>>>> If IPv6 has a better anonymity solution, can someone point me >>>> to it? Or do I have to start working on NATv6? (See, this is >>>> why I don't always want to identify myself! :-) >>> >>> See RFC 3041 - It does exactly what you want without the >>> drawbacks of NAT. >> >> >> Actually not, if you have a domestic /48 or /64 prefix. But the >> MobileIP solution looks OK. > > Looks but doesn't act like really providing location privacy, IMHO. > > In my understanding, the essence of the hmipv6 location privacy > mechanism lies in the MAP replacing a RCoA for a LCoA (when > decapsulating). However, it is very much likely that the two > addresses will only differ in the /64 prefix. > > Suffices it for an attacker that wants to find the correlation > LCoA-RCoA to visit the MAP domain once and learn that domain's > prefixes that are part of all of that domain's LCoA's.
I don't quite understand this... All CN knows is the RCoA of the MN. Only LCoA can reveal the location of the MN within the network. And CN cannot figure out LCoA by looking at RCoA. This is so much like what NAT does as far as hiding LCoA is concerned. > > What one really obtains with HMIP is that one gets assigned two > addresses and is free to inform its CN about one of those addresses. > Nothing about a location being assigned to an address, let alone the > question of hiding that location. > > Another location privacy drawback in hmipv6 is that it is the > network that decides whether an MN can use that location privacy or > not. That should supposedly be entirely an MN choice. MN can choose to engage in HMIP and hence take advantage of it. I don't see the network forcing MN to use this protocol. So, at the end, it's MN's choice. > > My two cents worth; (two because I'm getting the ipng mails twice :-) alper > > Alex > GBU > > -------------------------------------------------------------------- > IETF IPng Working Group Mailing List > IPng Home Page: http://playground.sun.com/ipng > FTP archive: ftp://playground.sun.com/pub/ipng > Direct all administrative requests to [EMAIL PROTECTED] > -------------------------------------------------------------------- > -------------------------------------------------------------------- IETF IPng Working Group Mailing List IPng Home Page: http://playground.sun.com/ipng FTP archive: ftp://playground.sun.com/pub/ipng Direct all administrative requests to [EMAIL PROTECTED] --------------------------------------------------------------------
