>It can't be a consideration, because in order for CGAs to serve their purpose, nodes must be able to compute the IID. An IID that aims at protecting user privacy works the other way around: a third->party should not be able to compute the IID.
Please refer you to CGA RFC. About SSAS: the purpose of this draft is to discuss the means of combining or integrating privacy (layer 3) and security. Thank you, Hosnieh -----Original Message----- From: Fernando Gont [mailto:fg...@si6networks.com] Sent: Montag, 4. Februar 2013 07:53 To: Hosnieh Rafiee Cc: 'Karl Auer'; ipv6@ietf.org Subject: Re: I-D action : draft-rafiee-6man-ssas-01 Hosnieh, On 02/02/2013 06:41 PM, Hosnieh Rafiee wrote: > >> CGA were not designed to address privacy related attacks, they are a >> means > of securing NDP exchanges. The fact that they appear random is > coincidental to their function. > > It is true that the main purpose was security, but it is not true that > privacy was not a consideration. It can't be a consideration, because in order for CGAs to serve their purpose, nodes must be able to compute the IID. An IID that aims at protecting user privacy works the other way around: a third-party should not be able to compute the IID. Cheers, -- Fernando Gont SI6 Networks e-mail: fg...@si6networks.com PGP Fingerprint: 6666 31C6 D484 63B2 8FB1 E3C4 AE25 0D55 1D4E 7492 -------------------------------------------------------------------- IETF IPv6 working group mailing list ipv6@ietf.org Administrative Requests: https://www.ietf.org/mailman/listinfo/ipv6 --------------------------------------------------------------------
