IETF Logo Mail Archive

[MMUSIC] ICEbis and IPv6 Privacy adresses

"Pal Martinsen (palmarti)" <palmarti@cisco.com> Fri, 25 July 2014 00:21 UTC

Return-Path: <palmarti@cisco.com>
X-Original-To: mmusic@ietfa.amsl.com
Delivered-To: mmusic@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B5AD21A0AAA for <mmusic@ietfa.amsl.com>; Thu, 24 Jul 2014 17:21:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -14.502
X-Spam-Level:
X-Spam-Status: No, score=-14.502 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xG1HVfWAMGnM for <mmusic@ietfa.amsl.com>; Thu, 24 Jul 2014 17:21:17 -0700 (PDT)
Received: from rcdn-iport-9.cisco.com (rcdn-iport-9.cisco.com [173.37.86.80]) (using TLSv1 with cipher RC4-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B99181A0537 for <mmusic@ietf.org>; Thu, 24 Jul 2014 17:21:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=527; q=dns/txt; s=iport; t=1406247677; x=1407457277; h=from:to:subject:date:message-id:content-id: content-transfer-encoding:mime-version; bh=2N69qqMnch/4OtkmeN7M9uHz4N4wKzbTg+kCX4ar9cM=; b=gr/lK3V7xuoA9UwmvZcxv3kosi1y1fP/5Yz+GaDvP5aAv0XhpkTsSj6c bPKNALeJ/k2msLq9mxA5sWg7DR4AMxoVECQz1EKApsM1tFxbBsFIIa5a+ Zazjr6k5FU36Uksz9x6duWA/fU3WYHd8JKsqJvg/PaQ3dZsrpNIykCrkA c=;
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: Av8EAISi0VOtJA2D/2dsb2JhbABZgw6BLdIUFneECg5XJgGBACcEiFWZC6ZhF5MAgRgFii+RB5RFg0iCMQ
X-IronPort-AV: E=Sophos;i="5.01,727,1400025600"; d="scan'208";a="339586240"
Received: from alln-core-1.cisco.com ([173.36.13.131]) by rcdn-iport-9.cisco.com with ESMTP; 25 Jul 2014 00:21:17 +0000
Received: from xhc-rcd-x13.cisco.com (xhc-rcd-x13.cisco.com [173.37.183.87]) by alln-core-1.cisco.com (8.14.5/8.14.5) with ESMTP id s6P0LHav011816 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=FAIL) for <mmusic@ietf.org>; Fri, 25 Jul 2014 00:21:17 GMT
Received: from xmb-rcd-x06.cisco.com ([169.254.6.80]) by xhc-rcd-x13.cisco.com ([173.37.183.87]) with mapi id 14.03.0123.003; Thu, 24 Jul 2014 19:21:16 -0500
From: "Pal Martinsen (palmarti)" <palmarti@cisco.com>
To: mmusic <mmusic@ietf.org>
Thread-Topic: ICEbis and IPv6 Privacy adresses
Thread-Index: AQHPp55ZTl0zyXBggEqaFOjjxZApug==
Date: Fri, 25 Jul 2014 00:21:16 +0000
Message-ID: <5353C0F5-5769-4C56-9A8A-1C884A7F8CC3@cisco.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.61.165.148]
Content-Type: text/plain; charset="iso-8859-1"
Content-ID: <EEA0724532225A418538A3A9911A9789@emea.cisco.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
Archived-At: http://mailarchive.ietf.org/arch/msg/mmusic/JiV_1s_3wgwVDfnC_Yk09IqVuDk
Subject: [MMUSIC] ICEbis and IPv6 Privacy adresses
X-BeenThere: mmusic@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Multiparty Multimedia Session Control Working Group <mmusic.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mmusic>, <mailto:mmusic-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/mmusic/>
List-Post: <mailto:mmusic@ietf.org>
List-Help: <mailto:mmusic-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mmusic>, <mailto:mmusic-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 25 Jul 2014 00:21:21 -0000

Hi,

I think we need some text in ICEbis saying that if IPv6 Privacy addresses is in use, some care should be taken not to expose too many of the other potential candidates you have. 

Can you reveal your IPv4 host address?
What about SRFX and RELAY adresses? 
Do we need an TURN extension to ask the TURN server to also use a IPv6 privacy address when allocation a REALY address for you?

Seems to be problematic to find the right balance between privacy and ensured connectivity.

.-.
Pål-Erik

v2.23.0 | Report a Bug | By Email