Securing ARP/NDP From the Ground Up

Tian, Dave; Butler, Kevin; Choi, Joseph I.; McDaniel, Patrick; Krishnaswamy, Padma

doi:10.1109/tifs.2017.2695983

Cited by 12 publications

(5 citation statements)

References 26 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, some studies of the conceptual contribution type have provided a comprehensive survey of IPv6 transition methods with a focus on security 32 . There are also other studies that examining the detection of special attacks in dual stack networks such as spoofing 33 , ICMPv6 DoS flooding 34 , and anomaly behaviors 35 .…”

Section: Literature Classificationmentioning

confidence: 99%

IPv6 Security Issues: A Systematic Review Following PRISMA Guidelines

Abdullah

Ashoor²

2022

Baghdad Sci.J

View full text Add to dashboard Cite

Since Internet Protocol version 6 is a new technology, insecure network configurations are inevitable. The researchers contributed a lot to spreading knowledge about IPv6 vulnerabilities and how to address them over the past two decades. In this study, a systematic literature review is conducted to analyze research progress in IPv6 security field following the Preferred Reporting Items for the Systematics Review and Meta-Analysis (PRISMA) method. A total of 427 studies have been reviewed from two databases, IEEE and Scopus. To fulfil the review goal, several key data elements were extracted from each study and two kinds of analysis were administered: descriptive analysis and literature classification. The results show positive signs of the research contributions in the field, and generally, they could be considered as a reference to explore the research of in the past two decades in IPv6 security field and to draw the future directions. For example, the percentage of publishing increased from 147 per decade from 2000-2010 to 330 per decade from 2011 to 2020 which means that the percentage increase was 124%. The number of citations is another key finding that reflects the great global interest in research devoted to IPv6 security issues, as it was 409 citations in the decade from 2000-2010, then increased to 1643 citations during the decade from 2011 to 2020, that is, the percentage increase was 302%.

show abstract

Section: Literature Classificationmentioning

confidence: 99%

IPv6 Security Issues: A Systematic Review Following PRISMA Guidelines

Abdullah

Ashoor²

2022

Baghdad Sci.J

View full text Add to dashboard Cite

show abstract

“…Due to the absence of a trust mechanism in the standard protocol, the host is unable to verify the legitimacy of the gateway router throughout the normal router discovery (RD) procedure. This flaw enables fake routers to be set up as valid gateways [17]. The attacker will spread a fake router advertisement (RA) message and give the host the ability to set up a fake set of router options.…”

Section: Introductionmentioning

confidence: 99%

Proposed security mechanism for preventing fake router advertisement attack in IPv6 link-local network

Al-Shareeda

Manickam

Saare

et al. 2022

IJEECS

View full text Add to dashboard Cite

The design of router discovery (RD) is a trust mechanism to confirm the legitimacy of the host and router. Fake router advertisement (RA) attacks have been made possible by this RD protocol design defect. Studies show that the standard RD protocol is vulnerable to a fake RA attack where the host will be denied a valid gateway. To cope with this problem, several prevention techniques have been proposed in the past to secure the RD process. Nevertheless, these methods have a significant temporal complexity as well as other flaws, including the bootstrapping issue and hash collision attacks. Thus, the SecMac-secure router discovery (SecMac-SRD) technique, which requires reduced processing time and may thwart fake RA assaults, is proposed in this study as an improved secure RD mechanism. SecMac-SRD is built based on a UMAC hashing algorithm with ElGamal public key distribution cryptosystem that hides the RD message exchange in the IPv6 link-local network. Based on the obtained expected results display that the SecMac-SRD mechanism achieved less processing time compared to the existing secure RD mechanism and can resist fake RA attacks. The outcome of the expected results clearly proves that the SecMac-SRD mechanism effectively copes with the fake RA attacks during the RD process.

show abstract

“…In NDP, Neighbor Advertisement (NA) and Neighbor Solicitation (NS) packets are used to resolve MAC addresses of the connected hosts. Although unsolicited NS messages are ignored in IPv6, MAC spoofing attack is still possible [12]. Liu et al showed that the override flag in the NS packet could be used to distort the NCE table and perform hijacking of traffic [13].…”

Section: Introductionmentioning

confidence: 99%

Securing IPv6 Neighbor Discovery using Pre-Shared Key

Rahman¹,

Mustafa²

2021

Adv. sci. technol. eng. syst. j.

View full text Add to dashboard Cite

Neighbor Discovery Protocol (NDP) is used to discover the MAC address of the connected hosts in Internet Protocol Version 6 (IPv6) in a networked environment. Neighbor Cache Entry (NCE) table holds the association between a host's IP address and MAC address. However, according to the protocol, the MAC address could be overwritten by sending a single fake packet to its victim. This is a serious security loophole as traffic can easily be sniffed by the attacker. In this paper, we present a scheme to address this problem. Our proposal suggests that when Neighbor Solicitation (NS) and Neighbor Advertisement (NA) process completes, a randomly generated key can be exchanged between them so that, in case of an attack, that key can be used to verify the request. We implemented the proposed scheme in NS3 and simulation results show that our proposed scheme can perform effectively while circumventing the attack that uses override flag of IPv6.

show abstract

Securing ARP/NDP From the Ground Up

Cited by 12 publications

References 26 publications

IPv6 Security Issues: A Systematic Review Following PRISMA Guidelines

IPv6 Security Issues: A Systematic Review Following PRISMA Guidelines

Proposed security mechanism for preventing fake router advertisement attack in IPv6 link-local network

Securing IPv6 Neighbor Discovery using Pre-Shared Key

Contact Info

Product

Resources

About