Winter 2009 ESCC/Internet2 Joint Techs

close
Use Internet2 SiteID

Already have an Internet2 SiteID?
Sign in here.

Internet2 SiteID

If We Deploy IPv6, Will It Help or Hurt Our Security?

Time 02/03/09 09:20AM-09:40AM

We do not host flash-based video files on our servers anymore. Please contact Web Support for further details about netcast videos.

Session Abstract

As the likely date for worldwide IPv4 address
exhaustion is now less than three year away,
many sites have started thinking about how they
will handle IPv6 on their campuses.

Some may welcome IPv6, at least in part because
they believe deploying IPv6 may improve their
security posture; other sites may be "dragging
their heels," worried that deploying IPv6 will
expose them to new security vulnerabilities for
which few solutions are yet available. Can both
perspectives be right? What should campuses be
doing?

We'll consider issues such as pre-attack network
reconnaissance; IPv6 support in firewalls,
intrusion detection systems, and other network
appliances; potential issues with 6to4
translation gateways; gratuitous global IPv6
transit and the odd routing it can cause;
the myth that IPv6 always employs IPSEC; and
the absence to-date of things like IPv6 DNS
blocklists.

Speakers

Speaker Joe St Sauver Internet2/University of Oregon

Presentation Media

media item thumbnail If We Deploy IPv6, Will It Help or Hurt Our Security? (pdf)

Speaker Steve Cotter Energy Sciences Network (ESnet)

Speaker Joe St Sauver Internet2/University of Oregon

Session Media

media item thumbnail If We Deploy IPv6, Will It Help or Hurt Our Security? Netcast Archive As the likely date for worldwide IPv4 address exhaustion is now less than three year away, many sites have started thinking about how they will handle IPv6 on their campuses. Some may welcome IPv6, at least in part because they believe deploying IPv6 may improve their security posture; other sites may be "dragging their heels," worried that deploying IPv6 will expose them to new security vulnerabilities for which few solutions are yet available. Can both perspectives be right? What should campuses be doing? We'll consider issues such as pre-attack network reconnaissance; IPv6 support in firewalls, intrusion detection systems, and other network appliances; potential issues with 6to4 translation gateways; gratuitous global IPv6 transit and the odd routing it can cause; the myth that IPv6 always employs IPSEC; and the absence to-date of things like IPv6 DNS blocklists. media item thumbnail If We Deploy IPv6, Will It Help or Hurt Our Security? Netcast Archive As the likely date for worldwide IPv4 address exhaustion is now less than three year away, many sites have started thinking about how they will handle IPv6 on their campuses. Some may welcome IPv6, at least in part because they believe deploying IPv6 may improve their security posture; other sites may be "dragging their heels," worried that deploying IPv6 will expose them to new security vulnerabilities for which few solutions are yet available. Can both perspectives be right? What should campuses be doing? We'll consider issues such as pre-attack network reconnaissance; IPv6 support in firewalls, intrusion detection systems, and other network appliances; potential issues with 6to4 translation gateways; gratuitous global IPv6 transit and the odd routing it can cause; the myth that IPv6 always employs IPSEC; and the absence to-date of things like IPv6 DNS blocklists.