Security on IPv6 碩研資管一甲 蔡尚昆

advertisement
Security on IPv6
This paper appears in:
Advanced Computer Control
(ICACC),
Issue Date : 27-29 March
2010
Volume : 3
On page(s): 323
Print ISBN: 978-1-42445845-5
INSPEC Accession Number:
11502112
Digital Object Identifier :
10.1109/ICACC.2010.5486848
Date of Current Version : 17
六月 2010
碩研資管一甲
蔡尚昆
M9990208
Abstract
• Discusses the current security
measures available for the IPv4
infrastructure.
• Common security mechanisms
including some kinds of attack and
IPsec.
Introduction
• The current version of IPv4 does not
use IPsec by compulsion, so there are
some kinds of attack on IPv4.
• IPv6 succeeds, it possesses some new
features: 128 bit address field,
highly effective IP header, Qos,
encryption and authentication, and
mobility.
The three types of network
attacks
• Eavesdropping
• Tamper & Forge Attack
• Denial of Service Attack
The three types of network
attacks - Eavesdropping
• In Ipv4, network communication is
sometimes transmitting without
encryption.
The three types of network
attacks - Eavesdropping
The three types of network
attacks - Tamper & Forge Attack
• Attacker may use special program to
manufacture IP packet, make the
packet seemingly from valid address
inside the web.
• After acquiring access authorization
by valid IP address, attacker can
modify, reroute, and delete data.
The three types of network
attacks - Tamper & Forge Attack
The three types of network
attacks - Denial of Service Attack
• Attacker may use one or some of the
following methods: flooding packets
until a computer or the whole
network cease operating; preventing
legitimate network traffic, which will
cause lost of network resource.
The three types of network
attacks - Denial of Service Attack
Security Measures of IPsec
Against Above Attacks
• IPsec provides three different forms
to protect private data transited
through public and private network:
Authentication, Integrity test,
Confidential.
Threat In IPv6 Network
• Password Attack
• Secret Key Attack
• Application Layer Attack
Threat In IPv6 Network Password Attack
Threat In IPv6 Network Secret Key Attack
Threat In IPv6 Network Application Layer Attack
Principle Of Attacks In IPv6
• Acquire host password in WAN,
intrude the hos.
• Distributed Denial of Service (DDos)
attacks.
Conclusions
• IPv6 is the new version of the
Internet protocol.
• IPsec in IPv6 improve the security in
network.
• IPv6 will also bring some new
problems of security. We must use
some others measures to ensure the
security in IPv6.
End
Thank you for listening.
Download