Temporary Address Extensions for Stateless Address Autoconfiguration in IPv6

This document describes an extension that causes nodes to generate global scope addresses with randomized interface identifiers that change over time. Changing global scope addresses over time limits the window of time during which eavesdroppers and other information collectors may trivially perform address-based network activity correlation when the same address is employed for multiple transactions by the same node. Additionally, it reduces the window of exposure of a node via an addresses that becomes revealed as a result of active communication. This document obsoletes RFC4941.

[1]  Hugo Krawczyk,et al.  HMAC: Keyed-Hashing for Message Authentication , 1997, RFC.

[2]  Brian Haberman,et al.  Updates to the Special-Purpose IP Address Registries , 2017, RFC.

[3]  Thomas Narten,et al.  Neighbor Discovery for IP Version 6 (IPv6) , 1996, RFC.

[4]  Brian E. Carpenter,et al.  Significance of IPv6 Interface Identifiers , 2014, RFC.

[5]  Erik Nordmark,et al.  Ipv6 Socket Api for Source Address Selection , 2007 .

[6]  Stuart Cheshire,et al.  Host Address Availability Recommendations , 2016, RFC.

[7]  Paul F. Syverson,et al.  Proxies for anonymous routing , 1996, Proceedings 12th Annual Computer Security Applications Conference.

[8]  David Thaler,et al.  Internet Engineering Task Force (ietf) Default Address Selection for Internet Protocol Version 6 (ipv6) , 2022 .

[9]  Edgar R. Weippl,et al.  Privacy is Not an Option: Attacking the IPv6 Privacy Extension , 2015, RAID.

[10]  Marcelo Bagnulo,et al.  Source Address Validation Improvement (SAVI) Framework , 2013, RFC.

[11]  Warren Kumari,et al.  Multicast Considerations over IEEE 802 Wireless Media , 2019, RFC.

[12]  Stephen Farrell,et al.  Pervasive Monitoring Is an Attack , 2014, RFC.

[13]  Thomas Narten,et al.  Privacy Extensions for Stateless Address Autoconfiguration in IPv6 , 2001, RFC.

[14]  Suresh Krishnan,et al.  Simple Procedures for Detecting Network Attachment in IPv6 , 2010, RFC.

[15]  Thomas Narten,et al.  IPv6 Stateless Address Autoconfiguration , 1996, RFC.

[16]  Fernando Gont A Method for Generating Semantically Opaque Interface Identifiers with IPv6 Stateless Address Autoconfiguration (SLAAC) , 2014, RFC.

[17]  Barry Leiba,et al.  Ambiguity of Uppercase vs Lowercase in RFC 2119 Key Words , 2017, RFC.

[18]  Brian E. Carpenter,et al.  Analysis of the 64-bit Boundary in IPv6 Addressing , 2015, RFC.

[19]  Lily Chen,et al.  Internet Engineering Task Force (ietf) Updated Security Considerations for the Md5 Message-digest and the Hmac-md5 Algorithms , 2011 .

[20]  Suresh Krishnan,et al.  Reserved IPv6 Interface Identifiers , 2009, RFC.

[21]  David Thaler,et al.  Security and Privacy Considerations for IPv6 Address Generation Mechanisms , 2016, RFC.

[22]  Ronald L. Rivest,et al.  The MD5 Message-Digest Algorithm , 1992, RFC.