[ipv6hackers] Dynamic prefixes & privacy (was: IPv6 prefix changing)

Gert Doering gert at space.net
Fri Mar 16 14:15:05 CET 2012


On Fri, Mar 16, 2012 at 12:48:42PM +0100, Markus Reschke wrote:
> Maybe, but it's technically not feasable to randomize prefixes for a whole 
> ISP network. It would kill the IGP. You could do it for a small user base. 
> Each user would cause a dynamic route. At some point the amount of 
> dynamic routes is too large to handle and the routing will brake down.

You don't really need to fully randomize that.  Just knowing that the
prefix is not attached to a fixed user will de-value its usefulness
as a tracking help enormously.

Yes, it will tell someone "which country, which ISP, which region", but
not specifically "this household"  (prefixes never identify "this user",
at most "this machine" or "this network behind a single CPE").

No point in making a big fuzz about it - if end users think they need that,
well, "just giving out prefixes from a pool" is much easier to provision
than "make sure it's always the same prefix, even if you have to restructure
your network, split a full DSLAM into two, etc., and all of a sudden you
can't aggregate the pool anymore"...

Gert Doering
        -- NetMaster
have you enabled IPv6 on something today...?

SpaceNet AG                        Vorstand: Sebastian v. Bomhard
Joseph-Dollinger-Bogen 14          Aufsichtsratsvors.: A. Grundner-Culemann
D-80807 Muenchen                   HRB: 136055 (AG Muenchen)
Tel: +49 (89) 32356-444            USt-IdNr.: DE813185279

More information about the Ipv6hackers mailing list