Re: [VIPR] I-D Action: draft-petithuguenin-p2psip-reload-anonymous-01.txt

Marc Petit-Huguenin <petithug@acm.org> Thu, 18 October 2012 14:08 UTC

Return-Path: <petithug@acm.org>
X-Original-To: vipr@ietfa.amsl.com
Delivered-To: vipr@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 00C4C21F882F for <vipr@ietfa.amsl.com>; Thu, 18 Oct 2012 07:08:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -102.468
X-Spam-Level:
X-Spam-Status: No, score=-102.468 tagged_above=-999 required=5 tests=[AWL=0.133, BAYES_00=-2.599, NO_RELAYS=-0.001, USER_IN_WHITELIST=-100]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id l4JG9P5dtc-I for <vipr@ietfa.amsl.com>; Thu, 18 Oct 2012 07:08:13 -0700 (PDT)
Received: from implementers.org (implementers.org [IPv6:2604:3400:dc1:41:216:3eff:fe5b:8240]) by ietfa.amsl.com (Postfix) with ESMTP id C349621F882B for <vipr@ietf.org>; Thu, 18 Oct 2012 07:08:12 -0700 (PDT)
Received: from [IPv6:2601:9:4b80:32:8062:85a5:b4a2:dc52] (unknown [IPv6:2601:9:4b80:32:8062:85a5:b4a2:dc52]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (Client CN "Marc Petit-Huguenin", Issuer "implementers.org" (verified OK)) by implementers.org (Postfix) with ESMTPS id D001520194 for <vipr@ietf.org>; Thu, 18 Oct 2012 14:08:11 +0000 (UTC)
Message-ID: <50800D4A.5070401@acm.org>
Date: Thu, 18 Oct 2012 07:08:10 -0700
From: Marc Petit-Huguenin <petithug@acm.org>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:10.0.9) Gecko/20121014 Icedove/10.0.9
MIME-Version: 1.0
To: "vipr@ietf.org" <vipr@ietf.org>
References: <20121015222240.23786.6187.idtracker@ietfa.amsl.com>
In-Reply-To: <20121015222240.23786.6187.idtracker@ietfa.amsl.com>
X-Enigmail-Version: 1.4.1
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: 7bit
Subject: Re: [VIPR] I-D Action: draft-petithuguenin-p2psip-reload-anonymous-01.txt
X-BeenThere: vipr@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Verification Involving PSTN Reachability working group <vipr.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/vipr>, <mailto:vipr-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/vipr>
List-Post: <mailto:vipr@ietf.org>
List-Help: <mailto:vipr-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/vipr>, <mailto:vipr-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 18 Oct 2012 14:08:14 -0000

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

I no longer have a company sponsoring me to work as much as I would like on
VIPR, but that does not mean that I gave up on VIPR.

You may remember that in the VIPR meeting in Paris I presented a summary of
the privacy issues in VIPR and that on one slide I presented a sketch on how
it would be possible to use RELOAD in an anonymous way[1].  The draft I just
published contains a more complete description on how this can work (note that
an IPR disclosure has been filed for this draft, and will appear in the next
few days).

I did not had the time to write an I-D explaining how to use an anonymized
RELOAD to solve VIPR privacy issues, but I can summarize it here:

- - When a VIPR peer wants to register a phone number, it uses an anonymous
Store and stores a Destination list containing the Node-ID of the first onion
peer, followed by an Onion-ID, instead of its Node-ID directly.

- - When a VIPR peer wants to run a PVP transaction, it does it inside an
end-to-end encrypted tunnel instead of over a TLS connection created by an
AppAttach.  This ensure that the IP address to reach the SIP client
(indirectly through the SIP route) will be disclosed only after the PVP
transaction succeeds and that no intermediary peer will be able to see the SIP
route and ticket.

VIPR is not meeting in Atlanta, but I plan to request time in the P2PSIP
session to present this draft.

Thanks.


[1] I also spent some time exploring an alternative idea, proposed originally
during a design team conference call, which was to interconnect VIPR overlays,
but I was not able to find a way to make it work.

On 10/15/2012 03:22 PM, internet-drafts@ietf.org wrote:
> 
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> 
> 
> Title           : Anonymization for REsource LOcation And Discovery
> (RELOAD) Author(s)       : Marc Petit-Huguenin Filename        :
> draft-petithuguenin-p2psip-reload-anonymous-01.txt Pages           : 17 
> Date            : 2012-10-15
> 
> Abstract: This document presents a set of techniques that a REsource
> LOcation And Discovery (RELOAD) node may use to ensure that the use of
> high level RELOAD operations do not reveal the owner of this node.  These 
> high level features are defined as the set of operations related to data
> storage, plus the operation that permits to exchange application layer
> messages.
> 
> 
> The IETF datatracker status page for this draft is: 
> https://datatracker.ietf.org/doc/draft-petithuguenin-p2psip-reload-anonymous
>
>  There's also a htmlized version available at: 
> http://tools.ietf.org/html/draft-petithuguenin-p2psip-reload-anonymous-01
> 
> A diff from the previous version is available at: 
> http://www.ietf.org/rfcdiff?url2=draft-petithuguenin-p2psip-reload-anonymous-01
>
> 
> 
> Internet-Drafts are also available by anonymous FTP at: 
> ftp://ftp.ietf.org/internet-drafts/
> 

- -- 
Marc Petit-Huguenin
Email: marc@petit-huguenin.org
Blog: http://blog.marc.petit-huguenin.org
Profile: http://www.linkedin.com/in/petithug
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=fRd0
-----END PGP SIGNATURE-----