On the Generation of Transient Numeric Identifiers
RFC 9415, “On the Generation of Transient Numeric Identifiers”, is an Informational document published in July 2023 by F. Gont, I. Arce. The canonical text is published by the RFC Editor.
Abstract
This document performs an analysis of the security and privacy implications of different types of "transient numeric identifiers" used in IETF protocols and tries to categorize them based on their interoperability requirements and their associated failure severity when such requirements are not met. Subsequently, it provides advice on possible algorithms that could be employed to satisfy the interoperability requirements of each identifier category while minimizing the negative security and privacy implications, thus providing guidance to protocol designers and protocol implementers. Finally, it describes a number of algorithms that have been employed in real implementations to generate transient numeric identifiers and analyzes their security and privacy properties. This document is a product of the Privacy Enhancements and Assessments Research Group (PEARG) in the IRTF.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 9415 is hosted at rfc-editor.org. Available in HTML,TXT,PDF,XML.
- RFC 9414 Unfortunate History of Transient Numeric Identifiers
- RFC 9416 Security Considerations for Transient Numeric Identifiers Employed in Network Protocols
- RFC 9413 Maintaining Robust Protocols
- RFC 9417 Service Assurance for Intent-Based Networking Architecture
- RFC 9412 The ORIGIN Extension in HTTP/3
- RFC 9418 A YANG Data Model for Service Assurance
- RFC 9411 Benchmarking Methodology for Network Security Device Performance
- RFC 9419 Considerations on Application - Network Collaboration Using Path Signals