Diff: rfc9724v6.txt - rfc9724.txt

	rfc9724v6.txt	rfc9724.txt

	Internet Engineering Task Force (IETF) JC. Zúñiga	Internet Engineering Task Force (IETF) JC. Zúñiga
	Request for Comments: 9724 Cisco	Request for Comments: 9724 Cisco
	Category: Informational CJ. Bernardos, Ed.	Category: Informational CJ. Bernardos, Ed.
	ISSN: 2070-1721 UC3M	ISSN: 2070-1721 UC3M
	A. Andersdotter	A. Andersdotter
	Safespring AB	Safespring AB

	January 2025	March 2025

	State of Affairs for Randomized and Changing Media Access Control (MAC)	State of Affairs for Randomized and Changing Media Access Control (MAC)
	Addresses	Addresses

	Abstract	Abstract

	Internet users are becoming more aware that their activity over the	Internet users are becoming more aware that their activity over the
	Internet leaves a vast digital footprint, that communications might	Internet leaves a vast digital footprint, that communications might
	not always be properly secured, and that their location and actions	not always be properly secured, and that their location and actions
	can be tracked. One of the main factors that eases tracking of	can be tracked. One of the main factors that eases tracking of

	skipping to change at line 287 ¶	skipping to change at line 287 ¶
	Therefore, follow-on work in the IEEE 802.11 mapped effects of a	Therefore, follow-on work in the IEEE 802.11 mapped effects of a
	potentially large uptake of randomized MAC identifiers on a number of	potentially large uptake of randomized MAC identifiers on a number of
	commonly offered operator services in 2019 [rcm_tig_final_report].	commonly offered operator services in 2019 [rcm_tig_final_report].
	In the summer of 2020, this work emanated in two new standards	In the summer of 2020, this work emanated in two new standards
	projects. The purpose of these projects was to develop mechanisms	projects. The purpose of these projects was to develop mechanisms
	that do not decrease user privacy but enable an optimal user	that do not decrease user privacy but enable an optimal user
	experience when (1) the MAC address of a device in an Extended	experience when (1) the MAC address of a device in an Extended
	Service Set (a group of interconnected IEEE 802.11 wireless access	Service Set (a group of interconnected IEEE 802.11 wireless access
	points and stations that form a single logical network) is randomized	points and stations that form a single logical network) is randomized
	or changes [rcm_user_experience_par] and (2) user privacy solutions	or changes [rcm_user_experience_par] and (2) user privacy solutions

	descibed in IEEE Std 802.11 [rcm_privacy_par] apply.	described in IEEE Std 802.11 [rcm_privacy_par] apply.

	IEEE Std 802 [IEEE_802], as of the amendment IEEE 802c-2017	IEEE Std 802 [IEEE_802], as of the amendment IEEE 802c-2017
	[IEEE_802c], specifies a local MAC address space structure known as	[IEEE_802c], specifies a local MAC address space structure known as
	the Structured Local Address Plan (SLAP) [RFC8948]. The SLAP	the Structured Local Address Plan (SLAP) [RFC8948]. The SLAP
	designates a range of Extended Local Identifiers for subassignment	designates a range of Extended Local Identifiers for subassignment
	within a block of addresses assigned by the IEEE Registration	within a block of addresses assigned by the IEEE Registration
	Authority via a Company ID. A range of local MAC addresses is	Authority via a Company ID. A range of local MAC addresses is
	designated for Standard Assigned Identifiers to be specified by IEEE	designated for Standard Assigned Identifiers to be specified by IEEE
	802 standards. Another range of local MAC addresses is designated	802 standards. Another range of local MAC addresses is designated
	for Administratively Assigned Identifiers, which are subject to	for Administratively Assigned Identifiers, which are subject to

	skipping to change at line 311 ¶	skipping to change at line 311 ¶
	Considerations for IEEE 802(R) Technologies") [IEEE_802E] recommends	Considerations for IEEE 802(R) Technologies") [IEEE_802E] recommends
	the use of temporary and transient identifiers if there are no	the use of temporary and transient identifiers if there are no
	compelling reasons for a newly introduced identifier to be permanent.	compelling reasons for a newly introduced identifier to be permanent.
	This recommendation is part of the basis for the review of user	This recommendation is part of the basis for the review of user
	privacy solutions for IEEE Std 802.11 devices (also known as Wi-Fi	privacy solutions for IEEE Std 802.11 devices (also known as Wi-Fi
	devices) as part of the RCM efforts [rcm_privacy_csd]. Annex I of	devices) as part of the RCM efforts [rcm_privacy_csd]. Annex I of
	IEEE Std 802.1AEdk-2023 ("MAC Privacy Protection") [IEEE_802.1AEdk]	IEEE Std 802.1AEdk-2023 ("MAC Privacy Protection") [IEEE_802.1AEdk]
	discusses privacy considerations in bridged networks.	discusses privacy considerations in bridged networks.

	As of 2024, two task groups in IEEE 802.11 are dealing with issues	As of 2024, two task groups in IEEE 802.11 are dealing with issues

	related to RCM addresses:	related to RCM:

	* The IEEE 802.11bh task group, which is looking at mitigating the	* The IEEE 802.11bh task group, which is looking at mitigating the

	repercussions that RCM addresses create on 802.11 networks and	repercussions that RCM creates on 802.11 networks and related
	related services.	services.

	* The IEEE 802.11bi task group, which is chartered to define	* The IEEE 802.11bi task group, which is chartered to define
	modifications to the IEEE Std 802.11 MAC specification	modifications to the IEEE Std 802.11 MAC specification
	[IEEE_802.11] to specify new mechanisms that address and improve	[IEEE_802.11] to specify new mechanisms that address and improve
	user privacy.	user privacy.

	4. Recent Activities Related to MAC Address Randomization in the WBA	4. Recent Activities Related to MAC Address Randomization in the WBA

	In the Wireless Broadband Alliance (WBA), the Testing and	In the Wireless Broadband Alliance (WBA), the Testing and
	Interoperability Work Group has been looking at issues related to MAC	Interoperability Work Group has been looking at issues related to MAC

	skipping to change at line 687 ¶	skipping to change at line 687 ¶
	IEEE, "IEEE Standard for Information technology--	IEEE, "IEEE Standard for Information technology--
	Telecommunications and information exchange between	Telecommunications and information exchange between
	systems Local and metropolitan area network--Specific	systems Local and metropolitan area network--Specific
	requirements Part 11: Wireless LAN Medium Access Control	requirements Part 11: Wireless LAN Medium Access Control
	(MAC) and Physical Layer (PHY) Specifications Amendment 5:	(MAC) and Physical Layer (PHY) Specifications Amendment 5:
	Preassociation Discovery", IEEE Std 802.11aq-2018,	Preassociation Discovery", IEEE Std 802.11aq-2018,
	DOI 10.1109/IEEESTD.2018.8457463, August 2018,	DOI 10.1109/IEEESTD.2018.8457463, August 2018,
	<https://doi.org/10.1109/IEEESTD.2018.8457463>.	<https://doi.org/10.1109/IEEESTD.2018.8457463>.

	[IEEE_802.15.4]	[IEEE_802.15.4]

	IEEE, "IEEE Standard for Low‐Rate Wireless Networks", IEEE	IEEE, "IEEE Standard for Low-Rate Wireless Networks", IEEE
	Std 802.15.4-2024, DOI 10.1109/IEEESTD.2024.10794632,	Std 802.15.4-2024, DOI 10.1109/IEEESTD.2024.10794632,
	December 2024,	December 2024,
	<https://doi.org/10.1109/IEEESTD.2024.10794632>.	<https://doi.org/10.1109/IEEESTD.2024.10794632>.

	[IEEE_802.1AB]	[IEEE_802.1AB]
	IEEE, "IEEE Standard for Local and metropolitan area	IEEE, "IEEE Standard for Local and metropolitan area
	networks - Station and Media Access Control Connectivity	networks - Station and Media Access Control Connectivity
	Discovery", IEEE Std 802.1AB-2016,	Discovery", IEEE Std 802.1AB-2016,
	DOI 10.1109/IEEESTD.2016.7433915, March 2016,	DOI 10.1109/IEEESTD.2016.7433915, March 2016,
	<https://doi.org/10.1109/IEEESTD.2016.7433915>.	<https://doi.org/10.1109/IEEESTD.2016.7433915>.

	skipping to change at line 858 ¶	skipping to change at line 858 ¶
	Autoconfiguration in IPv6", RFC 8981,	Autoconfiguration in IPv6", RFC 8981,
	DOI 10.17487/RFC8981, February 2021,	DOI 10.17487/RFC8981, February 2021,
	<https://www.rfc-editor.org/info/rfc8981>.	<https://www.rfc-editor.org/info/rfc8981>.

	[strint] W3C/IAB, "STRINT Workshop: A W3C/IAB workshop on	[strint] W3C/IAB, "STRINT Workshop: A W3C/IAB workshop on
	Strengthening the Internet Against Pervasive Monitoring	Strengthening the Internet Against Pervasive Monitoring
	(STRINT)", <https://www.w3.org/2014/strint/>.	(STRINT)", <https://www.w3.org/2014/strint/>.

	[wba_paper]	[wba_paper]
	Wireless Broadband Alliance, "Wi-Fi Device Identification	Wireless Broadband Alliance, "Wi-Fi Device Identification

	– A Way Through MAC Randomization", WBA White Paper, July	- A Way Through MAC Randomization", WBA White Paper, July
	2022, <https://wballiance.com/resource/wi-fi-device-	2022, <https://wballiance.com/resource/wi-fi-device-
	identification-a-way-through-mac-randomization/>.	identification-a-way-through-mac-randomization/>.

	[when_mac_randomization_fails]	[when_mac_randomization_fails]
	Martin, J., Mayberry, T., Donahue, C., Foppe, L., Brown,	Martin, J., Mayberry, T., Donahue, C., Foppe, L., Brown,
	L., Riggins, C., Rye, E., and D. Brown, "A Study of MAC	L., Riggins, C., Rye, E., and D. Brown, "A Study of MAC
	Address Randomization in Mobile Devices and When it	Address Randomization in Mobile Devices and When it
	Fails", arXiv:1703.02874v2, DOI 10.48550/arXiv.1703.02874,	Fails", arXiv:1703.02874v2, DOI 10.48550/arXiv.1703.02874,
	March 2017, <https://doi.org/10.48550/arXiv.1703.02874>.	March 2017, <https://doi.org/10.48550/arXiv.1703.02874>.


End of changes. 6 change blocks.
	7 lines changed or deleted	7 lines changed or added
This html diff was produced by rfcdiff 1.48.