[secdir] Predictable Numeric Identifiers -- progress?
Fernando Gont <fgont@si6networks.com> Mon, 03 July 2017 19:49 UTC
Return-Path: <fgont@si6networks.com>
X-Original-To: secdir@ietfa.amsl.com
Delivered-To: secdir@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1A39C126BFD; Mon, 3 Jul 2017 12:49:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XqhBA409Ac2E; Mon, 3 Jul 2017 12:49:47 -0700 (PDT)
Received: from fgont.go6lab.si (fgont.go6lab.si [IPv6:2001:67c:27e4::14]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 563A2131768; Mon, 3 Jul 2017 12:49:47 -0700 (PDT)
Received: from [192.168.88.73] (unknown [88.135.141.100]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by fgont.go6lab.si (Postfix) with ESMTPSA id A2EC6827C2; Mon, 3 Jul 2017 21:51:02 +0200 (CEST)
Cc: iarce@quarkslab.com, "secdir@ietf.org" <secdir@ietf.org>, "privsec-program@iab.org" <privsec-program@iab.org>
From: Fernando Gont <fgont@si6networks.com>
To: "saag@ietf.org" <saag@ietf.org>
Message-ID: <b421df8b-06be-1f17-97da-141de39db94e@si6networks.com>
Date: Mon, 03 Jul 2017 22:49:59 +0300
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.1.1
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/secdir/ffmN5jznqjGDkgwntINs-9LrxQY>
Subject: [secdir] Predictable Numeric Identifiers -- progress?
X-BeenThere: secdir@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: Security Area Directorate <secdir.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/secdir>, <mailto:secdir-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/secdir/>
List-Post: <mailto:secdir@ietf.org>
List-Help: <mailto:secdir-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/secdir>, <mailto:secdir-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Jul 2017 19:49:50 -0000
Folks, We have published a revision of a number of I-Ds we had published on the topic of "security/privacy properties of numeric identifiers", in the hopes of helping improving the security and privacy properties of the numeric identifiers employed in IETF protocols. The main revised I-D is available at: <https://www.ietf.org/internet-drafts/draft-gont-predictable-numeric-ids-01.txt> Based on feedback received from SAAG, we have also published the same content, but split into three stand-alone document (which might be easier to digest and progress): * History of flawed numeric identifiers: <https://www.ietf.org/internet-drafts/draft-gont-numeric-ids-history-02.txt> * Generation of numeric identifiers: <https://www.ietf.org/internet-drafts/draft-gont-numeric-ids-generation-01.txt> * A proposed update to RFC3552, wrt numeric identifiers: <https://www.ietf.org/internet-drafts/draft-gont-numeric-ids-sec-considerations-01.txt> The first version of these I-Ds were published one year ago now, and to some extent were stalled waiting for progress on rfc3552bis. As expected, rfc3552bis will take time to be published, but the IETF is still published documents with no proper requirements regarding numeric I-Ds... which is not a good thing. At this point we'd like to receive feedback on the topic (whether for the main/big document, or for the split I-Ds), and also would like to make progress on these document. Thoughts? Thanks! Best regards, -- Fernando Gont SI6 Networks e-mail: fgont@si6networks.com PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492
- [secdir] Predictable Numeric Identifiers -- progr… Fernando Gont