Analysis and Optimization of Cryptographically Generated Addresses
ISC '09 Proceedings of the 12th International Conference on Information Security
The privacy implications of stateless IPv6 addressing
Proceedings of the Sixth Annual Workshop on Cyber Security and Information Intelligence Research
WinSEND: Windows SEcure Neighbor Discovery
Proceedings of the 4th international conference on Security of information and networks
Stopping time condition for practical IPv6 Cryptographically Generated Addresses
ICOIN '12 Proceedings of the The International Conference on Information Network 2012
Multicore-based auto-scaling SEcure Neighbor Discovery for Windows operating systems
ICOIN '12 Proceedings of the The International Conference on Information Network 2012
Privacy and security in IPv6 networks: challenges and possible solutions
Proceedings of the 6th International Conference on Security of Information and Networks
Hi-index | 0.00 |
Included in the IPv6 suite is a method for devices to automatically configure their own addresses in a secure manner. This technique is called Cryptographically Generated Addresses (CGAs). CGA provides the ownership proof necessary for an IPv6 address without relying on any trust authority. However, the CGA's computation is very high, especially for a high security level defined by the security parameter (Sec). Therefore, the high cost of address generation may keep hosts that use a high Sec values from changing their addresses on a frequent basis. This results in hosts still being susceptible to privacy related attacks. This paper proposes modifications to the standard CGA to make it more applicable security approach while protecting user privacy. We make CGA more privacy-conscious by changing addresses over time which protects users from being tracked. We propose to reduce the CGA granularity of the security level from 16 to 8. We believe that an 8 granularity is more feasible for use in most applications and scenarios. These extensions to the standard CGA are implemented and evaluated.