[Madinas] my ideas about three documents
Michael Richardson <mcr+ietf@sandelman.ca> Thu, 20 April 2023 23:25 UTC
Return-Path: <mcr+ietf@sandelman.ca>
X-Original-To: madinas@ietfa.amsl.com
Delivered-To: madinas@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A428C1516F3 for <madinas@ietfa.amsl.com>; Thu, 20 Apr 2023 16:25:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.096
X-Spam-Level:
X-Spam-Status: No, score=-2.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sandelman.ca
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4a4Fl5sisqXy for <madinas@ietfa.amsl.com>; Thu, 20 Apr 2023 16:25:29 -0700 (PDT)
Received: from tuna.sandelman.ca (tuna.sandelman.ca [209.87.249.19]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3FAA9C151527 for <madinas@ietf.org>; Thu, 20 Apr 2023 16:25:28 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by tuna.sandelman.ca (Postfix) with ESMTP id B48BB3898C for <madinas@ietf.org>; Thu, 20 Apr 2023 19:43:00 -0400 (EDT)
Received: from tuna.sandelman.ca ([127.0.0.1]) by localhost (localhost [127.0.0.1]) (amavisd-new, port 10024) with LMTP id w3l5zr1n28Bx for <madinas@ietf.org>; Thu, 20 Apr 2023 19:42:58 -0400 (EDT)
Received: from sandelman.ca (obiwan.sandelman.ca [209.87.249.21]) by tuna.sandelman.ca (Postfix) with ESMTP id 74DD93898B for <madinas@ietf.org>; Thu, 20 Apr 2023 19:42:58 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sandelman.ca; s=mail; t=1682034178; bh=WmKn45QkA/yqqH3P/vOZx1G0OJmnZ5j2TZXVWPHpq2A=; h=From:to:Subject:Date:From; b=wy/R1A2Orus5Qncd9DlGhhdUv/k5Ek/1scerwJ4QYj6GaEKc1yJjVGKa/6Ommzn3C VkF8axCxSy7xhWM7VaYJ/l7v9xqaYRejGveYITYYA/t/LjdhpLtH6n0awiwSBD2kQS iSe3ZGkCOc8nt8qZrHYdbvzQ1+69iD8C76EHksALomBv38yaLGgUgBVL0StAmWdiPo E4J8EE+LTf82memDsaubvVAsFFhIgMpNKhyqzfH/SHclBORFVrPZO5w4WwwrFaVGfd SvLUI6/YNqgONHplwJhjflFE7pTZfaoZ0oYH1ZwZK3HGarlyNDfI0G2v2LBKBgoUQs hXYokkO6xdlng==
Received: from localhost (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id 9D8FD1F8 for <madinas@ietf.org>; Thu, 20 Apr 2023 19:25:24 -0400 (EDT)
From: Michael Richardson <mcr+ietf@sandelman.ca>
to: madinas@ietf.org
X-Mailer: MH-E 8.6+git; nmh 1.7+dev; GNU Emacs 27.1
X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m<nPbLgmtKK-5dC@#:k
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Date: Thu, 20 Apr 2023 19:25:24 -0400
Message-ID: <30706.1682033124@localhost>
Archived-At: <https://mailarchive.ietf.org/arch/msg/madinas/d1ps5JZi11q73Ct-PTLQ0Y3doXo>
Subject: [Madinas] my ideas about three documents
X-BeenThere: madinas@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: MAC Address Device Identification for Network and Application Services <madinas.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/madinas>, <mailto:madinas-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/madinas/>
List-Post: <mailto:madinas@ietf.org>
List-Help: <mailto:madinas-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/madinas>, <mailto:madinas-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Apr 2023 23:25:33 -0000
Our charter says: } The MADINAS Working Group will document the current RCM state of affairs by : } (i) identifying relevant network and application services scenarios and } examining the effect of RCM schemes on them; } (ii) analyzing various existing identifiers (i.e., beyond the MAC address) } that can be used by the network to provide seamless services, and } (iii) identifying scenarios where device identity is not required. } The group will generate a Best Current Practices (BCP) document } recommending means to reduce the impact of RCM on the documented use cases } while ensuring that the privacy achieved with RCM is not compromised. For } scenarios where device identity stability is desirable, the BCP document will } recommend existing protocols that can be used to protect the request and } exchange of identifiers between the client and the service provider. To my mind, the first document should be a document that explains what RCM is, and how we can talk about it. To that end, https://www.ietf.org/archive/id/draft-ietf-madinas-mac-address-randomization-06.html is close to the right document, and it's why I wanted to put the taxonomy in. This document is about the *devices* and what they do, not about the networks. There is some additional content that needs to go in about Pre-Association addresses vs Post-Association addresses. There are some hardware limitations that may exist in ability to change addresses at various points. For instance, can one do EAP/WPA activities on one address, and then once the end host is convinced it's a network it wishes to join, switch to another address. The second document, draft-ietf-madinas-use-cases-05 Randomized and Changing MAC Address Use Cases and Requirements is a bit further from what I have in mind. Im particular, I would like to drop "Requirements" from the title. It's also unclear if these are reasons for RCM ("RCM Use cases"), or cases where the network infrastructure has used MAC addresses as identifiers. The way that I'd like to re-structure this document is to import much of the excellent work that Amelia has done at: > https://mentor.ieee.org/802.11/dcn/21/11-21-0332-37-00bh-issues-tracking.docx and then amend each case with an analysis of what happens when the different policies (the PBGM, PNGM, etc.) occur in those cases. For instance, all policies except for PPGM work fine for the airport security line effort. But, devices that always pick a new address for pre-association communications, would completely break such a thing. This document is not about RCM, but rather is about networks which have assumed non-RCM. The third document, the BCP, needs to heavily reference the second document. In this document, we need to see if changes to technology used (protocol options) the various use cases from document two. There are various proposals that I'm unfamiliar with from the IEEE, and maybe even the WBA, about things that could be changed at layer-two. And probably there are some improvements that could be made. For instance, a four-address mode that allowed the inner addresses to be encrypted easily. My personal view is that this is an opportunity to upgrade the quality of the identities used in devices, to finally create a ecosystem where the UX around client certificates does not suck, and to get rid of the very insecure network PSK. -- Michael Richardson <mcr+IETF@sandelman.ca> . o O ( IPv6 IøT consulting ) Sandelman Software Works Inc, Ottawa and Worldwide
- [Madinas] my ideas about three documents Michael Richardson