SADetection: Security Mechanisms to Detect SLAAC Attack in IPv6 Link-Local Network

Al-Shareeda, Mahmood A.; Manickam, Selvakumar; Saare, Murtaja Ali; Omar, Nazrool

doi:10.31449/inf.v46i9.4441

Cited by 5 publications

(5 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Mitigation strategies include RA-Guard, SEND, network segmentation, and regular updates to prevent these security risks in IPv6 networks. 18 In an IPv6-based IoD network, the DAD protocol plays a critical role in ensuring the uniqueness of drone addresses. When a new drone joins the network, a provisional IPv6 address is generated.…”

Section: Duplicate Address Detectionmentioning

confidence: 99%

See 1 more Smart Citation

IPv6 addressing with hidden duplicate address detection to mitigate denial of service attacks in the internet of drone

Kumar,

Pragya

2024

Concurrency and Computation

View full text Add to dashboard Cite

SummaryThe fusion of drones with the Internet, termed the Internet of Drones (IoD), resembles the Internet of Things (IoT) paradigm. In IoD, drones necessitate unique identifiers similar to IPv6 addresses. This paper presents a novel approach for securing the duplicate address detection (DAD) process in the IoD environment. This paper focuses on addressing the security challenges posed by malicious drones in the DAD process. The proposed solution introduces a hidden DAD (H‐DAD) process, to mitigate attacks on the DAD process. In this scheme, drones transmit a transformed portion of their interface identifier (IID) while concealing the full IID, thus thwarting potential disruptions by malicious entities. We evaluated the effectiveness of the H‐DAD scheme through experimental analysis using Python with SimPy, comparing it with the Improved DAD, Secure DAD, and Standard DAD schemes. Our results demonstrate a notable improvement, with the Hidden DAD scheme achieving a 100% address success rate under attack. Moreover, it exhibits approximately 5% and 12% lower overhead and energy consumption, respectively, compared to the other schemes.

show abstract

Section: Duplicate Address Detectionmentioning

confidence: 99%

“…SLAAC attacks exploit vulnerabilities in IPv6 autoconfiguration, enabling malicious activities like spoofing, rogue router advertisements, and neighbor discovery protocol manipulation. Mitigation strategies include RA‐Guard, SEND, network segmentation, and regular updates to prevent these security risks in IPv6 networks 18 …”

Section: Introductionmentioning

confidence: 99%

IPv6 addressing with hidden duplicate address detection to mitigate denial of service attacks in the internet of drone

Kumar,

Pragya

2024

Concurrency and Computation

View full text Add to dashboard Cite

show abstract

“…In addition, rules-based detection techniques are used to detect any violation of the network configuration or the fragmentation of RA messages and extension headers [17][18][19]. The main drawback of passive monitoring is that the training phase must be free of any compromised nodes; otherwise, the detection process will fail [20,21]. For that, [22,23] suggest dynamically updating the rules whenever a legitimate change on the network appears.…”

Section: Related Work For Securing Ndpmentioning

confidence: 99%

An Analysis of Neighbor Discovery Protocol Attacks

2023

View full text Add to dashboard Cite

Neighbor Discovery Protocol (NDP) is a network protocol used in IPv6 networks to manage communication between neighboring devices. NDP is responsible for mapping IPv6 addresses to MAC addresses and discovering the availability of neighboring devices on the network. The main risk of deploying NDP on public networks is the potential for hackers or attackers to launch various types of attacks, such as address spoofing attacks, denial-of-service attacks, and man-in-the-middle attacks. Although Secure Neighbor Discovery (SEND) is implemented to secure NDP, its complexity and cost hinder its widespread deployment. This research emphasizes the potential hazard of deploying IPv6 networks in public spaces, such as airports, without protecting NDP messages. These risks have the potential to crash the entire local network. To demonstrate these risks, the GNS3 testbed environment is used to generate NDP attacks and capture the resulting packets using Wireshark for analysis. The analysis results reveal that with just a few commands, attackers can execute various NDP attacks. This highlights the need to protect against the potential issues that come with deploying IPv6 on widely accessible public networks. In addition, the analysis result shows that NDP attacks have behavior that can be used to define various NDP attacks.

show abstract

“…Their proposal discards the misleading and confounding frames and generates a compact, refined feature for face recognition in face videos. For channel attention, the current channel attention mechanisms used in face recognition [34]- [37] employ a scalar to represent each channel through Global Average Pooling (GAP). However, GAP struggles to capture complex information for various inputs because of its simplicity.…”

Section: Introductionmentioning

confidence: 99%

Leveraging a Two-Level Attention Mechanism for Deep Face Recognition with Siamese One-Shot Learning

Albayati,

Chtourou,

Zarai

2024

Journal of Robotics and Control

View full text Add to dashboard Cite

Discriminative feature embedding is used for largescale facial recognition. Many image-based facial recognition networks use CNNs like ResNets and VGG-nets. Humans prioritise different elements, but CNNs treat all facial pictures equally. NLP and computer vision use attention to learn the most important part of an input signal. The inter-channel and inter-spatial attention mechanism is used to assess face image component significance in this study. Channel scalars are calculated using Global Average Pooling in face recognition channel attention. A recent study found that GAP encodes low-frequency channel information first. We compressed channels using discrete cosine transform (DCT) instead of scalar representation to evaluate information at frequencies other than the lowest frequency for the channel attention mechanism. Later layers can acquire the feature map after spatial attention. Channel and spatial attention increase CNN facial recognition feature extraction. Channel-only, spatial-only, parallel, sequential, or channel-after-spatial attention blocks exist. Current face recognition attention approaches may be outperformed on public datasets (Labelled Faces in the Wild).

show abstract

SADetection: Security Mechanisms to Detect SLAAC Attack in IPv6 Link-Local Network

Cited by 5 publications

References 9 publications

IPv6 addressing with hidden duplicate address detection to mitigate denial of service attacks in the internet of drone

IPv6 addressing with hidden duplicate address detection to mitigate denial of service attacks in the internet of drone

An Analysis of Neighbor Discovery Protocol Attacks

Leveraging a Two-Level Attention Mechanism for Deep Face Recognition with Siamese One-Shot Learning

Contact Info

Product

Resources

About