Security on IPv6 This paper appears in: Advanced Computer Control (ICACC), Issue Date : 27-29 March 2010 Volume : 3 On page(s): 323 Print ISBN: 978-1-42445845-5 INSPEC Accession Number: 11502112 Digital Object Identifier : 10.1109/ICACC.2010.5486848 Date of Current Version : 17 六月 2010 碩研資管一甲 蔡尚昆 M9990208 Abstract • Discusses the current security measures available for the IPv4 infrastructure. • Common security mechanisms including some kinds of attack and IPsec. Introduction • The current version of IPv4 does not use IPsec by compulsion, so there are some kinds of attack on IPv4. • IPv6 succeeds, it possesses some new features: 128 bit address field, highly effective IP header, Qos, encryption and authentication, and mobility. The three types of network attacks • Eavesdropping • Tamper & Forge Attack • Denial of Service Attack The three types of network attacks - Eavesdropping • In Ipv4, network communication is sometimes transmitting without encryption. The three types of network attacks - Eavesdropping The three types of network attacks - Tamper & Forge Attack • Attacker may use special program to manufacture IP packet, make the packet seemingly from valid address inside the web. • After acquiring access authorization by valid IP address, attacker can modify, reroute, and delete data. The three types of network attacks - Tamper & Forge Attack The three types of network attacks - Denial of Service Attack • Attacker may use one or some of the following methods: flooding packets until a computer or the whole network cease operating; preventing legitimate network traffic, which will cause lost of network resource. The three types of network attacks - Denial of Service Attack Security Measures of IPsec Against Above Attacks • IPsec provides three different forms to protect private data transited through public and private network: Authentication, Integrity test, Confidential. Threat In IPv6 Network • Password Attack • Secret Key Attack • Application Layer Attack Threat In IPv6 Network Password Attack Threat In IPv6 Network Secret Key Attack Threat In IPv6 Network Application Layer Attack Principle Of Attacks In IPv6 • Acquire host password in WAN, intrude the hos. • Distributed Denial of Service (DDos) attacks. Conclusions • IPv6 is the new version of the Internet protocol. • IPsec in IPv6 improve the security in network. • IPv6 will also bring some new problems of security. We must use some others measures to ensure the security in IPv6. End Thank you for listening.