At 10:43 PM +0200 8/29/02, Mauro Tortonesi wrote: >On Thu, 29 Aug 2002, Steve Deering wrote: > > At 10:41 AM -0400 8/27/02, Joe Baptista wrote: > > > ...IPv6 address space uses an ID > > >(indentifier) derived from your hardware or phone. "That allows your > > >packets to be traced back to your PC or cell-phone" said <censored>. > > ><censored> fears abuse as a hardware ID wired into the ipv6 protocol can > > >be used to determine the manufacturer, make and model number, and value > > >of the hardware equipment being used by the end user. > > > > This issue was addressed a *long* time ago -- please see > > http://playground.sun.com/ipv6/specs/ipv6-address-privacy.html > > from November of 1999. > >i don't think so. even if rfc3041 effectively solves the problem of >traceability at the network layer, there are still many security problems >to be solved.
Mauro, I believe RFC3041 solves the security problems that arise specifically from using an "ID derived from your hardware or phone", by simply not using such an ID. That's all I was talking about, and that's the topic of the referenced Privacy Statement (and the topic of Joe Baptista's article). Of course there are still many other traceability/privacy/security issues to be solved (none of which, I believe, are specific to IPv6), and I apologize if I gave the impression that I was asserting otherwise. Steve -------------------------------------------------------------------- IETF IPng Working Group Mailing List IPng Home Page: http://playground.sun.com/ipng FTP archive: ftp://playground.sun.com/pub/ipng Direct all administrative requests to [EMAIL PROTECTED] --------------------------------------------------------------------
