Safer Six - IPv6 Security in a Nutshell

Presented at DeepSec 2014 „Do you want to know more?“, Unknown date/time (Unknown duration).

The history of computers is full of underestimation: 640 kilobyte, 2-digit years, and 32-bit Internet addresses. IPv6 was invented to overcome the latter as well as to revise other drawbacks and security vulnerabilities of its predecessor IPv4. Initially considered the savior in terms of security because of its mandatory IPsec support, it turned out not to be the panacea it was thought to be. Outsourcing security to IPsec but eventually removing it as well as other design decisions led to a number of vulnerabilities. They range from the already known spoofing of answers to link-layer address requests to novel possibilities regarding node tracking. In an effort to fix them, a vast amount of updates have been introduced. This talks discusses security and privacy vulnerabilities with regard to IPv6 and their current countermeasures. Further, we focus on three remaining challenges for IPv6 security, namely address assignment and structure, securing local network discovery, and address selection for reconnaissance.


Presenters:

  • Johanna Ullrich - SBA Research
    I received a BSc in electrical engineering and information technology in 2010, and an MSc degree in automation engineering in 2013, both from Vienna University of Technology. My diploma thesis has already focused on IPv6 compression in power line communication. At this time, I gained various merits for outstanding academic achievements. Currently, I am pursuing my Ph.D. at Vienna UT. Further, I am working for the research center for IT security SBA Research and teach students of different ages. My main research interests include network security, security in clouds, cyber-physical system security and any combination thereof.

Links:

Similar Presentations: