Title page for ETD etd-05012011-152249


Type of Document Master's Thesis
Author Groat, Stephen Lawrence
Author's Email Address sgroat@vt.edu
URN etd-05012011-152249
Title Privacy and Security in IPv6 Addressing
Degree Master of Science
Department Electrical and Computer Engineering
Advisory Committee
Advisor Name Title
Tront, Joseph G. Committee Chair
Marchany, Randolph C. Committee Member
Midkiff, Scott F. Committee Member
Keywords
  • Security
  • Network Addressing
  • Privacy
  • Pv6
Date of Defense 2011-04-21
Availability unrestricted
Abstract
Due to an exponentially larger address space than Internet Protocol version 4 (IPv4),

the Internet Protocol version 6 (IPv6) uses new methods to assign network addresses to

Internet nodes. StateLess Address Auto Configuration (SLAAC) creates an address using a

static value derived from the Media Access Control (MAC) address of a network interface as

host portion, or interface identifier (IID). The Dynamic Host Configuration Protocol version

6 (DHCPv6) uses a client-server model to manage network addresses, providing stateful

address configuration. While DHCPv6 can be configured to assign randomly distributed

addresses, the DHCP Unique Identifier (DUID) was designed to remain static for clients as

they move between different DHCPv6 subnets and networks. Both the IID and DUID are

static values which are publicly exposed, creating a privacy and security threat for users and

nodes.

The static IID and DUID allow attackers to violate unsuspecting IPv6 users’ privacy

and security with ease. These static identifiers make geographic tracking and network traffic

correlation over multiple sessions simple. Also, different classes of computer and network

attacks, such as system-specific attacks and Denial-of-Service (DoS) attacks, are easier to

successfully employ due to these identifiers. This research identifies and tests the validity

of the privacy and security threat of static IIDs and DUIDs. Solutions which mitigate or

eliminate the threat posed by static identifiers in IPv6 are identified.

Files
  Filename       Size       Approximate Download Time (Hours:Minutes:Seconds) 
 
 28.8 Modem   56K Modem   ISDN (64 Kb)   ISDN (128 Kb)   Higher-speed Access 
  Groat_SL_T_2011.pdf 945.04 Kb 00:04:22 00:02:15 00:01:58 00:00:59 00:00:05

Browse All Available ETDs by ( Author | Department )

dla home
etds imagebase journals news ereserve special collections
virgnia tech home contact dla university libraries

If you have questions or technical problems, please Contact DLA.