Title :
Experiments and Countermeasures of Security Vulnerabilities on Next Generation Network
Author :
Kim, Jeong-Wook ; Cho, Hyug-Hyun ; Mun, Gil-Jong ; Seo, Jae-Hyun ; Noh, Bong-Nam ; Kim, Yong-Min
Author_Institution :
Chonnam Nat. Univ., Gwangju
Abstract :
IPv6 is the next generation protocol designed by the IETF to replace the current version Internet protocol, IPv4. It is difficult to translate immediately from IPv4 to IPv6 because of financial and technical problems. So mixed IPv4/IPv6 network is expected to be formed. IPv6 is more secure than IPv4, but IPv6 still has many security vulnerabilities that are not only the same on IPv4 but also the new. This paper describes the security vulnerabilities on IPv6 and IPv4/IPv6 network that are difference and new features in comparison to IPv4, and some possible solutions for security vulnerabilities on IPv6 and mixed IPv4/IPv6 network. Finally, this paper describes the scenarios of security vulnerabilities about the routing header and fragment header of IPv6, and source spoofing on DSTM, also the result of the experiments that are firewall evasion, DoS on native IPv6 network and DoS on DSTM.
Keywords :
Internet; authorisation; routing protocols; telecommunication security; transport protocols; DSTM; DoS attack; Internet protocol; firewall evasion; fragment header; mixed IPv4-IPv6 network; next generation network protocol; routing header; security vulnerabilities; Next generation networking;
Conference_Titel :
Future Generation Communication and Networking (FGCN 2007)
Conference_Location :
Jeju
Print_ISBN :
0-7695-3048-6
DOI :
10.1109/FGCN.2007.122
