Hosnieh, On 02/02/2013 06:41 PM, Hosnieh Rafiee wrote: > >> CGA were not designed to address privacy related attacks, they are a means > of securing NDP exchanges. The fact that they appear random is coincidental > to their function. > > It is true that the main purpose was security, but it is not true that > privacy was not a consideration.
It can't be a consideration, because in order for CGAs to serve their purpose, nodes must be able to compute the IID. An IID that aims at protecting user privacy works the other way around: a third-party should not be able to compute the IID. Cheers, -- Fernando Gont SI6 Networks e-mail: fg...@si6networks.com PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492 -------------------------------------------------------------------- IETF IPv6 working group mailing list ipv6@ietf.org Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------