Why IP Address Truncation Fails at Anonymization

Posted2 months agoActive2 months ago

pabs3

17 points

5 comments

00f.netTechstory

calmnegative

Debate

20/100

IP Address AnonymizationData PrivacyNetwork Security

Key topics

IP Address Anonymization

Data Privacy

Network Security

The article discusses why truncating IP addresses is not an effective method for anonymization, and the comments debate the implications and potential alternatives.

Snapshot generated from the HN discussion

Discussion Activity

Light discussion

First comment

36m

Peak period

0-1h

Avg / period

2.5

Key moments

01Story posted
Oct 28, 2025 at 3:38 AM EDT
2 months ago
Step 01
02First comment
Oct 28, 2025 at 4:14 AM EDT
36m after posting
Step 02
03Peak activity
4 comments in 0-1h
Hottest window of the conversation
Step 03
04Latest activity
Oct 28, 2025 at 4:38 AM EDT
2 months ago
Step 04

Generating AI Summary...

Analyzing up to 500 comments to identify key contributors and discussion patterns

Discussion (5 comments)

Showing 5 comments

invaliduser

2 months ago

The main issue with this article is that it claims to be about anonymization, but reject HMAC because it's not reversible, and promotes IPCrypt because it is. Except that if it's reversible, it's not anonymization, it's pseudonymization.

tiziano88

2 months ago

AI slop

FrostKiwi

2 months ago

> There’s just one problem: truncated IP addresses are still personal data under GDPR

Was as part of a security audited by [insert big Japanese telecom] where the exact opposite was stated.

I'm so happy doing implementation and not having to deal with compliance.

probably_wrong

2 months ago

I'm unconvinced of 3/4 arguments against HMAC. "You cannot reverse it" sounds like the actual goal we were trying to reach and, similarly, "too slow for such a small input" seems like a self-solving problem. Is it perhaps an AI-generated list of "reasons for not choosing HMAC"?

I get the author has a specific destination in mind (IPCrypt) and a goal that's not properly stated ("but what if I want to do network analysis on top of the data?"), but I'm that case I wish they had dedicated more time to those details. In particular: if addresses from the same subnetwork share a prefix, how does that preserve privacy? If all users from (say) Taiwan land under the same prefix, then I'm back to where I started.

alphabetag675

2 months ago

Such a long blog post about privacy failure due to correlation and no mention of things like https://en.wikipedia.org/wiki/K-anonymity

Disappointing.

View full discussion on Hacker News

ID: 45730073Type: storyLast synced: 11/20/2025, 2:33:22 PM

Want the full context?

Jump to the original sources

Read the primary article or dive into the live Hacker News thread when you're ready.

Open link View on HN