A New Approach for Detection of Host Identity in IPv6 Networks

Libor Polcák, Martin Holkovič, Petr Matousek

2013

Abstract

For security, management and accounting, network administrators benefit from knowledge of IP and MAC address bindings. In IPv6, learning these bindings is not as straightforward as it is in IPv4. This paper presents a new approach to track IPv6 address assignments in LANs. The method is based on a study of implementation of IPv6 (mainly neighbor discovery) in current operating systems. The detection is passive for end devices and does not require any software or hardware modifications. In contrast with current methods, our approach does not poll routers in the network and works also in networks where IPv6 multicast is not broadcasted (active Multicast Listener Discovery snooping – MLD snooping). Moreover, our approach detects that an address is no longer used. The approach was successfully tested in a campus network.

References

  1. Asati, R. and Wing, D. (2012). Tracking of Static/Autoconfigured IPv6 addresses. Internet Draft, version 00 (Work in progress).
  2. Dhamdhere, A., Luckie, M., Huffaker, B., claffy, k., Elmokashfi, A., and Aben, E. (2012). Measuring the deployment of ipv6: topology, routing and performance. In Proc. of IMC 7812, pages 537-550, New York, NY, USA. ACM.
  3. Droms, R., Bound, J., Volz, B., Lemon, T., Perkins, C., and Carney, M. (2003). Dynamic Host Configuration Protocol for IPv6 (DHCPv6). RFC 3315.
  4. Dunlop, M., Groat, S., Marchany, R., and Tront, J. (2011). The good, the bad, the ipv6. In CNSR 2011, pages 77-84, Ottawa, Canada.
  5. Groat, S., Dunlop, M., Marchany, R., and Tront, J. (2010). The privacy implications of stateless ipv6 addressing. In Proc. of CSIIRW 7810, pages 52:1-52:4, New York, NY, USA. ACM.
  6. Groat, S., Dunlop, M., Marchany, R., and Tront, J. (2011). What dhcpv6 says about you. In WorldCIS 2011, pages 146-151, London, UK.
  7. Grégr, M., Matous?ek, P., PodermaÁski, T., and S? véda, M. (2011). Practical ipv6 monitoring - challenges and techniques. In Proc. of IM 2011, pages 660-663, Dublin, Ireland. IEEE CS.
  8. Hinden, R. and Deering, S. (2006). IP Version 6 Addressing Architecture. RFC 4291.
  9. Holkovic?, M. and Polc?ák, L. (2013). ndtrack. http://www.fit.vutbr.cz/ ipolcak/prods.php?id=308.
  10. Huston, G. (2009-2013). IPv4 Address Report. http://www.potaroo.net/tools/ipv4/index.html.
  11. Kriukas, J. (2012). addrwatch: A tool similar to arpwatch for ipv4/ipv6 and ethernet address pairing monitoring. https://github.com/fln/addrwatch.
  12. Narten, T., Draves, R., and Krishnan, S. (2007a). Privacy Extensions for Stateless Address Autoconfiguration in IPv6. RFC 4941.
  13. Narten, T., Nordmark, E., Simpson, W., and Soliman, H. (2007b). Neighbor Discovery for IP version 6 (IPv6). RFC 4861.
  14. Polc?ák, L. and Holkovic?, M. (2013). Behaviour of various operating systems during SLAAC, DAD, and ND. http://6lab.cz/?p=1691.
  15. Thomson, S., Narten, T., and Jinmei, T. (2007). IPv6 Stateless Address Autoconfiguration. RFC 4862.
Download


Paper Citation


in Harvard Style

Polcák L., Holkovič M. and Matousek P. (2013). A New Approach for Detection of Host Identity in IPv6 Networks . In Proceedings of the 4th International Conference on Data Communication Networking, 10th International Conference on e-Business and 4th International Conference on Optical Communication Systems - Volume 1: DCNET, (ICETE 2013) ISBN 978-989-8565-72-3, pages 57-63. DOI: 10.5220/0004608700570063


in Bibtex Style

@conference{dcnet13,
author={Libor Polcák and Martin Holkovič and Petr Matousek},
title={A New Approach for Detection of Host Identity in IPv6 Networks},
booktitle={Proceedings of the 4th International Conference on Data Communication Networking, 10th International Conference on e-Business and 4th International Conference on Optical Communication Systems - Volume 1: DCNET, (ICETE 2013)},
year={2013},
pages={57-63},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004608700570063},
isbn={978-989-8565-72-3},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 4th International Conference on Data Communication Networking, 10th International Conference on e-Business and 4th International Conference on Optical Communication Systems - Volume 1: DCNET, (ICETE 2013)
TI - A New Approach for Detection of Host Identity in IPv6 Networks
SN - 978-989-8565-72-3
AU - Polcák L.
AU - Holkovič M.
AU - Matousek P.
PY - 2013
SP - 57
EP - 63
DO - 10.5220/0004608700570063