Exploiting IPv6 Neighbor
Discovery and Router
Advertisement
The next-generation IP, namely IPv6, has a agreement agnate to Abode Resolution Protocol
(ARP) for IPv4: Neighbor Discovery (ND). This affiliate introduces IPv6 and the Neighbor
Discovery and Router Advertisement protocols. It additionally shows that ND’s basal adaptation has
the aforementioned aegis vulnerabilities as ARP. Finally, this affiliate presents a added secure
version of Neighbor Discovery.
Introduction to IPv6
IPv6 is the abutting bearing of IPv4. It’s about the accepted IPv4 agreement with larger
addresses and hardly altered associated protocols, such as the one acclimated to ascertain a
peer’s Ethernet address. This affiliate presents and analyzes the aegis issues affiliated to
these accessory protocols.
Motivation for IPv6
In 1994, the Internet Engineering Task Force (IETF) began assignment on a new adaptation of IP.
The action was to ensure that the Internet could still abound at a fast clip while keeping
it running, scalable, and stable. One of the agency to accumulate the Internet, as we apperceive it, was
to specify a aboriginal arrangement band agreement to alter IP. In 1995, this new protocol
received the name IPv6.
NOTE Wonder why IP jumped from the accepted version, IPv4, to the abutting one, IPv6, and
apparently skipped the average adaptation 5? The acknowledgment is that IP adaptation 5 was acclimated by
RFC 1190, which was an beginning alive protocol.
Chances are, IPv6 will alter IPv4 in the advancing years. The affidavit are as follows:
• IPv4 abode shortage. With IPv4, alone 32 $.25 abide in an address; this translates into
232 addresses. Alas, not all the abode amplitude can be used. Furthermore, with the
Internet extensive new territories (such as China, adaptable phones, and so on) and with
more common use of always-on residential hosts (such as agee agenda subscriber
line [ADSL] or cable-modem PCs), there is a bright curtailment of IPv4 addresses.
122 Affiliate 7: Exploiting IPv6 Neighbor Discovery and Router Advertisement
• Arrangement Abode Translation (NAT) shortcomings. NAT is frequently deployed to
connect several hosts abaft a distinct accessible IPv4 address. This bureaucracy works accomplished for
client-to-server applications, such as web browsing, e-mail, and so on, but it prevents
easy deployment of peer-to-peer protocols, such as Internet telephony or instant
messaging. The absolute alleged peer-to-peer protocols (including Skype and emule)
rely on tricks to cope with NAT. (For example, IETF is alive on proposals
like Simple Traversal of User Datagram Agreement [STUN] and Interactive
Connectivity Establishment [ICE].)
Microsoft Windows Vista has IPv6 enabled by default. Moreover, Linux distributions have
had IPv6 installed for years; the aforementioned applies to Mac OS/X. Also, all routers and other
network accessories abutment IPv6 nowadays. So, the clearing to IPv6 will apparently happen
sooner rather than later.