The privacy implications of stateless IPv6 addressing

Groat, Stephen; Dunlop, Matthew; Marchany, Randy; Tront, Joseph G.

doi:10.1145/1852666.1852723

Cited by 17 publications

(12 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Using a node's MAC address in the IID has serious unintended consequences to a user's privacy [6]. The observation that this addressing scheme could allow an attacker to analyze payload, packet size, and packet timing was first made in RFC 4941 [13].…”

Section: Privacy In Ipv6 Slaacmentioning

confidence: 99%

See 1 more Smart Citation

Privacy and Security of DHCP Unique Identifiers

Groat¹,

Dunlop²,

Marchany³

et al. 2012

IJISR

Self Cite

View full text Add to dashboard Cite

As protection against the current privacy weaknesses of StateLess Address AutoConfiguration (SLAAC) in the Internet Protocol version 6 (IPv6), network administrators may choose to deploy the new Dynamic Host Configuration Protocol for IPv6 (DHCPv6). Similar to the Dynamic Host Configuration Protocol (DHCP) for the Internet Protocol version 4 (IPv4), DHCPv6 uses a clientserver model to manage addresses in networks, providing stateful address assignment. While DHCPv6 can be configured to assign randomly distributed addresses to clients, the DHCP Unique Identifier (DUID) was designed to identify uniquely identify clients to servers and remains static to clients as they move between different subnets and networks. Since the DUID is globally unique and exposed in the clear, attackers can geotemporally track clients by sniffing DHCPv6 messages on the local network or by using unauthenticated protocol-valid queries that request systems' DUIDs or leased addresses. DUIDs can also be formed with systemspecific information, further compromising the privacy and security of the host. To combat the threat of the static DUID, a dynamic DUID was implemented and analyzed for its effect on privacy and security as well as its computational overhead. The privacy implications of DHCPv6 must be addressed before large-scale IPv6 deployment.

show abstract

Section: Privacy In Ipv6 Slaacmentioning

confidence: 99%

“…SLAAC allows for nodes to configure the interface identifier (IID), or last 64 bits, of their address independently. While this method eases the burden on network administrators, the static configuration used by many common IPv6 network implementations threatens the privacy of users [6].…”

Section: Introductionmentioning

confidence: 99%

Privacy and Security of DHCP Unique Identifiers

Groat¹,

Dunlop²,

Marchany³

et al. 2012

IJISR

Self Cite

View full text Add to dashboard Cite

show abstract

“…Using a node's MAC address in the lID has serious unintended consequences to a user's privacy [6]. The observation that this addressing scheme could allow an attacker to analyze payload, packet size, and packet timing was first made in RFC 4941 [13].…”

Section: Privacy In Ipv6 Slaacmentioning

confidence: 99%

“…Groat et al [6] discussed the ability to geo graphically track a user and monitor and correlate their traffic using the static lID of the autoconfigured address. RFC 4941 identified this problem [13] and concluded that a non-changing interface would allow an eavesdropper to correlate unrelated information with a particular node.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Security and privacy produced by DHCP unique identifiers

Tront

Groat

Dunlop

et al. 2011

The 16th North-East Asia Symposium on Nano, Information Technology and Reliability

Self Cite

View full text Add to dashboard Cite

As protection against the current privacy weaknesses of StateLess Address AutoConfiguration (SLAAC) in the Internet Protocol version 6 (IPv6), network administrat ors may choose to deploy the new Dynamic Host Configuration Protocol for IPv6 (DHCPv6). Similar to the Dynamic Host Configuration Protocol (DHCP) for the Internet Protocol version 4 (IPv4), DHCPv6 uses a client server model to manage addresses in networks, providing statefol address assignment.While DHCPv6 can be configured to assign randomly distributed addresses to clients, the DHCP Unique Identifier (DUID) was designed to identify uniquely identify clients to servers and remains static to clients as they move between diff erent subnets and networks. Since the DUID is globally unique and exposed in the clear, attackers can geotemporally track clients by sniffi ng DHCPv6 messages on the local network or by using unauthenticated protocol-valid queries that request systems' DUIDs or leased addresses. DUIDs can also be formed with system specific iriformation, forther compromising the privacy and security of the host. To combat the threat of the static DUID, a dynamic DUID was implemented and analyzed for its effect on privacy and security as well as its computational overhead. The privacy implications of DHCPv6 must be addressed before large-scale IPv6 deployment.

show abstract

Privacy Treat Factors for VANET in Network Layer

Lim

Chung

2012

Advances in Intelligent and Soft Computing

View full text Add to dashboard Cite

The privacy implications of stateless IPv6 addressing

Cited by 17 publications

References 9 publications

Privacy and Security of DHCP Unique Identifiers

Privacy and Security of DHCP Unique Identifiers

Security and privacy produced by DHCP unique identifiers

Privacy Treat Factors for VANET in Network Layer

Contact Info

Product

Resources

About