Determining the State of Security in the IPv6 Internet

Networks are transitioning from IP version 4 to the new version 6. Fundamental differences in the protocols introduce new security challenges with varying levels of evidence. As enabling IPv6 in an existing network is often already challenging on the functional level, security aspects are overlooked, even those that are emphasized in literature. Assuming the security solutions we know from IPv4 networks are applicable and suffice is unproven and ignorant, possibly leaving IPv6 networks vulnerable to unseen threats. By performing distributed network measurements in production networks, based on both honeypot and attack tool analysis, we determine the current state of security in the IPv6 domain. With the inevitable switch to the new protocol version, assessing the applicability of existing security approaches and determining the requirements for new solutions becomes a necessity.


Part of session

Lightning Talks

Related documents