domingo, 6 de mayo de 2012
IPv6 security: What you need to know
The global adoption of IPv6 is one of the key challenges facing the internet today. How successfully we meet it will affect internet users throughout the world — from governments and businesses to individual users.
The imminent exhaustion of the finite pool of IPv4 addresses now makes IPv6 deployment critical to safeguarding the future expansion of the internet.
IPv6 deployment comes with its own set of challenges, and security issues have been discussed at length recently. In February, Arbor Networks reported that a significant milestone had been reached in the "arms races between attackers and defenders", arguing that DDoS attacks will gradually increase over time as IPv6 is more widely deployed.
Although deploying IPv6 involves a number of security challenges for IT managers, many of these can be handled in the same way as they have been for IPv4.
Most security incidents are caused by human error, either as the result of a programming error or through misconfiguration. In this sense, IPv6 is no different to IPv4. The real concern is the lack of experience and training for those IT professionals dealing with IPv6, which makes these mistakes more likely.
From a technical perspective, most security breaches take place at the application level. Again, this fact means there is little difference between IPv4 and IPv6 in terms of security. So, it's more a matter of adopting, testing and verifying procedures.
Although IPv6 has been in use for many years, it has been deployed on relatively few networks. This state of affairs has two implications: first, people are less familiar with it and are therefore less likely to spot mistakes. This weakness can be easily addressed through training and gaining experience by running pilot IPv6 projects.