Discuss on draft-ietf-ipwave-ipv6-over-80211ocb-49: (with DISCUSS and COMMENT)

Alexandre Petrescu <alexandre.petrescu@gmail.com> Fri, 12 July 2019 14:48 UTC

Return-Path: <alexandre.petrescu@gmail.com>
X-Original-To: its@ietfa.amsl.com
Delivered-To: its@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DB7D812038C for <its@ietfa.amsl.com>; Fri, 12 Jul 2019 07:48:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.631
X-Spam-Level:
X-Spam-Status: No, score=-2.631 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_CUSTOM_MED=0.001, FREEMAIL_FROM=0.001, NML_ADSP_CUSTOM_MED=0.9, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NtmOfVIoBT5J for <its@ietfa.amsl.com>; Fri, 12 Jul 2019 07:48:20 -0700 (PDT)
Received: from cirse-smtp-out.extra.cea.fr (cirse-smtp-out.extra.cea.fr [132.167.192.148]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7ABFF120388 for <its@ietf.org>; Fri, 12 Jul 2019 07:48:20 -0700 (PDT)
Received: from pisaure.intra.cea.fr (pisaure.intra.cea.fr [132.166.88.21]) by cirse-sys.extra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id x6CEmIKg007788 for <its@ietf.org>; Fri, 12 Jul 2019 16:48:18 +0200
Received: from pisaure.intra.cea.fr (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id 71FC320404A for <its@ietf.org>; Fri, 12 Jul 2019 16:48:18 +0200 (CEST)
Received: from muguet1-smtp-out.intra.cea.fr (muguet1-smtp-out.intra.cea.fr [132.166.192.12]) by pisaure.intra.cea.fr (Postfix) with ESMTP id 66F67204041 for <its@ietf.org>; Fri, 12 Jul 2019 16:48:18 +0200 (CEST)
Received: from [10.8.35.150] (is154594.intra.cea.fr [10.8.35.150]) by muguet1-sys.intra.cea.fr (8.14.7/8.14.7/CEAnet-Internet-out-4.0) with ESMTP id x6CEmIwD018104 for <its@ietf.org>; Fri, 12 Jul 2019 16:48:18 +0200
To: its@ietf.org
References: <156278324219.15531.9469512400534766331.idtracker@ietfa.amsl.com> <CAD8vqFf5nQk+BWfoOnR9p5JHMfWf1fj1FCtAkJzgiDnFrz+Mqg@mail.gmail.com> <2CFE579C-7625-4875-AD4A-D5C26814287D@cooperw.in> <CAD8vqFf2XUuLbjszGZG8zcmMsv13iamKMiDQwgQXs4BvxL7D2A@mail.gmail.com>
From: Alexandre Petrescu <alexandre.petrescu@gmail.com>
Message-ID: <232e06b7-6d14-2050-3cab-b41990c19964@gmail.com>
Date: Fri, 12 Jul 2019 16:48:18 +0200
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.7.2
MIME-Version: 1.0
In-Reply-To: <CAD8vqFf2XUuLbjszGZG8zcmMsv13iamKMiDQwgQXs4BvxL7D2A@mail.gmail.com>
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: fr
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/its/trduZ2ZnARRp70c4lXJrcROGbAU>
Subject: Re: [ipwave] Alissa Cooper's Discuss on draft-ietf-ipwave-ipv6-over-80211ocb-49: (with DISCUSS and COMMENT)
X-BeenThere: its@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IPWAVE - IP Wireless Access in Vehicular Environments WG at IETF <its.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/its>, <mailto:its-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/its/>
List-Post: <mailto:its@ietf.org>
List-Help: <mailto:its-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/its>, <mailto:its-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 12 Jul 2019 14:48:24 -0000


Le 11/07/2019 à 16:25, Nabil Benamar a écrit :
> Hi Alissa,
> 
> Are you referring to this text that may be added to the document?
> 
> 
> "However, there are some specificities related to vehicles. Since
> they roam a lot, the use of the same Link-Local Address over time can
> leak the presence of the same vehicle in multiple places. Location
> tracking, if the same interface identifier is used with different
> prefixes as a device/vehicle moves between different networks."

Expressing the need of change of Link-local Address of an OCB interface
of an automobile in order to ensure privacy should be accompanied with
expressing the need of keeping Link-local Address stable next-hop of
routing table entry in nearby automobile.

The routing works like this: an Automobile holds a routing table entry
whose next-hop field contains the link-local address of the nearby
Automobile.  If that link-local address changes, then the two
Automobiles can no longer talk to each other.

So yes, change the LL address to ensure privacy and dodge the attackers,
but no, do not change it - i.e. keep it stable - otherwise the
legitimate users will be disconnected.

Alex

> 
> On Thu, Jul 11, 2019 at 2:52 PM Alissa Cooper <alissa@cooperw.in 
> <mailto:alissa@cooperw.in>> wrote:
> 
> Hi Nabil,
> 
>> On Jul 10, 2019, at 4:57 PM, Nabil Benamar <n.benamar@est.umi.ac.ma
>> <mailto:n.benamar@est.umi.ac.ma>> wrote:
>> 
>> Hi Alissa,
>> 
>> Thanks again for your review. Please see my answers below
>> 
>> 
>> On Wed, Jul 10, 2019 at 7:27 PM Alissa Cooper via Datatracker 
>> <noreply@ietf.org <mailto:noreply@ietf.org>> wrote:
>> 
>> Alissa Cooper has entered the following ballot position for 
>> draft-ietf-ipwave-ipv6-over-80211ocb-49: Discuss
>> 
>> When responding, please keep the subject line intact and reply to
>> all email addresses included in the To and CC lines. (Feel free to 
>> cut this introductory paragraph, however.)
>> 
>> 
>> Please refer 
>> tohttps://www.ietf.org/iesg/statement/discuss-criteria.html for
>> more information about IESG DISCUSS and COMMENT positions.
>> 
>> 
>> The document, along with other ballot positions, can be found 
>> here: 
>> https://datatracker.ietf.org/doc/draft-ietf-ipwave-ipv6-over-80211ocb/
>>
>>
>>
>>
>> 
----------------------------------------------------------------------
>> DISCUSS: 
>> ----------------------------------------------------------------------
>>
>>
>> 
I support Roman's DISCUSS.
>> 
>> Overall I am unclear on the privacy properties of what this 
>> document specifies. I think it would help to have a clear statement
>> about the circumstances under which each kind of address generation
>> scheme is recommended. Were RFC 4941 addresses not considered
>> because addresses generated according to RFC 8064 have functionally
>> equivalent properties given how often moving vehicle change 
>> subnets? For link-local addresses, is it possible to give 
>> recommendations for when IIDs should be re-generated?
>> 
>> Here is the new text in -49
>> 
>> An example of change policy is to change the MAC address of the OCB
>> interface each time the system boots up. This may help mitigate
>> privacy risks to a certain level. Futhermore, for pricavy concerns
>> ([RFC8065 <https://tools.ietf.org/html/rfc8065>]) recommends using
>> an address generation scheme rather than addresses generated from a
>> fixed link-layer address.
>> 
> 
> I saw this when I read the document but it doesn’t address my 
> questions above. Also in your email to Roni you mentioned other 
> environmental factors that might trigger a change in link-local 
> address, so I was hoping to see that in the document text.
> 
> Thanks, Alissa
> 
>> = Section 5.2 =
>> 
>> "An Interface ID SHOULD be of length specified in other 
>> documents."
>> 
>> Isn't the length specified for each of the two IID generation 
>> mechanisms discussed in Section 4.3 and 4.4?
>> 
>> 
>> We decided to remove this sentence from the text since ther is no 
>> other document.
>> 
>> 
>> = Section 5.3 =
>> 
>> "The demand for privacy protection of vehicles' and drivers' 
>> identities, which could be granted by using a pseudonym or alias 
>> identity at the same time, may hamper the required confidentiality
>> of messages and trust between participants"
>> 
>> Pseudonymity and confidentiality are not mutually exclusive, so I
>> think this is incorrect.
>> 
>> 
>> I agree.
>> 
>> 
>> 
>> ----------------------------------------------------------------------
>>
>> 
COMMENT:
>> ----------------------------------------------------------------------
>>
>>
>> 
Please expand OCB and STA on first use.
>> 
>> = Section 2 =
>> 
>> "Note: compliance with standards and regulations set in different
>> countries when using the 5.9GHz frequency band is required."
>> 
>> I'm not familiar with the standards and regulations being 
>> referenced here, but is there any specific reason why this needs to
>> be said here? Presumably users of regulated spectrum bands the
>> world over must comply with associated regulations governing their
>> use. It's not clear to me that it makes sense to note this here.
>> 
>> = Section 5.1.1 =
>> 
>> "Further correlation of this information with other data captured
>> by other means, or other visual information (car color, others)
>> MAY constitute privacy risks."
>> 
>> The normative MAY is not appropriate here.
>> 
>> = Section 5.2 =
>> 
>> "In 802.11-OCB networks, the MAC addresses MAY change during well 
>> defined renumbering events."
>> 
>> The normative MAY is not appropriate here (since this is not the
>> 802.11-OCB spec).
>> 
>> 
>> 
>> 
>> --
>> 
>> Best Regards
>> 
>> Nabil Benamar Associate Professor Department of Computer Sciences 
>> School of Technology Moulay Ismail University Meknes. Morocco
> 
> 
> 
> --
> 
> Best Regards
> 
> Nabil Benamar Associate Professor Department of Computer Sciences 
> School of Technology Moulay Ismail University Meknes. Morocco
> 
> 
> 
> _______________________________________________ its mailing list 
> its@ietf.org https://www.ietf.org/mailman/listinfo/its
>

v2.23.0 | Report a Bug | By Email