ipv6 implications for tcp udp port scanning
play

IPv6 Implications for TCP/UDP Port Scanning Tim Chown - PowerPoint PPT Presentation

Jan 02, 2024 •570 likes •635 views

IPv6 Implications for TCP/UDP Port Scanning Tim Chown tjc@ecs.soton.ac.uk IETF 65, March 23rd 2006 Dallas, TX draft-chown-v6ops-port-scanning-implications-02 Rationale The goals of the document are currently to Note the properties of

  1. IPv6 Implications for TCP/UDP Port Scanning Tim Chown tjc@ecs.soton.ac.uk IETF 65, March 23rd 2006 Dallas, TX draft-chown-v6ops-port-scanning-implications-02

  2. Rationale  The goals of the document are currently to  Note the properties of the vastly increased host address space in an IPv6 subnet (/64) or site (/48)  With respect to traditional port scanning probes  Describe new methods that attackers may use to identify target nodes  Given the target host address space is so large  Make recommendations to administrators to mitigate against new attack vectors  Publish document as Informational in the first instance draft-chown-v6ops-port-scanning-implications-02

  3. Traditional port scanning  To scan one port per node in a /64 IPv6 subnet per second would require 500 billion years  Can reduce search space from 64 to 24 bits  If SLAAC used, knowing :fffe: padding & vendor codes  Not practical; unlikely to be used by attackers  Scans also used by worms  Active propagation intra- or inter-subnet  Address space used much more densely in IPv4 site  Need to identify target nodes  Used by local admins for ‘defensive’ scanning  Market for IPv4 ‘penetration testing’ - what’s IPv6 market? draft-chown-v6ops-port-scanning-implications-02

  4. Recommendations  For administrators  Consider subnet/host numbering plans  Potential for rolling server addresses  Consider where addresses/prefixes may be gleaned  Passive or active gathering  Mail headers, application access logs, etc  Possible site-scope multicast operations  Use of RFC3041 to reduce useful lifetime of exposed address information to an attacker  Contradicts ease of management  Considerations for ‘defensive’ scanning draft-chown-v6ops-port-scanning-implications-02

  5. Comments received on -02  Title should be about ‘address’ not ‘port’ scanning  Or perhaps ‘host address discovery’  Look at Bellovin paper  http://www.cs.columbia.edu/~smb/papers/v6worms.pdf  Attackers will find a way; don’t suggest IPv6 offers protection; document new attack vectors and offer recommendations  RFC3041 is a good thing  Exposed to weakest of protocols in dual-stack network draft-chown-v6ops-port-scanning-implications-02

  6. Next steps?  Various edits  Need to expand Section 3 on attack vectors  Add conclusions  Is direction of document useful?  WG adoption?  Referenced in two mature v6ops drafts  NAP and ICMP filtering  Comments? draft-chown-v6ops-port-scanning-implications-02

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Vincent van der Eijk && Erik Lamers Comparing IPv4 port security to IPv6 port security

Vincent van der Eijk && Erik Lamers Comparing IPv4 port security to IPv6 port security

A Comparative Security Evaluation for IPv4 and IPv6 Addresses Vincent van der Eijk && Erik Lamers Comparing IPv4 port security to IPv6 port security Scanning the Internet for profit, ethically. 2 Why do we need to know this? IPv6

279 views • 16 slides
Mapping the Great Void Smarter scanning for IPv6 Richard Barnes, Rick Altmann, Daniel Kerr BBN

Mapping the Great Void Smarter scanning for IPv6 Richard Barnes, Rick Altmann, Daniel Kerr BBN

Mapping the Great Void Smarter scanning for IPv6 Richard Barnes, Rick Altmann, Daniel Kerr BBN Technologies Agenda Challenges for mapping the IPv6 Internet Some approaches to smarter scanning CIDR++ Registry information

736 views • 26 slides
Hands-On Ethical Hacking and Network Defense Second Edition Chapter 5 Port Scanning Objectives

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 5 Port Scanning Objectives

Hands-On Ethical Hacking and Network Defense Second Edition Chapter 5 Port Scanning Objectives After reading this chapter and completing the exercises, you will be able to: Describe port scanning and types of port scans Describe

368 views • 5 slides
Target Generation for Internet-wide IPv6 Scanning Austin Murdock, Frank Li, Paul Bramsen, Zakir

Target Generation for Internet-wide IPv6 Scanning Austin Murdock, Frank Li, Paul Bramsen, Zakir

Target Generation for Internet-wide IPv6 Scanning Austin Murdock, Frank Li, Paul Bramsen, Zakir Durumeric, Vern Paxson Background IPv4 scanning - Zmap . 2 Background 2 128 addresses => 10 30 years to scan 32 nybbles (hex

518 views • 28 slides
IPv6 Scanning Smart address selection and comparison to legacy IP Intermediate talk Sebastian

IPv6 Scanning Smart address selection and comparison to legacy IP Intermediate talk Sebastian

Chair for Network Architectures and Services Technische Universit at M unchen IPv6 Scanning Smart address selection and comparison to legacy IP Intermediate talk Sebastian Gebhard Supervisors: Oliver Gasser, Quirin Scheitle September

436 views • 32 slides
IPv6 Scanning Smart address selection and comparison to legacy IP Sebastian Gebhard Final Talk

IPv6 Scanning Smart address selection and comparison to legacy IP Sebastian Gebhard Final Talk

Chair of Network Architectures and Services Technical University of Munich IPv6 Scanning Smart address selection and comparison to legacy IP Sebastian Gebhard Final Talk on Masters Thesis in Electrical Engineering and Information Technology

1.01k views • 64 slides
The Internet Protocol (IP) Part 2: IPv6 JeanYves Le Boudec Fall 2009 1 1 Contents 1. IPv6

The Internet Protocol (IP) Part 2: IPv6 JeanYves Le Boudec Fall 2009 1 1 Contents 1. IPv6

COLE POLYTECHNIQUE FDRALE DE LAUSANNE The Internet Protocol (IP) Part 2: IPv6 JeanYves Le Boudec Fall 2009 1 1 Contents 1. IPv6 2. NATs 3. Interworking IPv4 / IPv6 4. Routing Implications 5. Recap Some slides come from:

911 views • 73 slides
IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer

IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer

Outline IPv6 IPv6 Header IPv6 Addressing IPv6 Neighbor Discovery Jyh-Cheng Chen Department of Computer Science and IPv6 Autoconfiguration Institute of Communications Engineering National Tsing Hua University jcchen@cs.nthu.edu.tw

783 views • 11 slides
IPv6 @ Navneet Nagori Network Engineering Why IPv6 IPv4 exhaustion Cost - Buying

IPv6 @ Navneet Nagori Network Engineering Why IPv6 IPv4 exhaustion Cost - Buying

IPv6 @ Navneet Nagori Network Engineering Why IPv6 IPv4 exhaustion Cost - Buying address costly , Provider supported NAT, Abuse Identification, Port exhaustion, User share address New Devices IPTV, Mobile Network, home

528 views • 21 slides
IETF 79 Beijing, China IPv6 DNS Whitelisting: Overview and Implications N A TIONAL E NGINEERING

IETF 79 Beijing, China IPv6 DNS Whitelisting: Overview and Implications N A TIONAL E NGINEERING

IETF 79 Beijing, China IPv6 DNS Whitelisting: Overview and Implications N A TIONAL E NGINEERING & T ECHNICAL O PERA TIONS DNS Whitelis8ng I-D: dra$-livingood-dns-whitelis1ng-implica1ons

365 views • 12 slides
IPv6 TLS Security Scanning Master Thesis Intermediate Talk Pirmin Blanz 28.09.2016 Chair of

IPv6 TLS Security Scanning Master Thesis Intermediate Talk Pirmin Blanz 28.09.2016 Chair of

Chair of Network Architectures and Services Technical University of Munich IPv6 TLS Security Scanning Master Thesis Intermediate Talk Pirmin Blanz 28.09.2016 Chair of Network Architectures and Services Department of Informatics Technical

188 views • 15 slides
Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6

Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6

Internet Evolution and IPv6 Paul Wilson APNIC 1 Where are IPv6 addresses today? 2 IPv6 Global allocations by RIR APNIC 337 21% RIPENCC 737 45% ARIN 438 LACNIC AFRINIC 27% 87 37 5% 2% Unit: IPv6 pref i x 3 IPv6

603 views • 24 slides
IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6

IPv6 Ready Logo Aiding IPv6 Deployment Timothy Winters LACNIC 27 May 2017 IPv6 Forums IPv6 Ready Logo Goal 2001-Present: Conformance and Interoperability test program intended to increase user confidence and promote IPv6 deployment.

403 views • 11 slides
IPv6 Security awareness By Musa Stephen HONLUE Trainer@AFRINIC Stephen.honlue@afrinic.net 1

IPv6 Security awareness By Musa Stephen HONLUE Trainer@AFRINIC Stephen.honlue@afrinic.net 1

IPv6 Security awareness By Musa Stephen HONLUE Trainer@AFRINIC Stephen.honlue@afrinic.net 1 04/12/2015' Presentation Objectives ! Create awareness of IPv6 Security implications. ! Highlight technical concepts on IPv6 weaknesses ! Describe

822 views • 36 slides
IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already

IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already

IPv6 Deployment at Monash University John Mann Agenda IPv6 is Coming IPv6 is Already Here Monash IPv6 Progress Addressing End Systems Monitoring Network Address Usage Traffic Monitoring Problems IPv6 is Coming

779 views • 41 slides
Life with IPv6 Journe Cohabitation IPv4-IPv6 16 Fvrier 2005 Keiichi SHIMA

Life with IPv6 Journe Cohabitation IPv4-IPv6 16 Fvrier 2005 Keiichi SHIMA

Life with IPv6 Journe Cohabitation IPv4-IPv6 16 Fvrier 2005 Keiichi SHIMA <keiichi@iijlab.net> IIJ Research Laboratory / WIDE project Contents IPv6 service in Japan How I live Example of IPv6 configuration Some news of IPv6

653 views • 16 slides
Protecting Against Unexpected System Calls C. M. Linn, M. Rajagopalan, S. Baker, C.

Protecting Against Unexpected System Calls C. M. Linn, M. Rajagopalan, S. Baker, C.

Protecting Against Unexpected System Calls C. M. Linn, M. Rajagopalan, S. Baker, C. Collberg, S. K. Debray, J. H. Hartman Department of Computer Science University of Arizona Presented By: Mohamed Hassan Code Injection What

227 views • 12 slides
DFAs, REs & Scanning Finite set of states: S Finite alphabet: A Transition function: a b

DFAs, REs & Scanning Finite set of states: S Finite alphabet: A Transition function: a b

DFAs, REs & Scanning Finite set of states: S Finite alphabet: A Transition function: a b T: SxA -> S A B C Start State: s Set of final states f1..fn c a A,a: B B,b: C D C,c: D D,a: A c D,c: D with s = A and F = {A,

660 views • 24 slides
Evaluating boolean Expressions } The simple numeric comparison operators and equality relations

Evaluating boolean Expressions } The simple numeric comparison operators and equality relations

Evaluating boolean Expressions } The simple numeric comparison operators and equality relations are easy to evaluate P Q P && Q } T o determine whether a more T T T complex logical formula is true or T F F false, we use truth

357 views • 3 slides
CSSE 220 Object-Oriented Design Files & Exceptions Import FilesAndExceptions from the repo

CSSE 220 Object-Oriented Design Files & Exceptions Import FilesAndExceptions from the repo

CSSE 220 Object-Oriented Design Files & Exceptions Import FilesAndExceptions from the repo Announcements Take Moodle survey today to voice your preferences for project partners. Arcade Game Project Group Survey Review: GUI Layout

417 views • 22 slides
Quantitative Security Colorado State University Yashwant K Malaiya CS 559 Vulnerability Life

Quantitative Security Colorado State University Yashwant K Malaiya CS 559 Vulnerability Life

Quantitative Security Colorado State University Yashwant K Malaiya CS 559 Vulnerability Life Cycle CSU Cybersecurity Center Computer Science Dept 1 1 Topics Vulnerability Life Cycle Vulnerability Discovery models 2 Vulnerability

805 views • 46 slides
Getting started with malware analysis Judith van Stegeren Definitions Malware : any software that

Getting started with malware analysis Judith van Stegeren Definitions Malware : any software that

Getting started with malware analysis Judith van Stegeren Definitions Malware : any software that does something that causes harm to a user, computer or network, including viruses, trojan horses, worms, rootkits, scareware and spyware. Malware

119 views • 9 slides
Vembu BDR Suite Vembu Technologies 100+ Decade + G2 crowd Countries Experience Top

Vembu BDR Suite Vembu Technologies 100+ Decade + G2 crowd Countries Experience Top

Vembu BDR Suite Vembu Technologies 100+ Decade + G2 crowd Countries Experience Top Leaders-2019 www.vembu.com How to protect your business from a Ransomware attack? What is Ransomware? Types of Ransomware How it attacks? Stats for year

454 views • 16 slides
Cybersecurity Update: Latest Impacts on Aerospace & Defense Presented d by: Brandon Gunter

Cybersecurity Update: Latest Impacts on Aerospace & Defense Presented d by: Brandon Gunter

The Aerospace & Defense Forum Arizona Chapter March 9, 2017 Cybersecurity Update: Latest Impacts on Aerospace & Defense Presented d by: Brandon Gunter Senior Manager, Cybersecurity Services Brandon.Gunter@mossadams.com (206)

255 views • 11 slides

More recommend