On the Generation of Transient Numeric Identifiers
draft-irtf-pearg-numeric-ids-generation-07

Document Type Expired Internet-Draft (pearg RG)
Authors Fernando Gont  , Ivan Arce 
Last updated 2021-08-06 (latest revision 2021-02-02)
Replaces draft-gont-predictable-protocol-ids, draft-gont-numeric-ids-generation
Stream Internet Research Task Force (IRTF)
Intended RFC status Informational
Formats
Expired & archived
pdf htmlized bibtex
Reviews
Stream IRTF state IRSG Review
Revised I-D Needed
Consensus Boilerplate Yes
Document shepherd Shivan Sahib
Shepherd write-up Show (last changed 2021-02-09)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to Shivan Sahib <shivankaulsahib@gmail.com>

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-irtf-pearg-numeric-ids-generation-07.txt

Abstract

This document performs an analysis of the security and privacy implications of different types of "transient numeric identifiers" used in IETF protocols, and tries to categorize them based on their interoperability requirements and their associated failure severity when such requirements are not met. Subsequently, it provides advice on possible algorithms that could be employed to satisfy the interoperability requirements of each identifier category, while minimizing the negative security and privacy implications, thus providing guidance to protocol designers and protocol implementers. Finally, it describes a number of algorithms that have been employed in real implementations to generate transient numeric identifiers, and analyzes their security and privacy properties. This document is a product of the Privacy Enhancement and Assessment Research Group (PEARG) in the IRTF.

Authors

Fernando Gont (fgont@si6networks.com)
Ivan Arce (iarce@quarkslab.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)