Re: [Pidloc] Criteria or metric for privacy in IP addressing
<Dirk.von-Hugo@telekom.de> Fri, 10 August 2018 14:38 UTC
Return-Path: <Dirk.von-Hugo@telekom.de>
X-Original-To: pidloc@ietfa.amsl.com
Delivered-To: pidloc@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 670E613104F for <pidloc@ietfa.amsl.com>; Fri, 10 Aug 2018 07:38:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.31
X-Spam-Level:
X-Spam-Status: No, score=-4.31 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, T_DKIMWL_WL_HIGH=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=telekom.de header.b=P3tWxvC3; dkim=pass (1024-bit key) header.d=telekom.onmicrosoft.de header.b=BPGWqlFk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 57e0KJi1kip1 for <pidloc@ietfa.amsl.com>; Fri, 10 Aug 2018 07:37:57 -0700 (PDT)
Received: from mailout23.telekom.de (MAILOUT23.telekom.de [80.149.113.253]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B27CE130FA8 for <pidloc@ietf.org>; Fri, 10 Aug 2018 07:37:56 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telekom.de; i=@telekom.de; q=dns/txt; s=dtag1; t=1533911876; x=1565447876; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=FHucEKuIiJl58qw3mj4ad4l/5R1clvCnYoeG8/Vn4GY=; b=P3tWxvC3XxSoABrRTd5VxHHflgGOLOiyb3FeoHzeJjVIED4cyW310psN PIhB4UR6GhRftAjoc7aC8pIvJ3lcUof0Qt+itUS202RkM1LPG2P2JsDtc TNt7sRGnJv1g35znoUbOE6XIwtUDJdZz+mkS1UfXtwIBDcDa22WMc150R BSngPUtG/BdQDQh1tpA0PqdLsHT2/vROUglD3lrcGwzI1/kGUPefieYzx GMY2pkiTqmqeJ/yE6PZk1h34d0auRgVuuuD5JkXNzLHZW1rsWDBFkOWpH K1rHHl03R5KDVAQSbWHEA/j/Bp+25w3dCEZy/fqfteMYtQ+HCHSUMxEJQ Q==;
Received: from qde9xy.de.t-internal.com ([10.171.254.32]) by MAILOUT21.telekom.de with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 10 Aug 2018 16:37:54 +0200
X-IronPort-AV: E=Sophos;i="5.53,220,1531778400"; d="scan'208";a="101416959"
Received: from he101946.emea1.cds.t-internal.com ([10.169.118.82]) by QDE9Y1.de.t-internal.com with ESMTP/TLS/AES256-SHA; 10 Aug 2018 16:37:54 +0200
Received: from HE105709.EMEA1.cds.t-internal.com (10.169.118.41) by HE101946.emea1.cds.t-internal.com (10.169.118.82) with Microsoft SMTP Server (TLS) id 15.0.1395.4; Fri, 10 Aug 2018 16:37:53 +0200
Received: from HE104160.emea1.cds.t-internal.com (10.171.40.36) by HE105709.EMEA1.cds.t-internal.com (10.169.118.41) with Microsoft SMTP Server (TLS) id 15.0.1395.4 via Frontend Transport; Fri, 10 Aug 2018 16:37:53 +0200
Received: from GER01-FRA-obe.outbound.protection.outlook.de (51.4.80.17) by O365mail03.telekom.de (172.30.0.232) with Microsoft SMTP Server (TLS) id 15.0.1367.3; Fri, 10 Aug 2018 16:35:52 +0200
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=telekom.onmicrosoft.de; s=selector1-telekom-onmicrosoft-de; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=FHucEKuIiJl58qw3mj4ad4l/5R1clvCnYoeG8/Vn4GY=; b=BPGWqlFkJNyDMmBBrRc0zsZVxJt2P+dqXhG6CaPIC19EhWQ8z2bs9mc4Cp+EY1LyqHyVDD/d00ZM+fH/bn2R1mGw6gVnTeztLqBAc3G0D7ziXpilte0m1Uw6vMDYIMgHYGNMYA+4U0zG89/1NsJuWr+iX9U5DLcQCLX3XneLpwU=
Received: from FRAPR01MB0801.DEUPRD01.PROD.OUTLOOK.DE (10.158.135.18) by FRAPR01MB0801.DEUPRD01.PROD.OUTLOOK.DE (10.158.135.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1017.14; Fri, 10 Aug 2018 14:37:53 +0000
Received: from FRAPR01MB0801.DEUPRD01.PROD.OUTLOOK.DE ([fe80::fcbe:870:6cd7:64a9]) by FRAPR01MB0801.DEUPRD01.PROD.OUTLOOK.DE ([fe80::fcbe:870:6cd7:64a9%6]) with mapi id 15.20.1017.021; Fri, 10 Aug 2018 14:37:53 +0000
From: Dirk.von-Hugo@telekom.de
To: tom@quantonium.net, pidloc@ietf.org
Thread-Topic: [Pidloc] Criteria or metric for privacy in IP addressing
Thread-Index: AQHULytGx46XLsxQg0ClxvF5e7go0qS43Miw
Date: Fri, 10 Aug 2018 14:37:53 +0000
Message-ID: <FRAPR01MB080148EC48F12CF510F8F9CDD1240@FRAPR01MB0801.DEUPRD01.PROD.OUTLOOK.DE>
References: <CAPDqMepYsvcLHVxHJ-jtGTiqZOxxjPfN-GsS65xstDnq4DY9PQ@mail.gmail.com>
In-Reply-To: <CAPDqMepYsvcLHVxHJ-jtGTiqZOxxjPfN-GsS65xstDnq4DY9PQ@mail.gmail.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Dirk.von-Hugo@telekom.de;
x-originating-ip: [212.201.104.11]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; FRAPR01MB0801; 6:AqPJBlp9iDbSpPBwCnlbpSCqYCbxBvXFXWxDEF5MhulOymSEBahiG3F2cjmzlk0/yTmjbCLDC4tTy+vJXButxvkGVuYm0QP9n8E9lXZZ464JhjrgrftB0SYrABZRXAW1FDWiPnsqJgrE2tKT0ukoaSIiX307K7/Z2Hid+TAKbY/McyNHr2jPt6lCY8AnG5aCd1SKAmWgt+s55yd8oRSgKdOTmnbJBzADqt9G2FdUuNVvMHBYOzSjfaFA/oi4hy59s27+/C0BNhgOffbY/qmOItuCMrQfZJPbpQOTJhzspnkGRin2rYbMo/manwjDRTZKyVNO0RmC4joaQ7gPZj65zo47Jd6ntRoC7O7YT75oK09qCH78YaHouv0KcZ3prxmRWJwVhnJdtRFX9mcOlRxPXAN5s7902px6CA/fUoxEr3HUspDmfF3aXJi4Au3JWmNb6rgnI6gGxvEVcxR73bhRHA==; 5:Rg+GjP3jIukwPinK9Za6xhXoN8wvg5y4oB+HQgRaA18qS/SPiKOpWmoXLgmISQm0+4gGA4FwYah0W7R5PvAkQ2BdVgGGpCqYfucUnyA2o3599mk3besRg+GSRwB+nxXjd/TJPidTwS76RTRcVmUJ2mEqep/jeBS+OQnxia/g+Fk=; 7:0Jwhm1slv/gMpE91PgYzK9+EEcXiE0+kNQxUfgUJ11T5MhOUbE1T+di66lIKoC/ELbclRcAR/OiNAdbNilzSzcTdyELMX5XY3AFFPXDD6slPMhlDpiRxHDE2vX9H+8MRutgHrBEr+g6G62oPjaG5St3f6ExjL7QCjF3jAgKOa8iTb8N6h86+2k3uUIguS39Di2QePqO/yRV5m6ATglODvt7MNl6hI/YbH7O23tSAKQ2Vf+tGnqWfbVImMdR1mPsy
x-ms-exchange-antispam-srfa-diagnostics: SOS;
x-ms-office365-filtering-correlation-id: a76472c6-bfe9-4537-a4a9-08d5fecedadf
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(7020095)(4652040)(8989117)(4534165)(4627221)(201703031133081)(201702281549075)(8990107)(5600074)(711020)(2017052603328)(7153060)(7193020); SRVR:FRAPR01MB0801;
x-ms-traffictypediagnostic: FRAPR01MB0801:
x-microsoft-antispam-prvs: <FRAPR01MB0801C63F33B4160218F6EAD2D1240@FRAPR01MB0801.DEUPRD01.PROD.OUTLOOK.DE>
x-exchange-antispam-report-test: UriScan:(120809045254105);
x-ms-exchange-senderadcheck: 1
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040522)(2401047)(5005006)(8121501046)(10201501046)(3002001)(3231311)(944501410)(52105095)(93006095)(93001095)(149027)(150027)(6041310)(20161123558120)(20161123564045)(20161123562045)(201703131423095)(201702281528075)(20161123555045)(201703061421075)(201703061406153)(20161123560045)(6072148)(201708071742011)(7699016); SRVR:FRAPR01MB0801; BCL:0; PCL:0; RULEID:; SRVR:FRAPR01MB0801;
x-forefront-prvs: 07607ED19A
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(39860400002)(396003)(136003)(346002)(366004)(376002)(199004)(189003)(13464003)(5660300001)(256004)(14444005)(86362001)(6246003)(66066001)(316002)(55016002)(3846002)(74482002)(486006)(11346002)(446003)(53936002)(68736007)(2900100001)(6116002)(75402003)(26005)(102836004)(81166006)(81156014)(476003)(53546011)(186003)(8676002)(52396003)(33656002)(478600001)(7736002)(106356001)(97736004)(9686003)(305945005)(105586002)(14454004)(8936002)(2501003)(413944005)(966005)(6306002)(229853002)(110136005)(76176011)(5250100002)(7696005)(2906002)(72206003); DIR:OUT; SFP:1101; SCL:1; SRVR:FRAPR01MB0801; H:FRAPR01MB0801.DEUPRD01.PROD.OUTLOOK.DE; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: telekom.de does not designate permitted sender hosts)
x-microsoft-antispam-message-info: HF75bh0dA9gf6pyTmklQh20vHhiYtiHxSLzYLGtN+V68/msVqQlXMbbyv/LwZiZEL3GLDtnHPBE8gbAI1u/NJ4dH542fZlaGG8qRSv+J3j2ccej+73njVXh6UerquktATOx74PB1y6hovjCEJEy+YidqUQKRlts9JYUbka26O4JRw5qAVEn4unvyzFFEftmk9N6VjnaqSLZ9D4qygpEDQcOssnG/++3/4Sxyx3bjsn3dfjNamCcO7etGHp+tASv17wBCBxUk5Bocmm8WdbeT6al9jxc5nOtkGOpUbo8BF2KC7NkuPowm8sIRIA0oe3S00wZmph+ioWLsiT645W4eajxIMUhQN1gphWwqY4mfft4=
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-Network-Message-Id: a76472c6-bfe9-4537-a4a9-08d5fecedadf
X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Aug 2018 14:37:53.0976 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: bde4dffc-4b60-4cf6-8b04-a5eeb25f5c4f
X-MS-Exchange-Transport-CrossTenantHeadersStamped: FRAPR01MB0801
X-OriginatorOrg: telekom.de
Archived-At: <https://mailarchive.ietf.org/arch/msg/pidloc/RG1qP0oq_guVeBhe7etRktTqMDw>
Subject: Re: [Pidloc] Criteria or metric for privacy in IP addressing
X-BeenThere: pidloc@ietf.org
X-Mailman-Version: 2.1.27
Precedence: list
List-Id: <pidloc.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/pidloc>, <mailto:pidloc-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/pidloc/>
List-Post: <mailto:pidloc@ietf.org>
List-Help: <mailto:pidloc-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/pidloc>, <mailto:pidloc-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Aug 2018 14:38:05 -0000
Dear Tom, thanks for pointing to this useful draft. I agree that privacy is always relative and strongly depends on the use case, environment, personalization of the end device ... BTW as question for clarification: What is the difference between changing and updating an address? The first is breaking a session continuation while the second doesn't? Nits I detected: The reference to [IPWAVE] is missing - I guess it should be https://datatracker.ietf.org/doc/draft-ietf-ipwave-vehicular-networking/ the draft you talk about on p.6 ?! On p. 7 single a /64 to each device => a single /64 prefix to each device p. 13 would require an new address => would require a new address are able decode => are able to decode p. 14 part of all of an IPv6 address => part or all of an IPv6 address [?] My 2 cents comments ;-) Thanks! Best Regards Dirk -----Original Message----- From: Pidloc [mailto:pidloc-bounces@ietf.org] On Behalf Of Tom Herbert Sent: Mittwoch, 8. August 2018 17:20 To: pidloc@ietf.org Subject: [Pidloc] Criteria or metric for privacy in IP addressing Hello, In discussions about privacy in the IETF there does not seem to be any metrics or criteria about what "good privacy" is for a user. Descriptions of privacy always seem to be qualitative as opposed to quantitative. A good example is around recommendations to periodically change addresses. Intutively, randomly changing addresses on a host helps privacy, and the more frequently addresses are changed the better for privacy. But that's entirely unqualified intuition. If the period of address changes goes from 12 hrs. to 6 hrs., we can't say that the probabiliy of a user's privacy being compromised has been cut in half. In fact, we can't really say much as all-- it's at best a _maybe_ that a user's privacy has improved. To this end, a proposed set of criteria for strong privacy in addressing is provided in https://tools.ietf.org/html/draft-herbert-ipv6-prefix-address-privacy-00. The proposed criteria are: o Addresses are composed of a global routing prefix and a suffix that is internal to an organization or provider. This is the same property for IP addresses [RFC4291]. o The registry and organization of an address can be determined by the network prefix. This is true for any global address. The organizational bits in the address should have minimal hierarchy to prevent inference. It might be reasonable to have an internal prefix that divides identifiers based on broad geographic regions, but detailed information such as location, department in an enterprise, or device type should not be encoded in a globally visible address. o Given two addresses and no other information, the desired properties of correlating them are: o It can be inferred if they belong to the same organization and registry. This is true for any two global IP addresses. o It may be inferred that they belong to the same broad grouping, such as a geographic region, if the information is encoded in the organizational bits of the address. o No other correlation can be established. It cannot be inferred that the IP addresses address the same node, the addressed nodes reside in the same subnet, rack, or department, or that the nodes for the two addresses have any geographic proximity to one another. -- Pidloc mailing list Pidloc@ietf.org https://www.ietf.org/mailman/listinfo/pidloc
- [Pidloc] Criteria or metric for privacy in IP add… Tom Herbert
- Re: [Pidloc] Criteria or metric for privacy in IP… Dirk.von-Hugo