IETF Logo Mail Archive

Re: [v6ops] New Version Notification for draft-hilliard-v6ops-host-addr-update-00.txt - Privacy Properties

Tim Chown <Tim.Chown@jisc.ac.uk> Thu, 20 July 2017 17:53 UTC

Return-Path: <tim.chown@jisc.ac.uk>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61F75129B5E for <v6ops@ietfa.amsl.com>; Thu, 20 Jul 2017 10:53:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.321
X-Spam-Level:
X-Spam-Status: No, score=-4.321 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=jisc.ac.uk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GUjBvLQG5ujm for <v6ops@ietfa.amsl.com>; Thu, 20 Jul 2017 10:53:52 -0700 (PDT)
Received: from eu-smtp-delivery-189.mimecast.com (eu-smtp-delivery-189.mimecast.com [146.101.78.189]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 920CD128C81 for <v6ops@ietf.org>; Thu, 20 Jul 2017 10:53:52 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jisc.ac.uk; s=mimecast20170213; t=1500573230; h=from:subject:date:message-id:to:cc:mime-version:content-type:content-transfer-encoding:in-reply-to:references; bh=QYbTEWl3CIT6voJtWtBv9YwBkQP/Cu5Nny6nfzf0IQo=; b=XCkkHsDehvV0W5215u8lkLMI7fxgZauzGo1+7Mve+kRNsVBvvpr+/yt7sschAH756T0dhs3Dk723wXU/KNmDnRuDKHvcPQ0nCW+qMt6B30WIaVAqR5lsKWCihnB1/EDpjMrEbL9lsxjJqyIiEr+E0ZASLnrgJxbpHYed2uGmdtE=
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01lp0212.outbound.protection.outlook.com [213.199.154.212]) (Using TLS) by eu-smtp-1.mimecast.com with ESMTP id uk-mta-9-8KcsiQIiPbKTcWx8LOSFzA-1; Thu, 20 Jul 2017 18:53:46 +0100
Received: from AM3PR07MB1140.eurprd07.prod.outlook.com (10.163.188.14) by AM3PR07MB468.eurprd07.prod.outlook.com (10.242.113.23) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1282.4; Thu, 20 Jul 2017 17:53:44 +0000
Received: from AM3PR07MB1140.eurprd07.prod.outlook.com ([fe80::b8a2:fb24:484f:ba3]) by AM3PR07MB1140.eurprd07.prod.outlook.com ([fe80::b8a2:fb24:484f:ba3%13]) with mapi id 15.01.1282.011; Thu, 20 Jul 2017 17:53:44 +0000
From: Tim Chown <Tim.Chown@jisc.ac.uk>
To: Lorenzo Colitti <lorenzo@google.com>
CC: Nick Hilliard <nick@foobar.org>, IPv6 Ops WG <v6ops@ietf.org>
Thread-Topic: [v6ops] New Version Notification for draft-hilliard-v6ops-host-addr-update-00.txt - Privacy Properties
Thread-Index: AQHTATUji5KtLICoVEuRVVY8txHTcaJcbLsAgABueoCAAAMQgIAAB+oAgAAGeoCAAAH9AIAABF4AgAAD2oCAAAEAAIAAB/aA
Date: Thu, 20 Jul 2017 17:53:44 +0000
Message-ID: <3035C384-BAD4-44A3-8DCE-1F3A6EB9A380@jisc.ac.uk>
References: <596CF817.8040900@foobar.org> <BC0BBAF5-B016-44B5-8D73-BC9382CB79A9@google.com> <20170719090835.GC45648@Space.Net> <CAKD1Yr29MmGJuX+uhXaroB6UMRBBWBscCZPaMjaVscL0q7a7pg@mail.gmail.com> <98208c2e-7524-7afa-b0c8-865f251cd66e@gmail.com> <20170720062751.GL45648@Space.Net> <CAKD1Yr1ihnqHAzjhPcA8HB7sBBRwht2t5epJqQA-B_YGnfoTQA@mail.gmail.com> <52ed5fcd-8af5-5b6b-4328-002a431977b6@gmail.com> <CAPt1N1mzRmX6ZccDS8O642N-Lkq5=FZuUHUEFotwo9CFuMNsAQ@mail.gmail.com> <D45180D3-D889-4B9C-B059-F6D1A59909A8@jisc.ac.uk> <5970D1FF.2090707@foobar.org> <6C5C7F6F-0503-47CA-9C28-D0F405340EC2@jisc.ac.uk> <5970DE11.5070001@foobar.org> <C52793BC-0E4C-413E-9845-7BD8C6FEA821@jisc.ac.uk> <CAKD1Yr374C_brUfY1x9mtOgDcXzwc1xjpHfuQBHddZOU9uHK2w@mail.gmail.com> <C27F0218-5FD3-44AF-A134-6F9BB24C584F@jisc.ac.uk> <CAKD1Yr1zpdJGDab9N9JVw86XQF6i=2mbiqck7Nwk2YCEfrhZ0A@mail.gmail.com>
In-Reply-To: <CAKD1Yr1zpdJGDab9N9JVw86XQF6i=2mbiqck7Nwk2YCEfrhZ0A@mail.gmail.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3273)
x-originating-ip: [31.133.146.203]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM3PR07MB468; 20:SU8lQs4RCreR6/P4CAB1jruvKqvBb/awvfvC4xx5LAx/Hl2nBUBZRFnwWmNKDJZyQ765GIAUFFDm2fVa2DsyYvooxRPn6L42rN0EHDRCpfDcZ5Ru5Hu67cSx53UWMmQqSDswiiJFQe7yCjGCuiwxoADRHtLEHwc3nw9rc8VED4A=
x-ms-office365-filtering-correlation-id: 49e3a193-2619-4a1e-6ae6-08d4cf9843e1
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254075)(300000503095)(300135400095)(2017052603031)(201703131423075)(201703031133081)(201702281549075)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:AM3PR07MB468;
x-ms-traffictypediagnostic: AM3PR07MB468:
x-exchange-antispam-report-test: UriScan:(274715658323672)(151999592597050)(236129657087228)(48057245064654)(211936372134217)(148574349560750);
x-microsoft-antispam-prvs: <AM3PR07MB46863BE0E12CED9E2D8A00BD6A70@AM3PR07MB468.eurprd07.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(601004)(2401047)(2017060910075)(5005006)(8121501046)(93006095)(93001095)(3002001)(100000703101)(100105400095)(10201501046)(920507026)(6041248)(20161123558100)(201703131423075)(201702281529075)(201702281528075)(201703061421075)(201703061406153)(20161123564025)(20161123562025)(20161123555025)(20161123560025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:AM3PR07MB468; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:AM3PR07MB468;
x-forefront-prvs: 0374433C81
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(39840400002)(39450400003)(39410400002)(39400400002)(24454002)(377454003)(230783001)(2900100001)(54906002)(99286003)(5660300001)(50226002)(14454004)(57306001)(33656002)(82746002)(6436002)(36756003)(53546010)(66066001)(50986999)(76176999)(6506006)(25786009)(3280700002)(72206003)(83716003)(4326008)(6116002)(8936002)(305945005)(102836003)(81166006)(3660700001)(478600001)(5250100002)(3846002)(229853002)(93886004)(6512007)(15650500001)(7736002)(38730400002)(6246003)(8676002)(6916009)(86362001)(42882006)(110136004)(6486002)(2950100002)(74482002)(2906002)(53936002)(189998001); DIR:OUT; SFP:1101; SCL:1; SRVR:AM3PR07MB468; H:AM3PR07MB1140.eurprd07.prod.outlook.com; FPR:; SPF:None; MLV:sfv; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-ID: <A9FD4248810C0244BBE7EF23B4AC4B51@eurprd07.prod.outlook.com>
MIME-Version: 1.0
X-OriginatorOrg: jisc.ac.uk
X-MS-Exchange-CrossTenant-originalarrivaltime: 20 Jul 2017 17:53:44.6126 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 48f9394d-8a14-4d27-82a6-f35f12361205
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM3PR07MB468
X-MC-Unique: 8KcsiQIiPbKTcWx8LOSFzA-1
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: base64
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/4OBSD_VkmqdI_ggU-usR4L0n8lc>
Subject: Re: [v6ops] New Version Notification for draft-hilliard-v6ops-host-addr-update-00.txt - Privacy Properties
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Jul 2017 17:53:54 -0000

> On 20 Jul 2017, at 18:25, Lorenzo Colitti <lorenzo@google.com> wrote:
> 
> Tim, when you say /64 per office for your initial campus rollout, did you mean /64 per host?

No, this was back in around 2003/4-ish during a project called 6NET, when we had edge devices that would have been capable of being configured to route a /64 per office, and had good v6 support. There were various reasons discussed around isolation, accountability, etc.  Much of the same rationale of the prefix-per-host draft.  

And that was still early wireless days, and certainly pre-802.1x being anywhere near mainstream (we started work on eduroam a year or two before, but there were only very early open source supplicants and some not-cheap 3rd party ones.  So different now :).

Tim

> On Thu, Jul 20, 2017 at 7:21 PM, Tim Chown <Tim.Chown@jisc.ac.uk> wrote:
> > On 20 Jul 2017, at 18:07, Lorenzo Colitti <lorenzo@google.com> wrote:
> >
> > On Thu, Jul 20, 2017 at 6:52 PM, Tim Chown <Tim.Chown@jisc.ac.uk> wrote:
> > > There are lots of different types of campus, and campus type networks.
> >
> > Well, the discussion was around best practice discussion, and in that light eduroam should be aspirational. It’s deployed in 70-80 countries, but the underlying 802.1x can be used in any campus, and on wired links as well.
> >
> > Which is, of course, technically a much better solution than relying on insecure DHCPv6.
> >
> > Additionally, there's the option of doing /64 per host (via RAs) in the enterprise. Same tracking and authorization properties, but no limitation on the number of addresses that can be used.
> 
> Yep, and I mention that when speaking to university admins, ad they like and understand the idea.  Though I have a feeling they may soon realise they’ll want more than a /48 to serve their campuses… and that’s an issue for campuses that want to follow 7934 and JJB’s draft.  We have three UK universities that have now gone for LIR status to obtain their own /32.
> 
> As an aside, we almost went with /64 per office in our initial campus rollout; the issue then was the extra cost of the routing image on $vendor’s hardware.
> 
> Tim
>

v2.23.0 | Report a Bug | By Email