Re: [Pearg] Ten years after Snowden (2013 - 2023), is IETF keeping its promises?

Phillip Hallam-Baker <phill@hallambaker.com> Tue, 03 January 2023 20:01 UTC

Return-Path: <hallam@gmail.com>
X-Original-To: pearg@ietfa.amsl.com
Delivered-To: pearg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3147EC14F613; Tue, 3 Jan 2023 12:01:57 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.399
X-Spam-Level:
X-Spam-Status: No, score=-1.399 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FORGED_FROMDOMAIN=0.249, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.25, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 52ZMrNwTX-CM; Tue, 3 Jan 2023 12:01:56 -0800 (PST)
Received: from mail-oi1-f171.google.com (mail-oi1-f171.google.com [209.85.167.171]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B4EA9C1516E0; Tue, 3 Jan 2023 12:01:56 -0800 (PST)
Received: by mail-oi1-f171.google.com with SMTP id h185so5456595oif.5; Tue, 03 Jan 2023 12:01:56 -0800 (PST)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20210112; h=cc:to:subject:message-id:date:from:in-reply-to:references :mime-version:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=I3AWQcTK6T/o+wTuViZC1fh8bErhuPPrInW5rBCNoF4=; b=TSTmkuBYMH+KEIljSU11dt/yB8L4p1UQSegCzB5EshN6gbcLxxEg8udQClPHXThwlY qi6E5lDWItIuUWTXjXfJdvMRfDWd6G1YjCi+Zf0C5HTqYd4TgleMFy1YRsCS+kBrmFIG i7a7xKsv4TO+Ey1dzroG4/cFKLZ7Mim8Kf6E31QaIspBHWDarLmjEX/kEMgMWf1MPB+t 9AcJt/kFBHgUE5HvG3zLCEpRQAY0QaJNPqRSO0sR+IkXag/Yp6Q2XwCdhXrihjfJ8viQ N+YKbq7nSbCA/2fjOgDCEBvKawSsvMneTYfH4Y8X37+QksDsZGGb3uEcdlGz/fqopHe5 rkaQ==
X-Gm-Message-State: AFqh2koolGCsD7ZRr/U4L8QSP81n92f6IW+KSOPCa4TjaLnxXrhXl+D4 h/wHyoDZt+VDdcDpM+935UkrBzfjaEvyogmDzWw=
X-Google-Smtp-Source: AMrXdXtfeY5FwCwHdLVKotzHLd3n3j0EtWJUqh2bRDqMfwS8G8LYoLmqfFmdaMNF6XaAGcade+FuXD4heS+rtoOYXmM=
X-Received: by 2002:a54:4583:0:b0:35b:88ce:f191 with SMTP id z3-20020a544583000000b0035b88cef191mr3091836oib.108.1672776115745; Tue, 03 Jan 2023 12:01:55 -0800 (PST)
MIME-Version: 1.0
References: <HE1PR0701MB305098F652DBC34E3C40810B89F49@HE1PR0701MB3050.eurprd07.prod.outlook.com> <dc5d3c2c-e110-69f6-c868-9a62d963959f@gmail.com>
In-Reply-To: <dc5d3c2c-e110-69f6-c868-9a62d963959f@gmail.com>
From: Phillip Hallam-Baker <phill@hallambaker.com>
Date: Tue, 03 Jan 2023 15:01:44 -0500
Message-ID: <CAMm+Lwhy2RtdfYb5Yenw3aURBcE293DDFqiVBgDCWbD5MhunBg@mail.gmail.com>
To: Brian E Carpenter <brian.e.carpenter@gmail.com>
Cc: John Mattsson <john.mattsson=40ericsson.com@dmarc.ietf.org>, "ietf@ietf.org" <ietf@ietf.org>, "hrpc@irtf.org" <hrpc@irtf.org>, "pearg@irtf.org" <pearg@irtf.org>, saag <saag@ietf.org>
Content-Type: multipart/alternative; boundary="0000000000002af7bb05f1618adb"
Archived-At: <https://mailarchive.ietf.org/arch/msg/pearg/fk4rZvRLsXFEYdSsuuXsMon96Zc>
Subject: Re: [Pearg] Ten years after Snowden (2013 - 2023), is IETF keeping its promises?
X-BeenThere: pearg@irtf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Privacy Enhancements and Assessment Proposed RG <pearg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/pearg>, <mailto:pearg-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pearg/>
List-Post: <mailto:pearg@irtf.org>
List-Help: <mailto:pearg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/pearg>, <mailto:pearg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 Jan 2023 20:01:57 -0000

On Tue, Jan 3, 2023 at 2:39 PM Brian E Carpenter <
brian.e.carpenter@gmail.com> wrote:

> On 03-Jan-23 23:27, John Mattsson wrote:
>
> > IP addresses are still not only long-lived trackable identifiers, but
> they also reveal your location.
>
> IP addressing is intrinsically topological, so this is never going to
> change.
>
> (Temporary IPv6 addresses are not long-lived, but they remain topological.)
>

Which is an argument for not using IP addresses end-to-end.

Which is exactly what is being done to conceal the IP addresses of peers in
certain end-to-end messaging platforms.

Every communication infrastructure has to end up being topological at some
level. Ergo, if it is desired to conceal location, at least one level of
indirection is required.

I did spend some time working out a way to do this really effectively so
that every communication session was protected from traffic analysis and
even got some running code. Then I backed it all out as I was the only
person likely to implement the result and ease of implementation takes
priority at this stage.