IETF Logo Mail Archive

Re: [Mip4] Kathleen Moriarty's No Objection on draft-ietf-mip4-multiple-tunnel-support-12: (with COMMENT)

Alexandru Petrescu <alexandru.petrescu@gmail.com> Thu, 11 June 2015 17:48 UTC

Return-Path: <alexandru.petrescu@gmail.com>
X-Original-To: mip4@ietfa.amsl.com
Delivered-To: mip4@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2A8481A1B1C; Thu, 11 Jun 2015 10:48:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.982
X-Spam-Level:
X-Spam-Status: No, score=-4.982 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_ADSP_CUSTOM_MED=0.001, FREEMAIL_FROM=0.001, HELO_EQ_FR=0.35, HTML_MESSAGE=0.001, NML_ADSP_CUSTOM_MED=0.9, RCVD_IN_DNSWL_HI=-5, SPF_SOFTFAIL=0.665] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NsBrYXNa22GZ; Thu, 11 Jun 2015 10:48:28 -0700 (PDT)
Received: from oxalide-out.extra.cea.fr (oxalide-out.extra.cea.fr [132.168.224.8]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9FDB51A8BB6; Thu, 11 Jun 2015 10:48:27 -0700 (PDT)
Received: from pisaure.intra.cea.fr (pisaure.intra.cea.fr [132.166.88.21]) by oxalide.extra.cea.fr (8.14.2/8.14.2/CEAnet-Internet-out-2.3) with ESMTP id t5BHmPV0024646; Thu, 11 Jun 2015 19:48:25 +0200
Received: from pisaure.intra.cea.fr (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id AA34E20BDEB; Thu, 11 Jun 2015 19:51:02 +0200 (CEST)
Received: from muguet1.intra.cea.fr (muguet1.intra.cea.fr [132.166.192.6]) by pisaure.intra.cea.fr (Postfix) with ESMTP id 8EEBD205D4A; Thu, 11 Jun 2015 19:51:02 +0200 (CEST)
Received: from [127.0.0.1] (is227335.intra.cea.fr [10.8.34.184]) by muguet1.intra.cea.fr (8.13.8/8.13.8/CEAnet-Intranet-out-1.2) with ESMTP id t5BHmKEX009487; Thu, 11 Jun 2015 19:48:25 +0200
Message-ID: <5579C9E5.9060807@gmail.com>
Date: Thu, 11 Jun 2015 19:48:21 +0200
From: Alexandru Petrescu <alexandru.petrescu@gmail.com>
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0
MIME-Version: 1.0
To: Kathleen Moriarty <Kathleen.Moriarty.ietf@gmail.com>, The IESG <iesg@ietf.org>
References: <20150610202214.10569.45626.idtracker@ietfa.amsl.com>
In-Reply-To: <20150610202214.10569.45626.idtracker@ietfa.amsl.com>
Content-Type: multipart/alternative; boundary="------------030202040902060407070609"
Archived-At: <http://mailarchive.ietf.org/arch/msg/mip4/Zcxbr4141IrX6-i3HUTpAD6AgQQ>
Cc: draft-ietf-mip4-multiple-tunnel-support@ietf.org, draft-ietf-mip4-multiple-tunnel-support.shepherd@ietf.org, mip4-chairs@ietf.org, mip4@ietf.org, mccap@petoni.org, draft-ietf-mip4-multiple-tunnel-support.ad@ietf.org
Subject: Re: [Mip4] Kathleen Moriarty's No Objection on draft-ietf-mip4-multiple-tunnel-support-12: (with COMMENT)
X-BeenThere: mip4@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Mobility for IPv4 <mip4.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mip4>, <mailto:mip4-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mip4/>
List-Post: <mailto:mip4@ietf.org>
List-Help: <mailto:mip4-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mip4>, <mailto:mip4-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 11 Jun 2015 17:48:30 -0000

Hi Kathleen,

I think this is a good point. Indeed using multiple tunnels 
simultaneously involves a form of distribution
of data through multiple tunnels and that by itself means that instead 
of sniffing on a single link an attacker would need to sniff several 
links to be safer to assume identity.

On another hand, there is still a possibility for the attacker to 
correlate a number of Home Addresses, with a same number of Care-of 
Addresses, associated with a single NAI, and intrude privacy. (because a 
particular IP address is often valid only in a particular geographical 
area).

As much as I find the privacy aspect interesting to consider from a 
start, I must say that until now we have not discussed privacy aspects 
of this MIP mechanism.  This is IPv4 space, and privacy discussion is 
different than IPv6. (there is no MAC-based risk of correlation, there 
is much NAT, law enforcement needs that IPv4 address, etc.)

Maybe we would need to agree quickly on some brief text, or keep it for 
future work, especially in IPv6.

Alex


> Are there privacy considerations that need to be added since a mobile
> users data may go through multiple tunnels?  Perhaps this diffuses the
> traceability of that user since multiple tunnels are used or it reveals
> patterns the mobile user may have as different tunnels are selected.  If
> these are not concerns, can you explain why?  Thanks.

Le 10/06/2015 22:22, Kathleen Moriarty a écrit :
> Kathleen Moriarty has entered the following ballot position for
> draft-ietf-mip4-multiple-tunnel-support-12: No Objection
>
> When responding, please keep the subject line intact and reply to all
> email addresses included in the To and CC lines. (Feel free to cut this
> introductory paragraph, however.)
>
>
> Please refer to https://www.ietf.org/iesg/statement/discuss-criteria.html
> for more information about IESG DISCUSS and COMMENT positions.
>
>
> The document, along with other ballot positions, can be found here:
> https://datatracker.ietf.org/doc/draft-ietf-mip4-multiple-tunnel-support/
>
>
>
> ----------------------------------------------------------------------
> COMMENT:
> ----------------------------------------------------------------------
>
> Are there privacy considerations that need to be added since a mobile
> users data may go through multiple tunnels?  Perhaps this diffuses the
> traceability of that user since multiple tunnels are used or it reveals
> patterns the mobile user may have as different tunnels are selected.  If
> these are not concerns, can you explain why?  Thanks.
>
>
>
>

v2.23.0 | Report a Bug | By Email