60 likes | 152 Views
802.11 Privacy & HEW. Date: 2014-01-22. Authors:. The Need for More 802.11 Privacy (1). Current 802.11 specification has “traceability by design” feature. Well-documented case: London trash cans with built-in MAC address tracking software [now discontinued after public backlash]
E N D
802.11 Privacy & HEW Date: 2014-01-22 Authors: Rene Struik (Struik Security Consultancy)
The Need for More 802.11 Privacy (1) • Current 802.11 specification has “traceability by design” feature. • Well-documented case: London trash cans with built-in MAC address tracking software [now discontinued after public backlash] • Pressure to consider measures against pervasive monitoring, e.g., due “recently • publicized events”. • Measures against pervasive monitoring under consideration by many (IETF, ISP, etc.) • Measure less effective if 802.11 (primary mechanism for wireless internet access) • uses static addresses at MAC level, since this allows “traceability-by-design” • Countermeasures: • Consider use of ephemeral addresses in MPDUs, rather than using static addresses. • Implement further privacy-enhancing measures (reduce meta-data sent with MPDUs) • Earlier discussions: 13/1448r1 (Nov’13), 02/109r1 (July 2002) Rene Struik (Struik Security Consultancy)
The Need for More 802.11 Privacy (2) • Current 802.11 specification has “traceability by design” feature. • Why consider with HEW? • Devices more and more portable/mobile, not just in limited geographic area • Need to improve user experience • 802.11 considered as de facto ubiquitous mechanism for internet access and • device-device communications (implemented with smart phones, tablets, laptop, • entertainment devices, smart grid) • So, need to cater for privacy concern in all deployment verticals, now and in future Rene Struik (Struik Security Consultancy)
Proposed PAR & 5C (13/410r6) 5.2.b Scope of the Project: This amendment defines standardized modifications to both the 802.11 physical layers (PHY) and the 802.11 Medium Access Control Layer (MAC) that enable modes of operation capable of supporting at least two (2) times improvement in the average throughput per station (measured at the MAC data service access point) in dense indoor and outdoor deployment scenarios, while maintaining or improving the power efficiency per station. The new amendment defines operations in frequency bands between 1 GHz and 6 GHz. The new amendment shall enable backward compatibility and coexistence with legacy IEEE 802.11 devices operating in the same band. Rene Struik (Struik Security Consultancy)
Suggested Change to PAR & 5C (13/410r6) 5.2.b Scope of the Project: This amendment defines standardized modifications to both the 802.11 physical layers (PHY) and the 802.11 Medium Access Control Layer (MAC) that enable modes of operation capable of supporting at least two (2) times improvement in the average throughput per station (measured at the MAC data service access point) in dense indoor and outdoor deployment scenarios, while maintaining or improving the power efficiency per station. The new amendment defines operations in frequency bands between 1 GHz and 6 GHz. The new amendment shall enable backward compatibility and coexistence with legacy IEEE 802.11 devices operating in the same band. This amendment may include modifications to the 802.11 MAC that facilitate more privacy-friendly and more secure operation, without affecting backward compatibility and co-existence with legacy devices Rene Struik (Struik Security Consultancy)
Strawpoll Explicitly consider privacy provisions, as highlighted in red on previous page in Scope of Project Include: This amendment may include modifications to the 802.11 MAC that facilitate more privacy-friendly and more secure operation, without affecting backward compatibility and co-existence with legacy devices Rene Struik (Struik Security Consultancy)