[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Advantages and disadvantages of using CB64 type of identifiers
- To: Multi6 List <multi6@ops.ietf.org>
- Subject: Advantages and disadvantages of using CB64 type of identifiers
- From: marcelo bagnulo braun <mbagnulo@ing.uc3m.es>
- Date: Thu, 1 Jul 2004 12:25:01 +0200
Erik wrote:
So we need to add that to the list of things to trade off.
i have tried to compile the advantages and disadvantages of cb64 type
of ids
Advantages and disadvantages of using CB64 type of identifiers
Advantages:
- The AID is a routable address, so apps can handle them without
modification
- referrals and call backs
- long lived sessions can recover when the state is lost in the
multi6 layer
- It is possible to use the reverse DNS to discover alternative locators
- they are crypto in nature, so "strong" authentication is achieved
Disadvantages
- fixed 64 bit iid/prefix boundary
- in particular the lower 64 bits cannot be used for subneting
- are 64 bits long enough defense against future hash collision attacks?
- an attacker creates a public key with the same hash of the iid of
the target
- source locator rewriting by edge routers is precluded
- changes in the prefix implies changes in the identifiers
- so when the mh site changes isps it will need
to renumber both its locators and its identifiers
- in order to be able to use the reverse dns to discover the full set
of locators, the reverse dns tree has to be fully populated, which may
be challenging in as hoc environments.
any others?
regards, marcelo