On Wed, Oct 11, 2017 at 12:34:19PM -0700, Christian Huitema wrote:
> Some thing you should be hearing is that "long term identity of device"
> has almost the same privacy properties as "long term identity of the
> device's owner". You may think that identifying a random piece of
> hardware is no big deal, but it turns out that the network activity and
> network locations of that piece of hardware can be associated to those
> of its human owner. So you need the same kind of protection for these
> device identifiers as for human identifiers.
Sure, but i don't think it can be generalized:
There will be more and more non-individually owned nodes in public and
corporate infrastructures where requirements will be quite different
from those derived from individual human privacy.
If lets say those long term identifiers do not provide good human
privacy protection but good communications security properties and
managed transpacency for regulators then they could still be a great
benefit for those class of nodes.
[rant]
Trying to get more privacy into network layer is like making
tobacco more organic. You can get buried in the organic section
of the graveyard after you die of lung cancer. Great success!
Aka: Where is the IETF on any warnings, architectures or recommendations
on the actual application layer:
"Inhaling of this web page / IoT device will expose your personal
activities related to it, social security number and credit card
information to a "trusted set" of 1000 collaborating web services
companies of which 10 at least have already been fined several times
for leaking your information - and then made even more money out of it"
(sorry, just can't get beyond the fact that equifax is not making
money out of their leakage...)
Should come with every mayor web page and IoT device.
[/rant]
Venting aside, i'd actually love to understand better if/what IETF
does for privacy inside eg: a TLS payload, besides sipbrandy/dprive/perc ?
Cheers
Toerless
> --
> Christian Huitema
>
> _______________________________________________
> Ideas mailing list
> Ideas@xxxxxxxx
> https://www.ietf.org/mailman/listinfo/ideas