Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security IPv4 vs. IPv6 Is there a difference? Greg Travis Indiana University

Published byJody King Modified over 9 years ago

Similar presentations

Presentation on theme: "Security IPv4 vs. IPv6 Is there a difference? Greg Travis Indiana University"— Presentation transcript:

1 Security IPv4 vs. IPv6 Is there a difference? Greg Travis Indiana University greg@iu.edu

2 In the beginning… The Internet was infinitesimally small, and no one could comprehend its role in the future of society Networks, as they grew, were built and run by benevolent lords The security concern of the time was simply a nuclear war

3 In the beginning… Security was the concern of the government Cryptography was within the realm of dark projects “Secure” communications were defined by the NSA

4 The IETF said “let there be Autonomous Systems and routing protocols” and Internet grew and grew The NSF said “let there be commercialization” and the Internet grew and grew and grew Cisco said “let there be e-commerce” and Cisco grew and grew

5 In 1993 the IETF said “the sky is falling” Current state-of-the-art routers couldn’t hold the entire routing table It was projected that class-B addresses, and eventually all addresses, would be exhausted Creative IETF members said “we can fix things”, but each had his own plan

6 “If you’re giving away ice-cream, make sure the scoops are small” The IETF said “let there be CIDR” and classless interdomain routing became the efficient way to dole out IP addresses Others in the IETF said “CIDR is nice, but we’re still going to run out of ice-cream” “wouldn’t it be nice to have an astronomical amount of ice-cream, they wondered” Two years later, the IETF invented the equivalent of an astronomical amount of ice- cream: IPv6

7 Around the same time they were solving the ice-cream problem, the IETF also was dealing with security SSL was standardized - now TCP connections could be encrypted without the user messing around with keys or passphrases Standards were emerging for securing the network at the IP layer (would later be called IPSEC)

8 The difference between “may” and “must” The IPv6 IETF standard (RFC ) specifies that a full implementation of IPv6 MUST support certain components of IPSEC IPv4, which was defined before IPSEC, MAY support IPSEC In reality, some IPv6 stacks don’t support IPSEC and many IPv4 stacks do. There are no additional security features if IPv6! In fact, IPv4 does have additional required security features (but they’re not used)

9 IPv6 does have an astronomical number of addresses This does allow for the flexibility to build network topologies which support attribution at the network layer. You can make quite a mess with an astronomical amount of ice-cream.

10 The argument for IPv6 is to maintain the flexibility of supporting the end-to-end network model. IMHO, it has nothing to do with security

11 Want to make a network less secure, migrate to IPv6 early

Download ppt "Security IPv4 vs. IPv6 Is there a difference? Greg Travis Indiana University"

Similar presentations

IPv6 at NCAR 8/28/2002. Overview What is IPv6? What’s wrong with IPv4? Features of IPv6 IPv6 will soon be available at NCAR How to use IPv6.

IPv6 at NCAR 8/28/2002. Overview What is IPv6? What’s wrong with IPv4? Features of IPv6 IPv6 will soon be available at NCAR How to use IPv6.
 IPv6 Has built in security via IPsec (Internet Protocol Security). ◦ IPsec Operates at OSI layer 3 or internet layer of the Internet Protocol Suite.

 IPv6 Has built in security via IPsec (Internet Protocol Security). ◦ IPsec Operates at OSI layer 3 or internet layer of the Internet Protocol Suite.
IPv6 Keith Wichman. History Based on IPv4 Based on IPv4 Development initiated in 1994 Development initiated in 1994.

IPv6 Keith Wichman. History Based on IPv4 Based on IPv4 Development initiated in 1994 Development initiated in 1994.
IPv4 to IPv6 Migration strategies. What is IPv4  Second revision in development of internet protocol  First version to be widely implied.  Connection.

IPv4 to IPv6 Migration strategies. What is IPv4  Second revision in development of internet protocol  First version to be widely implied.  Connection.
IPv6: The Next Generation Internet Protocol CEOS WGISS 18: Beijing, China September 2004 Dave Hartzell Computer Sciences Corp, NASA Ames

IPv6: The Next Generation Internet Protocol CEOS WGISS 18: Beijing, China September 2004 Dave Hartzell Computer Sciences Corp, NASA Ames
Introduction to Dynamic Routing Protocols

Introduction to Dynamic Routing Protocols
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 VLSM and CIDR Routing Protocols and Concepts – Chapter 6.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 VLSM and CIDR Routing Protocols and Concepts – Chapter 6.
© N. Ganesan, All rights reserved. Chapter IP Addressing Format.

© N. Ganesan, All rights reserved. Chapter IP Addressing Format.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 VLSM and CIDR Routing Protocols and Concepts – Chapter 6.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 VLSM and CIDR Routing Protocols and Concepts – Chapter 6.
1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.

1 Chapter 2: Networking Protocol Design Designs That Include TCP/IP Essential TCP/IP Design Concepts TCP/IP Data Protection TCP/IP Optimization.
BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.

BASIC CRYPTOGRAPHY CONCEPT. Secure Socket Layer (SSL)  SSL was first used by Netscape.  To ensure security of data sent through HTTP, LDAP or POP3.
Network Layer4-1 Chapter 4: Network Layer r 4. 1 Introduction r 4.2 Virtual circuit and datagram networks r 4.3 What’s inside a router r 4.4 IP: Internet.

Network Layer4-1 Chapter 4: Network Layer r 4. 1 Introduction r 4.2 Virtual circuit and datagram networks r 4.3 What’s inside a router r 4.4 IP: Internet.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 OSI Network Layer Network Fundamentals – Chapter 5.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 OSI Network Layer Network Fundamentals – Chapter 5.
CSE5803 Advanced Internet Protocols and Applications (7) 1 7.1 Introduction The IP addressing scheme discussed in Chapter 2 are classful and can be summarised.

CSE5803 Advanced Internet Protocols and Applications (7) Introduction The IP addressing scheme discussed in Chapter 2 are classful and can be summarised.
By Rod Lykins.  Background  Benefits  Security Advantages ◦ Address Space ◦ IPSec  Remaining Security Issues  Conclusion.

By Rod Lykins.  Background  Benefits  Security Advantages ◦ Address Space ◦ IPSec  Remaining Security Issues  Conclusion.
A Study of Mobile IP Kunal Ganguly Wichita State University CS843 – Distributed Computing.

A Study of Mobile IP Kunal Ganguly Wichita State University CS843 – Distributed Computing.
1 A Course-End Conclusions and Future Studies Dr. Rocky K. C. Chang 28 November 2005.

1 A Course-End Conclusions and Future Studies Dr. Rocky K. C. Chang 28 November 2005.
Network Architectures Week 3 – OSI and The Internet.

Network Architectures Week 3 – OSI and The Internet.
Internet Protocol Security (IPSec)

Internet Protocol Security (IPSec)
CS335 Networking & Network Administration Tuesday April 27, 2010.

CS335 Networking & Network Administration Tuesday April 27, 2010.

Similar presentations

Ads by Google