Návrh implementace a síťové bezpečnosti protokolu IPv6 v organizaci / Implementation and Security of IPv6 Protocol in the Company

Hensl, Jaroslav

January 2019

This Master's thesis is focused on the IPv6 protocol implementation in a business environment. The thesis theoretically describes parts of the protocol which are then used in a real environment with respect to maximal compatibility and security. The thesis deals with hardware components, router configuration on FreeBSD OS, and switch configuration with RouterOS. The thesis also proposes how to monitor the network.

Security issues in Address Autoconfiguration Protocols

Langer, André, Kühnert, Tom

20 April 2007

Dynamic address assignment is one of the most important features in wireless ad hoc networks if nodes should be enabled to join and to work in the network by automatically configuring all necessary settings. Different approaches have been developed throughout the last years to achieve this objective of Dynamic Address Autoconfiguration but research primarily focused on efficiency and correctness, less on security issues. Whereas Duplicate Address Detection has become reliable in commonplace scenarios, it is still relatively easy to suspend the whole network functionality in extraordinary situations within the boundaries of a Dynamic Address Configuration Protocol. In this paper, we therefore want to point out shortcomings and weaknesses in existing protocol solutions which address dynamic IP address assignment. We concentrate on a leader-based approach called ODACP and want to propose several solutions which improve the original protocol in such a way that it is safer against malicious host activities. Finally, we will demonstrate the improvements of our solution in a separate test scenario.

Ad hoc networks

Address Autoconfiguration

ODACP

malicious nodes

ddc:000

ddc:004

Computersicherheit

DoS-Attacke

Drahtloses lokales Netz

Dynamic Host Configuration Protocol

Konfiguration <Informatik>

Malware

Security issues in Address Autoconfiguration Protocols

Langer, André, Kühnert, Tom

20 April 2007

Dynamic address assignment is one of the most important features in wireless ad hoc networks if nodes should be enabled to join and to work in the network by automatically configuring all necessary settings. Different approaches have been developed throughout the last years to achieve this objective of Dynamic Address Autoconfiguration but research primarily focused on efficiency and correctness, less on security issues. Whereas Duplicate Address Detection has become reliable in commonplace scenarios, it is still relatively easy to suspend the whole network functionality in extraordinary situations within the boundaries of a Dynamic Address Configuration Protocol. In this paper, we therefore want to point out shortcomings and weaknesses in existing protocol solutions which address dynamic IP address assignment. We concentrate on a leader-based approach called ODACP and want to propose several solutions which improve the original protocol in such a way that it is safer against malicious host activities. Finally, we will demonstrate the improvements of our solution in a separate test scenario.

info:eu-repo/classification/ddc/000

ddc:000

info:eu-repo/classification/ddc/004

ddc:004

Computersicherheit

DoS-Attacke

Drahtloses lokales Netz

Dynamic Host Configuration Protocol

Konfiguration <Informatik>

Malware

Ad hoc networks

Address Autoconfiguration

ODACP

malicious nodes