Abstract
The Internet Protocol Version 6 (IPv6) usage is booming up in recentyears due to the address scarcity of existing protocol. This protocol faces various security threats and is under research for few decades. Although IPsec is mandated for security over IPv6 end-to-end communication, it does not support link local communication. Link local security issues are considered to be important during autoconfiguration. The existing mechanism SeND used to provide security during autoconfiguration faces issues related to algorithmic complexity, router functionality implications, key generation etc. The paper proposes a privacy extension method for link local address generation by using the internal hardware states of the system, thus overcoming the existing issues. The prototype is implemented in a real time system and compared with SeND. The proposed method has proven to outperform the existing methods in terms of algorithmic strength and thereby reduce the complexity and time delay during implementation.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Thomson, S., Narten, T., Jinmei, T.: IPv6 Stateless Address Autoconfiguration. RFC 4862, Internet Engineering Task Force (September 2007)
Narten, T., Nordmark, E., Simpson, W., Soliman, H.: Neighbor Discovery for IPversion 6 (IPv6). RFC 4861, Internet Engineering Task Force (September 2007)
Nikander, P., Kempf, J., Nordmark, E.: IPv6 Neighbor Discovery (ND) Trust Models and Threats. RFC 3756 (Informational), Internet Engineering Task Force (May 2004)
Arkko, J.: Kempf, Ed., J., Zill, B., Nikander, P.: SEcure Neighbor Discovery (SEND).RFC 3971, Internet Engineering Task Force (March 2005)
Supriyanto, Hasbullah, I.H., Murugesan, R.K., Ramadass, S.: Survey of Internet Protocol Version 6 Link Local Communication Security Vulnerability and Mitigation Methods. IETE Technical Review 30 (2013)
Aura, T.: Cryptographically Generated Addresses (CGA). RFC 4982, Internet Engineering Task Force (July 2007)
AlSa’deh, A., Meinel, C.: Secure Neighbor Discovery: Review, Challenges, Perspectives, and Recommendations. IEEE Security & Privacy Magazine 10(4), 26–34 (2012)
Groat, S., Dunlop, M., Marchany, R., Tront, J.: The privacy implications of stateless IPv6 addressing. In: Proceedings of the Sixth Annual Workshop on Cyber Security and Information Intelligence Research, CSIIRW 2010, pp. 52:1–52:4. ACM, New York (2010)
Gelogo, Y.E., Caytiles, R.D., Park, B.: Threats and Security Analysis for Enhanced Secure Neighbor Discovery Protocol (SEND) of IPv6 NDP Security. International Journal of Control and Automation 4(4), 179–184 (2011)
Caicedo, C.E., Joshi, J.B.D., Tuladhar, S.R.: IPv6 Security Challenges. Computer 42(2), 36–42 (2009)
http://www.linux.org/ (accessed on January 2014)
Seznec, A., Sendrier, N.: HAVEGE: a user-level software heuristic for generating empirically strong random numbers. ACM Transaction on Modeling and Computer Simulations (TOMACS)Â 13(4) (October 2003)
Seznec, A., Sendrier, N.: HArdware Volatile Entropy Gathering and Expansion: generating unpredictable random numbers at user level, INRIA Research Report, RR-4592 (October 2002)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Reshmi, T.R., Manoharan, S.M., Murugan, K. (2014). Internal Hardware States Based Privacy Extension of IPv6 Addresses. In: Mauri, J.L., Thampi, S.M., Rawat, D.B., Jin, D. (eds) Security in Computing and Communications. SSCC 2014. Communications in Computer and Information Science, vol 467. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-662-44966-0_25
Download citation
DOI: https://doi.org/10.1007/978-3-662-44966-0_25
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-662-44965-3
Online ISBN: 978-3-662-44966-0
eBook Packages: Computer ScienceComputer Science (R0)