Host Identity Detection in IPv6 Networks

článek ve sborníku ve WoS nebo Scopus

angličtina

It is important to keep networks secure and reliable. In order to backtrack security incidents, provide accounting for offered services etc., it is necessary to know the identity of network users. With various methods for IPv6 address assignments, IPv6 brings new challenges to user identification in LAN. This paper proposes a new approach for tracking user identity in LANs. The approach is based on network control traffic that is already present in IPv6 networks and it is passive to end devices. In contrast to current methods, the proposed approach does not bring any extensive workload to active network devices, works in networks with Multicast Listener Discovery snooping, and is able to detect that an address is no longer used. In order to make the approach reliable, we studied the behaviour of current operating systems during IPv6 address assignments. We implemented a tool called ndtrack based on the proposed approach and tested it in real network.

Computer network security, host identity, IPv6 monitoring, SLAAC, neighbor discovery.

POLČÁK, L.; HOLKOVIČ, M.; MATOUŠEK, P.

2014

28. 9. 2014

Springer Verlag

Berlin

978-3-662-44787-1

E-Business and Telecommunications

1865-0929

Communications in Computer and Information Science

456

456

Spolková republika Německo

74

89

16

http://link.springer.com/chapter/10.1007/978-3-662-44788-8_5