IPv6的安全威胁.pdf

IPV6 的安全威脅 James Wu Cisco Confidential 1 SEC-2003 © 2005 Cisco Systems, Inc. All rights reserved. Agenda • Types of Threat • IPv6 Protocol Summary (quick) • IPv6 and IPv4 Threat Comparisons • Enforcing a Security Policy in IPv6 • Specific Issues for IPv6 Cisco Confidential 2 SEC-2003 © 2005 Cisco Systems, Inc. All rights reserved. TYPES OF THREATS Cisco Confidential 3 SEC-2003 © 2005 Cisco Systems, Inc. All rights reserved. Types of Threats • Reconnaissance—Provide the adversary with information enabling other attacks • Unauthorized access—Exploit the open transport policy inherent in the IPv4 protocol • Header manipulation and fragmentation—Evade or overwhelm network devices with carefully crafted packets • Layer 3–layer 4 spoofing—Modify the IP address and port information to mask the intent or origin of the traffic • ARP and DHCP attacks—Subvert the host initialization process or a device the host accesses for transit • Broadcast amplification attacks (smurf)—Amplify the effect of an ICMP flood by bouncing traffic off of a network which inappropriately processes directed ICMP echo traffic • Routing attacks—Disrupt or redirect traffic flows in a network Cisco Confidential 4 SEC-2003 © 2005 Cisco Systems, Inc. All rights reserved. Types of Threats (Cont.) • Viruses and worms—Attacks which infect hosts