Abstract
The next generation of the Internet Protocol (IPv6) is currently about to be introduced in many organizations. However, its security features are still a very novel area of expertise for many practitioners. This study evaluates guidelines for secure deployment of IPv6, published by the U.S. NIST and the German federal agency BSI, for topicality, completeness and depth. The later two are scores defined in this paper and are based on the Requests for Comments relevant for IPv6 that were categorized, weighted and ranked for importance using an expert survey. Both guides turn out to be of practical value, but have a specific focus and are directed towards different audiences. Moreover, recommendations for possible improvements are presented. Our results could also support strategic management decisions on security priorities as well as for the choice of security guidelines for IPv6 roll-outs.
Highlights
This study evaluates guidelines for secure deployment of IPv6, published by the U.S National Institute of Standards and Technology (NIST) and the German federal agency BSI, for topicality, completeness and depth
As more organizations need to deploy IPv6 infrastructures, an evaluation of these guidelines is necessary in order to assess the quality of their advice and to make sure they provide the right information for a secure deployment, with up to date methods and techniques
Since the guide already features a very high completeness, it is only recommended to keep an eye on new developments, so that this score would stay high in future versions of the guide
Summary
Only few Internet Service Providers (ISPs) or other IT organizations have moved to the new protocol, even though the pool of available IPv4 addresses at the Future Internet 2014, 6. IPv6 is aimed at providing end-to-end communication between network interfaces even when the number of Internet participants and corresponding demand for address space keep on increasing massively, for example caused by the growing demand for Internet-enabled mobile devices. IPv6 is not downward compatible, a simple switch of protocols is not possible. This is due to various old network devices that are optimized for the use with IPv4 and do not support new version. IPv6 was first published in 1995 in the RFC 1883 [1], which was deprecated in 1998 by RFC 2460 [23]
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
