Securing the Neighbour Discovery Protocol in IPv6 State-ful Address Auto-configuration

被引：4

作者：

Ahmed, Nadeem ^{[1
]}

Sadiq, Adeel ^{[1
]}

Farooq, Anum ^{[1
]}

Akram, Rabia ^{[1
]}

机构：

[1] Natl Univ Sci & Technol NUST, SEECS, Islamabad, Pakistan

来源：

2017 16TH IEEE INTERNATIONAL CONFERENCE ON TRUST, SECURITY AND PRIVACY IN COMPUTING AND COMMUNICATIONS / 11TH IEEE INTERNATIONAL CONFERENCE ON BIG DATA SCIENCE AND ENGINEERING / 14TH IEEE INTERNATIONAL CONFERENCE ON EMBEDDED SOFTWARE AND SYSTEMS | 2017年

关键词：

D O I：

10.1109/Trustcom/BigDataSE/ICESS.2017.225

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This research is focussed on the security threats in the Neighbour Discovery Protocol that is an integral part of the IPv6 Stateful Address Auto-configuration. Neighbour Unreachability Detection is one of the Neighbour Discovery Protocol processes that can be subject to security issues due to lack of built-in authentication mechanism. We show that it is trivial for an attacker node to manipulate the neighbour unreachability message exchanges to poison the cache entries of other nodes for malicious purposes. This makes the network vulnerable to different types of attacks. We propose a distributed and lightweight authentication process that effectively prevents the common cache poisoning issues in an efficient manner.

引用

页码：96 / 103

页数：8

共 16 条

[1]

Alsa'deh A., 2012, IEEE SECURITY PRIVAC, V10

[2]

[Anonymous], 2013, NETW SCI, DOI DOI 10.1007/S13119-013-0018-2

[3]

[Anonymous], 2013, 2013 ANN IEEE IND C

[4]

[Anonymous], 2007, 4862 RFC IETF

[5]

[Anonymous], 3971 RFC IETF

[6]

[Anonymous], 2003, 3315 RFC

[7]

Barbhuiya F.A., 2011, Proceedings of the 4th international conference on Security of information and networks - SIN'11, p, P111

[8]

Brzozowski J., 2007, 5007 RFC IETF

[9]

Gashinsky I., 2012, 6583 RFC IETF

[10]

Hagen Silvia, 2014, ICMPV6

← 1 2 →