Security has recently become a very important concern in the use of IPv6 networks. Companies and industries are reluctant to move to (utilize) IPv6 networking because they are unsure about the security afforded them when using this new protocol. They want to be assured that the level of security will be at least the same or hopefully even higher than that given them with their use of IPv4. Of course the main force driving the use of IPv6 vice IPv4 is the lack of available new addresses in IPv4. This is a great motivating factor and companies are offering services in both IPv4 and IPv6. This having been said, there still remains a fear among vendors concerning weaknesses inherent in IPv6 which prevent them from using this protocol
Our Goal: Penetration Testing and Securing IPv6 Networks
The IPv6 Security Solution Lab (IPv6SSL) consists of two flexible components which enables it to offer a base security consulting system. The purpose of this lab is to test all the protocols and services used in IPv6 networks. The flexibility of this framework allows for the addition of any new attacks, that might be found in use on the Internet, to the system for further evaluation. We are also in process of developing new attacks with which to enhance the system.
Unlike some other security systems that make use of a simulated environment, our system runs in a real-time environment. These frameworks will be made available, as a package, for installation in real-time networks so that penetration tests, in real networks, will be possible. This will be really useful for companies and places that want to check just how secure their companies' networks are.
The easy to use user interface of this system allows users with only general IT experience to work with the system and understand it.
This framework received a Best Paper Award for ACM