[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Machine Identity

To: Stephane Bortzmeyer <bortzmeyer at nic.fr>
Subject: Re: Machine Identity
From: Juergen Schoenwaelder <j.schoenwaelder at jacobs-university.de>
Date: Thu, 28 Feb 2008 12:46:56 +0100
Cc: discuss at apps.ietf.org
Delivered-to: ietfarch-discuss-web-archive at core3.amsl.com
Delivered-to: discuss at core3.amsl.com
In-reply-to: <20080228112318.GA23196 at nic.fr>
List-help: <mailto:discuss-request@ietf.org?subject=help>
List-id: general discussion of application-layer protocols <discuss.ietf.org>
List-post: <mailto:discuss@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/discuss>, <mailto:discuss-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/discuss>, <mailto:discuss-request@ietf.org?subject=unsubscribe>
References: <20080226130527.GA1404 at generic-nic.net> <20080228112318.GA23196 at nic.fr>
Reply-to: j.schoenwaelder at jacobs-university.de
Sender: discuss-bounces at ietf.org
User-agent: Mutt/1.5.17 (2007-11-01)

On Thu, Feb 28, 2008 at 12:23:18PM +0100, Stephane Bortzmeyer wrote:

> An example of an Use Case is given by IKE (RFC 4306). Section 3.5
> lists several possible identities for a machine, and there is not a
> clear unique way to define this identity (identities like ID_IPV4_ADDR
> are typically a poor way to define a machine on the network).

After several years in network management (where the first thing you
like to have are stable unique identities), I have come to the
conclusion that it is hopeless to search for such a generally useful
identity.  What works is all very much dependent on the purpose and
the specific situation, as others have pointed out before.

And even if someone manages to come up with a good solution, people
sooner or later will try to circumvent it since in several situations
it is a feature and not a bug to be able to do dirty things with
identities.

/js

-- 
Juergen Schoenwaelder           Jacobs University Bremen gGmbH
Phone: +49 421 200 3587         Campus Ring 1, 28759 Bremen, Germany
Fax:   +49 421 200 3103         <http://www.jacobs-university.de/>

Follow-Ups:
- Re: Machine Identity
  - From: Miika Komu

References:
- Machine Identity
  - From: Stephane Bortzmeyer
- Re: Machine Identity
  - From: Stephane Bortzmeyer

Prev by Date: Re: Machine Identity
Next by Date: Re: Machine Identity
Previous by thread: Re: Machine Identity
Next by thread: Re: Machine Identity
Index(es):
- Date
- Thread