IETF Logo Mail Archive

Re: [v6ops] Security: Unique IPv6 Prefix per Host

Tom Herbert <tom@herbertland.com> Mon, 13 November 2017 19:42 UTC

Return-Path: <tom@herbertland.com>
X-Original-To: v6ops@ietfa.amsl.com
Delivered-To: v6ops@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 07377129B56 for <v6ops@ietfa.amsl.com>; Mon, 13 Nov 2017 11:42:28 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_LOW=-0.7, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=herbertland-com.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id z64QsiHx5__V for <v6ops@ietfa.amsl.com>; Mon, 13 Nov 2017 11:42:27 -0800 (PST)
Received: from mail-qk0-x231.google.com (mail-qk0-x231.google.com [IPv6:2607:f8b0:400d:c09::231]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C3662129B50 for <v6ops@ietf.org>; Mon, 13 Nov 2017 11:42:26 -0800 (PST)
Received: by mail-qk0-x231.google.com with SMTP id a194so19072598qkc.9 for <v6ops@ietf.org>; Mon, 13 Nov 2017 11:42:26 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=herbertland-com.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=j05Na+o7PsAuwfGb6f9UtGiajoKe0PS3X8tYndvxY6c=; b=Ne0yWLBOaE/USm8flxkE5gfGBho4NAqiuyq7Mxl4JKi2b4cGFpzyu2X7nLrrNx/U9b YOKfZIy2Hd5KRlKxHz/aDkIokBeY29mrOTgA87kRI5bnVwOghaHwvI4QASGb1a62ihmI JxRZgcYF2aJvjuRALo5PAjlA4//KQSa04MGee16lJCzQzB245aEE09XcYorTrZy7tqES 9OF6jINmFuPasgLwLYtFOarPRNs33zwxOganDEQVlvK1/oWSnWZ15NzKRHtmzR1CT5as 6cp9e8p09aSPSrioTNAoMfDd3pzz6fqd0MqDRpbcmkg0FrBhR9uDsAurJDcW4j2Gmwgx pXFg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=j05Na+o7PsAuwfGb6f9UtGiajoKe0PS3X8tYndvxY6c=; b=WFA5LotDfBYgIVvhkk16iFctD3USG7RVFwSCnU9faSTC7GEi202fUx7tqUXN+Xi93V AAqn1YVtAz0aot67n56kX1RfrlXib52kBOZsh/Q2LRUIr1BoZ36b76n5bLawQM4yzDJJ Uon+evoLhdesHHp8Zeg9dNPHpLDTw6kqKsBxe725t71ZqFG6jDQ9Pgs1ZL8bCUFCdrZ2 Dg4c0h6N3l6BKUk6UaiM6ENcXnBSUeFdIcUGMWAfVyDgdvt40buFgPdqs6MUixGi7TEA UpcrPYaI05kvbR6TnrhqRwGXiuHJPsn3SnGaGcaoC/0FgbNxbjTnhuZiTwi40MeG6ZTw Vs5Q==
X-Gm-Message-State: AJaThX75v+qhKqO+deSid+OqWX832rKRIUvPXpj1Uo3T2ifqTQGI5rlW 82uio/ziEKAzgDY3NvLWo07bzaBtHdq1O+phWkqzog==
X-Google-Smtp-Source: AGs4zMYQDL8NMv5eP5STzT8aLycGxjUHI2e3XZ1+U0ClbU53sbL4DGQcpG3eQ+JTmjDlguLzT3YsCy+PXYPUWJrzg2E=
X-Received: by 10.55.106.132 with SMTP id f126mr14985292qkc.295.1510602145863; Mon, 13 Nov 2017 11:42:25 -0800 (PST)
MIME-Version: 1.0
Received: by 10.237.54.4 with HTTP; Mon, 13 Nov 2017 11:42:25 -0800 (PST)
In-Reply-To: <CAO42Z2w0JMrstYu2nvjyuwh9qgJ5LFSZszFMSyXxE6SOoro-Zw@mail.gmail.com>
References: <87738DE8-328D-4829-9E13-6EAC641A91E2@gmail.com> <D9F02FFC-F19E-4D88-A980-AF6AA329DA48@gmail.com> <C8EC2963-C49E-4203-AADE-F226D98A90DD@gmail.com> <acd41a27-2e0e-e82c-e4d2-582686933f87@si6networks.com> <CAKD1Yr32xTpNBA7j6ZNqaRxWk5LSznVNdQaMNkQUZdW_6XiVtw@mail.gmail.com> <89d4d29f-30ab-756d-b02c-cf460ef833ce@si6networks.com> <CAKD1Yr0hTaNqvTQSD=jmdQ49cSjKiCPDnRcGX5RkQ59My7dGCQ@mail.gmail.com> <6ed75c9e-5f15-6207-4723-85d055a9768f@si6networks.com> <CAKD1Yr3J1oncy2R8Ydnw5KhWUizQcu2_sWy9tnCDvfBGnPQvkw@mail.gmail.com> <dae4dcab-6a97-74e0-1f7f-8e21fc742b31@si6networks.com> <CAKD1Yr2zXNTV3yZUrAG9=45R3zNAoOnc7qvuPXkqOqzKBjR1aw@mail.gmail.com> <a614e8eb-2f7f-d7c2-d3b5-d411b67b48db@si6networks.com> <CAKD1Yr0iKeuwy5423otVVvJwbevL4m_SACMn+wUE3Koed5BTQg@mail.gmail.com> <ca4c3db8-358a-48ca-64ee-ba1eadcb0980@si6networks.com> <CAKD1Yr1nynArQj5-DrMeLdY-ReEJ-S3uBeou5Wbrt-jkk_epQw@mail.gmail.com> <b0ac25b4-7a0b-b04e-6ecd-88c18a5777c5@si6networks.com> <CAKD1Yr2M2jd+Ck7=yjfgm=pDMX7sXa2tYri_rW5C1jUgE9e+=A@mail.gmail.com> <9766EB28-9160-48CA-B062-BF244821E834@gmail.com> <CAKD1Yr25ZSLG13FVxM5FXbtq=F5yHvffJ6zAB=ojDmruoaUxUw@mail.gmail.com> <D0EFD705-0D6E-4E6B-9CB9-6734AC2137FB@gmail.com> <CAKD1Yr0Z5OPB9TDsD_=EFphRrkXCuRDDFDAawNDa1w9LmjDVng@mail.gmail.com> <7F9BA983-C3EC-442D-B0B7-655D314B766C@gmail.com> <CAKD1Yr3RZTMu98tCRAjMxAbYsjBqVoyRrZhXXiw3f_Mr3RfCjg@mail.gmail.com> <CAG6TeAutRHKWRkGG6CFoMp5AnbTPP+eGZyKU_C7=r=5y_H8qYA@mail.gmail.com> <406D79DC-F93E-4111-80AC-D7C22E42EC01@gmail.com> <CAO42Z2w0JMrstYu2nvjyuwh9qgJ5LFSZszFMSyXxE6SOoro-Zw@mail.gmail.com>
From: Tom Herbert <tom@herbertland.com>
Date: Mon, 13 Nov 2017 11:42:25 -0800
Message-ID: <CALx6S34O3S4_0BE3YeLBzEteKY9=yHx4fFnKFrVVUQ=NCY1CFg@mail.gmail.com>
To: Mark Smith <markzzzsmith@gmail.com>
Cc: Ted Lemon <mellon@fugue.com>, v6ops list <v6ops@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/v6ops/fcTty1l1_fCV6QnW30HyhP09GGs>
Subject: Re: [v6ops] Security: Unique IPv6 Prefix per Host
X-BeenThere: v6ops@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: v6ops discussion list <v6ops.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/v6ops>, <mailto:v6ops-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/v6ops/>
List-Post: <mailto:v6ops@ietf.org>
List-Help: <mailto:v6ops-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/v6ops>, <mailto:v6ops-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Nov 2017 19:42:28 -0000

On Mon, Nov 13, 2017 at 12:30 AM, Mark Smith <markzzzsmith@gmail.com> wrote:
>
>
> On 29 Oct. 2017 09:20, "Ted Lemon" <mellon@fugue.com> wrote:
>
> On Oct 28, 2017, at 5:59 PM, Tom Herbert <tom@herbertland.com> wrote:
>
> Some of this has been touched upon in the IDEAS discussions, but nothing
> formalized yet (identifier-locator use implied to eliminate as much topology
> on address as possible). I could spin a draft specifically on one time use
> addresses and privacy (won't make cutoff though).
>
>
> The problem is that now you have a requirement for substantial
> infrastructure to manage the ID/locator separation.   Would look a bit like
> Tor.   Who's going to pay for it?
>
>
> Actually, I think multipathing e.g. MPTCP goes a long way to solving that
> problem. The 32 bit token generated and used by subflows to identify their
> peer is a temporary host ID that is independent of the locators/addresses of
> the host.
>
> My understanding is that in "original" ID/locator separation, the host ID
> was expected to be fixed and bound to a host across many transport layer
> connections. Perhaps that's what makes it a hard problem.
>
Mark,

The idea of single use addresses is that a host can be assigned many
identifiers from which it can create a unique source address for each
connection. It is up to the infrastructure to direct packets for each
addresses to the right end host. It's true this is potentially a lot
of state for the infrastructure to manage, but the total number of
state entries would be no more than the number of NAT entries if that
were in use today so I don't believe it is impractical.

> Temporary, per application session host IDs are also better for privacy.
>
MPTCP can also leverage this as a means to effectively change the
source address of an existing connection in order to benefit privacy
for long lived connections.

Tom

v2.23.0 | Report a Bug | By Email