IETF Logo Mail Archive

Re: [v6ops] I-D Action: draft-ietf-v6ops-unique-ipv6-prefix-per-host-07.txt

Tim Chown <Tim.Chown@jisc.ac.uk> Fri, 04 August 2017 10:03 UTC

Return-Path: <tim.chown@jisc.ac.uk>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6CE6F131771 for <v6ops@ietfa.amsl.com>; Fri, 4 Aug 2017 03:03:54 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -5.31
X-Spam-Level:
X-Spam-Status: No, score=-5.31 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H5=-1, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=jisc.ac.uk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TURPZdH2qD3G for <v6ops@ietfa.amsl.com>; Fri, 4 Aug 2017 03:03:51 -0700 (PDT)
Received: from eu-smtp-delivery-189.mimecast.com (eu-smtp-delivery-189.mimecast.com [207.82.80.189]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 89346124234 for <v6ops@ietf.org>; Fri, 4 Aug 2017 03:03:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=jisc.ac.uk; s=mimecast20170213; t=1501841027; h=from:subject:date:message-id:to:cc:mime-version:content-type:content-transfer-encoding:in-reply-to:references; bh=aYrm2PiRAjza0g6UmMUkKAPHW/TbNeJ8YLkou9v5cd8=; b=QxW6LBNKoAgt24TkFPV7wac4l/ABo3+MilI7Wz1WP6poDt267zW3ozXa6vSD1LY92KTnfin0UyvGxSaF1DO6iy1f16kPo83khH0Zb4Qs+q4tMrJIWKj4JgyOdTzvL/UszApwcodqMmZ5si4o/MuNFlhITTUsl1yCwl4VPHkNPgk=
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01lp0209.outbound.protection.outlook.com [213.199.154.209]) (Using TLS) by eu-smtp-1.mimecast.com with ESMTP id uk-mta-136-SCqC7SH9M2eIzfFtGAd7DQ-1; Fri, 04 Aug 2017 11:03:44 +0100
Received: from AM3PR07MB1140.eurprd07.prod.outlook.com (10.163.188.14) by AM3PR07MB435.eurprd07.prod.outlook.com (10.242.112.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P256) id 15.1.1320.10; Fri, 4 Aug 2017 10:03:42 +0000
Received: from AM3PR07MB1140.eurprd07.prod.outlook.com ([fe80::b8a2:fb24:484f:ba3]) by AM3PR07MB1140.eurprd07.prod.outlook.com ([fe80::b8a2:fb24:484f:ba3%13]) with mapi id 15.01.1320.012; Fri, 4 Aug 2017 10:03:42 +0000
From: Tim Chown <Tim.Chown@jisc.ac.uk>
To: DY Kim <dykim6@gmail.com>
CC: Mark Smith <markzzzsmith@gmail.com>, v6ops list <v6ops@ietf.org>
Thread-Topic: [v6ops] I-D Action: draft-ietf-v6ops-unique-ipv6-prefix-per-host-07.txt
Thread-Index: AQHTDQjzcPLOvEGNgkuXOXbQbYoHAg==
Date: Fri, 04 Aug 2017 10:03:42 +0000
Message-ID: <801ACC98-2A54-40CF-B6F5-7B36CEC99CDA@jisc.ac.uk>
References: <150148445751.17707.15424999122129322815@ietfa.amsl.com> <E6AC9174-3D6E-4FAD-B84B-B7E58FB149BC@gmail.com> <CAO42Z2xEs6RauD6Oo_NbqOh+FRVAu3NuveewSvRx7g1hS2-ToQ@mail.gmail.com> <94BC4E17-D490-4F50-9E99-2AAA081CD43C@gmail.com> <CAO42Z2zR_bWPqOHM7-RNsPX78np45UV=J67YD5gbpoCPUaLkAQ@mail.gmail.com> <FB14455C-F00E-49A4-936F-03BD44C4D42C@gmail.com> <CAO42Z2zLgw3cYapf=1y9pm4cWMZZ32DT2ryfPb6BGUFjCfmrMg@mail.gmail.com> <6950ACA0-CAB9-4890-ABE3-0ECA84C58251@gmail.com>
In-Reply-To: <6950ACA0-CAB9-4890-ABE3-0ECA84C58251@gmail.com>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-mailer: Apple Mail (2.3273)
x-originating-ip: [2001:a88:d510:1101:2c19:c7da:71cb:5b8a]
x-ms-publictraffictype: Email
x-microsoft-exchange-diagnostics: 1; AM3PR07MB435; 20:bqdN2+P6PQ5RjvqQW+3nxJ8WgfdxqEzqBbgL2YsNjpYnxORbIW6mQ5FaLElve7isrpTQZOuMBSpfJVTlrBRiFcN4vWPHwtU/1vq1ZEnw7Nd4FeTFpTvp2h7SsNtXsyZk74OnvrtzaHwtuNIe9xRj3LCzS0rb5Fpz9lBON+sVya0=
x-ms-office365-filtering-correlation-id: 99af8bb2-292b-4b27-a9cf-08d4db201618
x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(2017030254152)(300000503095)(300135400095)(2017052603031)(201703131423075)(201703031133081)(201702281549075)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:AM3PR07MB435;
x-ms-traffictypediagnostic: AM3PR07MB435:
x-exchange-antispam-report-test: UriScan:(192374486261705);
x-microsoft-antispam-prvs: <AM3PR07MB43532F2E066C8FF620BE4B6D6B60@AM3PR07MB435.eurprd07.prod.outlook.com>
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(6040450)(601004)(2401047)(5005006)(8121501046)(100000703101)(100105400095)(3002001)(10201501046)(93006095)(93001095)(6041248)(20161123562025)(20161123558100)(201703131423075)(201702281529075)(201702281528075)(201703061421075)(201703061406153)(20161123564025)(20161123555025)(20161123560025)(6072148)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:AM3PR07MB435; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:AM3PR07MB435;
x-forefront-prvs: 0389EDA07F
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(39400400002)(39850400002)(39410400002)(39840400002)(39450400003)(199003)(24454002)(189002)(86362001)(4326008)(50986999)(189998001)(54906002)(99286003)(14454004)(50226002)(93886004)(39060400002)(72206003)(74482002)(76176999)(81156014)(966005)(3280700002)(82746002)(6506006)(229853002)(6306002)(81166006)(105586002)(6486002)(6512007)(33656002)(8676002)(83716003)(2906002)(68736007)(5660300001)(106356001)(6116002)(2950100002)(6916009)(42882006)(53936002)(6246003)(7736002)(305945005)(25786009)(230783001)(6436002)(8936002)(57306001)(110136004)(53546010)(5250100002)(38730400002)(478600001)(2900100001)(1411001)(97736004)(101416001)(36756003)(3660700001)(102836003); DIR:OUT; SFP:1101; SCL:1; SRVR:AM3PR07MB435; H:AM3PR07MB1140.eurprd07.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-ID: <F33017A01EE383438629172BF4668DDF@eurprd07.prod.outlook.com>
MIME-Version: 1.0
X-OriginatorOrg: jisc.ac.uk
X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Aug 2017 10:03:42.1609 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 48f9394d-8a14-4d27-82a6-f35f12361205
X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM3PR07MB435
X-MC-Unique: SCqC7SH9M2eIzfFtGAd7DQ-1
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: base64
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/XCoHFrLQI5ROKmZ_69YySkLvBmE>
Subject: Re: [v6ops] I-D Action: draft-ietf-v6ops-unique-ipv6-prefix-per-host-07.txt
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 04 Aug 2017 10:03:54 -0000

> On 4 Aug 2017, at 09:42, DY Kim <dykim6@gmail.com> wrote:
> 
>> On 4 Aug 2017, at 17:18, Mark Smith <markzzzsmith@gmail.com> wrote:
>> 
>> Why specifically might you like to assign /96s? What benefit do you get?
> 
> Now that a device (can I say ‘node’?) trackable by its (/64) unique prefix, the privacy of the node might be compromised.
> 
> To combat this, you might want to regularly randomize/refresh the prefix for a given node to secure privacy from eavesdroppers, except that the privacy is not secured to the entity distributing the prefixes.

That would be a reasonable issue to discuss in the security considerations of draft-ietf-v6ops-unique-ipv6-prefix-per-host.

> For enough randomization in that case, I might like to have enough (say 48) additional bits for the node prefix, rendering 48+48=96; 48 is shorter than 64, but should be large enough for randomization for privacy.

That’s off piste for this draft. And a discussion already thrashed out in other threads, and also discussed in RFC7421.

Tim

>> No. /64s as the subnet size as been the common edge subnet/IID
>> boundary for almost 20 years since RFC2373.
> 
> In this I-D, /64s are not assigned to ‘subnets' but to ‘nodes' in a shared network.
> 
> Or do you mean what RFC 4291bis really wanted say was the boundary for 'any prefix'/IID is at 64th bit?
> 
> 
> _______________________________________________
> v6ops mailing list
> v6ops@ietf.org
> https://www.ietf.org/mailman/listinfo/v6ops

v2.23.0 | Report a Bug | By Email