Implementing an IPv6 Moving Target Defense on a Live Network

Dunlop, Matthew; Groat, Stephen; Marchany, Randolph C.; Tront, Joseph G.

Implementing an IPv6 Moving Target Defense on a Live Network

dc.contributor.author	Dunlop, Matthew	en
dc.contributor.author	Groat, Stephen	en
dc.contributor.author	Marchany, Randolph C.	en
dc.contributor.author	Tront, Joseph G.	en
dc.contributor.department	Electrical and Computer Engineering	en
dc.date.accessioned	2018-07-19T16:54:22Z	en
dc.date.available	2018-07-19T16:54:22Z	en
dc.date.issued	2012	en
dc.description.abstract	The goal of our research is to protect sensitive communications, which are commonly used by government agencies, from eavesdroppers or social engineers. In prior work, we investigated the privacy implications of stateless and stateful address autoconguration in the Internet Protocol version 6 (IPv6). Autocongured addresses, the default addressing system in IPv6, provide a third party a means to track and monitor targeted users globally using simple tools such as ping and traceroute. Dynamic Host Conguration Protocol for IPv6 (DHCPv6) addresses contain a static DHCP Unique Identier (DUID) that can be used to track and tie a stateless address to a host identity. Our research focuses on preventing the issue of IPv6 address tracking as well as creating a "moving target defense." The Moving Target IPv6 Defense (MT6D) dynamically hides network and transport layer addresses of packets in IPv6 to achieve anonymity and protect against certain classes of network attacks. Packets are encrypted to prevent trac correlation, which provides signicantly improved anonymity. MT6D has numerous applications ranging from hosts desiring to keep their locations private to hosts conducting sensitive communications. This paper explores the results of implementing a proof of concept MT6D prototype on a live IPv6 network.	en
dc.format.mimetype	application/pdf	en
dc.identifier.uri	http://hdl.handle.net/10919/84190	en
dc.language.iso	en	en
dc.publisher	Cyber-Physical Systems Virtual Organization	en
dc.relation.ispartof	Moving Target Research Symposium 2012	en
dc.rights	In Copyright	en
dc.rights.uri	http://rightsstatements.org/vocab/InC/1.0/	en
dc.title	Implementing an IPv6 Moving Target Defense on a Live Network	en
dc.type	Conference proceeding	en
dc.type	Presentation	en
dc.type.dcmitype	Text	en

Files

Original bundle

Now showing 1 - 1 of 1

Name:: DunlopIPV62012.pdf
Size:: 557.92 KB
Format:: Adobe Portable Document Format
Description:

Download

Collections

Scholarly Works, Electrical and Computer Engineering
Destination Area: Integrated Security (IS)