The Dynamic Host Configuration Protocol Version 6 Security And Privacy Mechanism
Internet Protocol version 6 (IPv6) is the most recent IP version that aims to accommodate hundreds of thousands of unique IP addresses for devices in the network. In IPv6 network, Dynamic Host Configuration Protocol version IPv6 (DHCPv6) is used to allocate and distribute IPv6 addresses and network...
Saved in:
| Main Author: | |
|---|---|
| Format: | Thesis |
| Language: | English |
| Published: |
2020
|
| Subjects: | |
| Online Access: | http://eprints.usm.my/52172/1/AYMAN%20KHALLEL%20IBRAHIM%20-%20TESIS%20cut.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| id |
my-usm-ep.52172 |
|---|---|
| record_format |
uketd_dc |
| spelling |
my-usm-ep.521722022-04-04T09:23:03Z The Dynamic Host Configuration Protocol Version 6 Security And Privacy Mechanism 2020-06 Ibrahim, Ayman Khallel QA75.5-76.95 Electronic computers. Computer science Internet Protocol version 6 (IPv6) is the most recent IP version that aims to accommodate hundreds of thousands of unique IP addresses for devices in the network. In IPv6 network, Dynamic Host Configuration Protocol version IPv6 (DHCPv6) is used to allocate and distribute IPv6 addresses and network configuration parameters to DHCPv6 clients. However, the DHCPv6 protocol was developed without a proper security mechanism making it vulnerable to various threats, such as rogue DHCPv6 server attack and passive attack. Two well-known issues of DHCPv6 are lack of verification mechanism that allows attackers to inject fake network configuration parameters into the network undetected; and privacy concerns due to lack of protection of client information in transit. In order to address these issues, several mechanisms were proposed by researchers to provide authentication and privacy protection for DHCPv6. However, most mechanisms lack the method to distribute the server authentication credentials; and ignore the client's privacy issue. This thesis intends to address the above mentioned issues by proposing DHCPv6Sec mechanism. DHCPv6Sec was evaluated and compared to Secure-DHCPv6 mechanism in terms of rogue DHCPv6 server prevention capability, privacy protection, processing time, traffic overhead, communication time, and message size limitation. The experiment results showed that DHCPv6Sec is superior in all aspects measured. DHCPv6Sec reduced processing time by 57%, and 136% during obtain IPv6 address and processing of Reconfigure message, respectively, compared to Secure-DHCPv6 mechanism. More, DHCPv6Sec reduced configuration time by 27% compared to Secure-DHCPv6 mechanism. 2020-06 Thesis http://eprints.usm.my/52172/ http://eprints.usm.my/52172/1/AYMAN%20KHALLEL%20IBRAHIM%20-%20TESIS%20cut.pdf application/pdf en public phd doctoral Universiti Sains Malaysia Pusat Pengajian Sains Komputer |
| institution |
Universiti Sains Malaysia |
| collection |
USM Institutional Repository |
| language |
English |
| topic |
QA75.5-76.95 Electronic computers Computer science |
| spellingShingle |
QA75.5-76.95 Electronic computers Computer science Ibrahim, Ayman Khallel The Dynamic Host Configuration Protocol Version 6 Security And Privacy Mechanism |
| description |
Internet Protocol version 6 (IPv6) is the most recent IP version that aims to accommodate hundreds of thousands of unique IP addresses for devices in the network. In IPv6 network, Dynamic Host Configuration Protocol version IPv6 (DHCPv6) is used to allocate and distribute IPv6 addresses and network configuration parameters to DHCPv6 clients. However, the DHCPv6 protocol was developed without a proper security mechanism making it vulnerable to various threats, such as rogue DHCPv6 server attack and passive attack. Two well-known issues of DHCPv6 are lack of verification mechanism that allows attackers to inject fake network configuration parameters into the network undetected; and privacy concerns due to lack of protection of client information in transit. In order to address these issues, several mechanisms were proposed by researchers to provide authentication and privacy protection for DHCPv6. However, most mechanisms lack the method to distribute the server authentication credentials; and ignore the client's privacy issue. This thesis intends to address the above mentioned issues by proposing DHCPv6Sec mechanism. DHCPv6Sec was evaluated and compared to Secure-DHCPv6 mechanism in terms of rogue DHCPv6 server prevention capability, privacy protection, processing time, traffic overhead, communication time, and message size limitation. The experiment results showed that DHCPv6Sec is superior in all aspects measured. DHCPv6Sec reduced processing time by 57%, and 136% during obtain IPv6 address and processing of Reconfigure message, respectively, compared to Secure-DHCPv6 mechanism. More, DHCPv6Sec reduced configuration time by 27% compared to Secure-DHCPv6 mechanism. |
| format |
Thesis |
| qualification_name |
Doctor of Philosophy (PhD.) |
| qualification_level |
Doctorate |
| author |
Ibrahim, Ayman Khallel |
| author_facet |
Ibrahim, Ayman Khallel |
| author_sort |
Ibrahim, Ayman Khallel |
| title |
The Dynamic Host Configuration Protocol Version 6 Security And Privacy Mechanism |
| title_short |
The Dynamic Host Configuration Protocol Version 6 Security And Privacy Mechanism |
| title_full |
The Dynamic Host Configuration Protocol Version 6 Security And Privacy Mechanism |
| title_fullStr |
The Dynamic Host Configuration Protocol Version 6 Security And Privacy Mechanism |
| title_full_unstemmed |
The Dynamic Host Configuration Protocol Version 6 Security And Privacy Mechanism |
| title_sort |
dynamic host configuration protocol version 6 security and privacy mechanism |
| granting_institution |
Universiti Sains Malaysia |
| granting_department |
Pusat Pengajian Sains Komputer |
| publishDate |
2020 |
| url |
http://eprints.usm.my/52172/1/AYMAN%20KHALLEL%20IBRAHIM%20-%20TESIS%20cut.pdf |
| _version_ |
1747822139765948416 |