IPv6 Address Obfuscation by Intermediate Middlebox in Coordination with Connected Devices - Advances in Communication Networking
Conference Papers Year : 2013

IPv6 Address Obfuscation by Intermediate Middlebox in Coordination with Connected Devices

Abstract

Privacy is a major concern on the current Internet, but transport mechanisms like IPv4 and more specifically IPv6 do not offer the necessary protection to users. However, the IPv6 address size allows designing privacy mechanisms impossible in IPv4. Nevertheless existing solutions like Privacy Extensions [20] are not optimal, still only one address is in use for several communications over time. And it does not offer control of the network by the administrator (end devices use randomly generated addresses). Our IPv6 privacy proposal uses ephemeral addresses outside the trusted network but stable addresses inside the local network, allowing the control of the local network security by the administrator. Our solution is based on new opportunities of IPv6: a large address space and a new flow label field. In combination with Cryptographically Generated Addresses, we can provide protection against spoofing on the local network and enhanced privacy for Internet communication.
Fichier principal
Vignette du fichier
978-3-642-40552-5_14_Chapter.pdf (311.49 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01497012 , version 1 (28-03-2017)

Licence

Identifiers

Cite

Florent Fourcot, Laurent Toutain, Stefan Köpsell, Frédéric Cuppens, Nora Cuppens-Boulahia. IPv6 Address Obfuscation by Intermediate Middlebox in Coordination with Connected Devices. 19th Open European Summer School (EUNICE), Aug 2013, Chemnitz, Germany. pp.148-160, ⟨10.1007/978-3-642-40552-5_14⟩. ⟨hal-01497012⟩
262 View
224 Download

Altmetric

Share

More