Publication Details
A New Approach for Detection of Host Identity in IPv6 Networks
Holkovič Martin, Ing. (DIFS FIT BUT)
Matoušek Petr, doc. Ing., Ph.D., M.A. (DIFS FIT BUT)
Computer network security, host identity, IPv6 monitoring, SLAAC, neighbor discovery.
For security, management and accounting, network administrators benefit from knowledge of IP and MAC address bindings. In IPv6, learning these bindings is not as straightforward as it is in IPv4. This paper presents a new approach to track IPv6 address assignments in LANs. The method is based on a study of implementation of IPv6 (mainly neighbor discovery) in current operating systems. The detection is passive for end devices and does not require any software or hardware modifications. In contrast with current methods, our approach does not poll routers in the network and works also in networks where IPv6 multicast is not broadcasted (active MLD snooping). Moreover, our approach detects that an address is no longer used. The approach was successfully tested in a campus network.
@INPROCEEDINGS{FITPUB10362,
author = "Libor Pol\v{c}\'{a}k and Martin Holkovi\v{c} and Petr Matou\v{s}ek",
title = "A New Approach for Detection of Host Identity in IPv6 Networks",
pages = "57--63",
booktitle = "Proceedings of the 4th International Conference on Data Communication Networking, 10th International Conference on e-Business and 4th International Conference on Optical Communication Systems",
year = 2013,
location = "Reykjav\'{i}k, IS",
publisher = "SciTePress - Science and Technology Publications",
ISBN = "978-989-8565-72-3",
doi = "10.5220/0004608700570063",
language = "english",
url = "https://www.fit.vut.cz/research/publication/10362"
}