Hi, Two quick comments on Section 4.3 Lawful Intercept:
In contrast, in mobile environments, since the 3GPP specifications allocate a /64 per device, it may be sufficient to intercept traffic from the /64 rather than specific /128's (since each time the device powers up it gets a new IID). This is not entirely true anymore.. since Release-10 (don't hold your breath when it gets deployed) a device may be delegated a shorter prefix than /64. Also a cellular device may open multiple PDP Context/PDN Connections thus a device may have multiple prefixes, not just one /64. Second, the IID assertion is not correct either. A 3GPP device may use as many IIDs during the lifetime of its PDP Context/PDN Connection as it wishes for its non link-local addresses. Also, depending on the GGSN/PGW implementation, the IID may never change for link-local addresses and can be the same for all devices connected to it (some cellular hosts use that IID also for their non link-local addresses). - Jouni _______________________________________________ OPSEC mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsec
