Re: [BEHAVE] Perils of structured host identifiers

To: marcelo bagnulo braun <marcelo at it.uc3m.es>
Subject: Re: [BEHAVE] Perils of structured host identifiers
From: Iljitsch van Beijnum <iljitsch at muada.com>
Date: Tue, 7 Jul 2009 09:36:09 +0200
Cc: Christian Huitema <huitema at windows.microsoft.com>, 6man <ipv6 at ietf.org>, Dave Thaler <dthaler at windows.microsoft.com>, Xing Li <xing at cernet.edu.cn>, Behave WG <behave at ietf.org>, Brian E Carpenter <brian.e.carpenter at gmail.com>
Delivered-to: ipv6 at core3.amsl.com
In-reply-to: <4A524FE3.8070101 at it.uc3m.es>
List-archive: <http://www.ietf.org/mail-archive/web/ipv6>
List-help: <mailto:ipv6-request@ietf.org?subject=help>
List-id: "IPv6 Maintenance Working Group \(6man\)" <ipv6.ietf.org>
List-post: <mailto:ipv6@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/ipv6>, <mailto:ipv6-request@ietf.org?subject=unsubscribe>
References: <E4561B14EE2A3E4E9D478EBFB5416E1B0A2F5A at TK5EX14MBXW651.wingroup.windeploy.ntdev.microsoft.com> <18256DC3-184D-48FE-B37C-2F9867597304 at free.fr> <E4561B14EE2A3E4E9D478EBFB5416E1B0A5745 at TK5EX14MBXW651.wingroup.windeploy.ntdev.microsoft.com> <EB331E19-8164-4805-A412-4686D16C955F at free.fr> <4A4F5F9A.40202 at gmail.com> <268554C4-E415-492E-B950-4B9531F53CEA at free.fr> <6B55F0F93C3E9D45AF283313B8D342BA0436FB0A at TK5EX14MBXW652.wingroup.windeploy.ntdev.microsoft.com> <4A524FE3.8070101 at it.uc3m.es>

On 6 jul 2009, at 21:26, marcelo bagnulo braun wrote:

Maybe this can be addressed by having the Pref64 i.e. the prefixused to make representations of IPv4 addresses in the IPv4 addressspace to be shorter than 32 bits.This would allow to have the Pref64+ IPv4 address shorter than 64bits and we can still embed crypto info in the last 64 bits as donewith CGAs

Why would the NAT64 need CGA IIDs in the bottom 64 bits of IPv6addresses that represent IPv4 addresses?

CGAs are only useful when they're assigned to a host, not in theaddress space of protocol A that represents the address space ofprotocol B.

The concerns about privacy can be mitigated by using algorithms thatscramble the bits of the IPv4 address around.


Sorry, but the idea that privacy should apply to NAT64 is stupid.

If you want privacy, set up an IPsec tunnel to the NAT64. Or get anISP that you trust enough to let them see the destination addresses inyour packets.

Follow-Ups:
- RE: [BEHAVE] Perils of structured host identifiers
  - From: Dave Thaler

References:
- Re: [BEHAVE] Modified EUI-64 format
  - From: Rémi Després
- Re: [BEHAVE] Modified EUI-64 format
  - From: Brian E Carpenter
- Re: [BEHAVE] Modified EUI-64 format
  - From: Rémi Després
- Perils of structured host identifiers (was: Modified EUI-64 format)
  - From: Christian Huitema
- Re: [BEHAVE] Perils of structured host identifiers
  - From: marcelo bagnulo braun

Prev by Date: Re: [BEHAVE] Perils of structured host identifiers
Next by Date: Re: Perils of structured host identifiers (was: Modified EUI-64 format)
Previous by thread: Re: [BEHAVE] Perils of structured host identifiers
Next by thread: RE: [BEHAVE] Perils of structured host identifiers
Index(es):
- Date
- Thread

Re: [BEHAVE] Perils of structured host identifiers

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.