[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: Notes about identifier - locator separator
> >>>>> "Tony" == Tony Li <Tony.Li@procket.com> writes:
> Tony> I know less about security than Ran, but wouldn't having a
> Tony> of pseudonyms help avoid the privacy issue?
> Ran's point is that nobody is depending upon the IP addresses
> (whether they are locators or end-point identifiers) to do tracking.
Well, if we specify that all packets shall carry a unique identifier
that is independent of the location we certainly facilitate tracking,
To answer Tony's question: there are indeed possible mitigations. One is
to simply hide the identifier inside an encrypted portion of the packet.
Another may be to have the identifier be function of the locator, as in
e.g. hash(locator, secret identifier value). Yet another is to not carry
an identifier in every packet, and to simply use some kind of "binding
update" mechanism to link the address/locator with an identity of some
-- Christian Huitema