[secdir] Predictable Numeric Identifiers -- progress?

Fernando Gont <fgont@si6networks.com> Mon, 03 July 2017 19:49 UTC

Return-Path: <fgont@si6networks.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1A39C126BFD; Mon, 3 Jul 2017 12:49:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XqhBA409Ac2E; Mon, 3 Jul 2017 12:49:47 -0700 (PDT)
Received: from fgont.go6lab.si (fgont.go6lab.si [IPv6:2001:67c:27e4::14]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 563A2131768; Mon, 3 Jul 2017 12:49:47 -0700 (PDT)
Received: from [192.168.88.73] (unknown [88.135.141.100]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by fgont.go6lab.si (Postfix) with ESMTPSA id A2EC6827C2; Mon, 3 Jul 2017 21:51:02 +0200 (CEST)
Cc: iarce@quarkslab.com, "secdir@ietf.org" <secdir@ietf.org>, "privsec-program@iab.org" <privsec-program@iab.org>
From: Fernando Gont <fgont@si6networks.com>
To: "saag@ietf.org" <saag@ietf.org>
Message-ID: <b421df8b-06be-1f17-97da-141de39db94e@si6networks.com>
Date: Mon, 03 Jul 2017 22:49:59 +0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.1.1
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/ffmN5jznqjGDkgwntINs-9LrxQY>
Subject: [secdir] Predictable Numeric Identifiers -- progress?
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Jul 2017 19:49:50 -0000

Folks,

We have published a revision of a number of I-Ds we had published on the
topic of "security/privacy properties of numeric identifiers", in the
hopes of helping improving the security and privacy properties of the
numeric identifiers employed in IETF protocols.

The main revised I-D is available at:
<https://www.ietf.org/internet-drafts/draft-gont-predictable-numeric-ids-01.txt>


Based on feedback received from SAAG, we have also published the same
content, but split into three stand-alone document (which might be
easier to digest and progress):

* History of flawed numeric identifiers:
<https://www.ietf.org/internet-drafts/draft-gont-numeric-ids-history-02.txt>

* Generation of numeric identifiers:
<https://www.ietf.org/internet-drafts/draft-gont-numeric-ids-generation-01.txt>

* A proposed update to RFC3552, wrt numeric identifiers:
<https://www.ietf.org/internet-drafts/draft-gont-numeric-ids-sec-considerations-01.txt>

The first version of these I-Ds were published one year ago now, and to
some extent were stalled waiting for progress on rfc3552bis. As
expected, rfc3552bis will take time to be published, but the IETF is
still published documents with no proper requirements regarding numeric
I-Ds... which is not a good thing.

At this point we'd like to receive feedback on the topic (whether for
the main/big document, or for the split I-Ds), and also would like to
make progress on these document.

Thoughts?

Thanks!

Best regards,
-- 
Fernando Gont
SI6 Networks
e-mail: fgont@si6networks.com
PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492