Fernando Gaunt talks about IPv6 security at PHDays 8

There are only a few days left for Call for Papers. The program committee has already selected the first group of speakers included in the main technical program, and at the beginning of March we introduced you to one of the key forum speakers Ilfak Gilfanov . If you want to speak on the same platform with eminent security experts, you have one last chance - you can submit an application until March 31 . In the meantime, as you prepare, we will introduce another key technical report from the forum.


An expert and security consultant at SI6 Networks, Fernando Gaunt, will speak at PHDays 8. He specializes in security studies of data transfer protocols, and collaborates with private and public organizations around the world. He has been involved in protocol security projects for the National Infrastructure Security Coordination Center (NISCC) and the UK Center for the Protection of National Infrastructure (CPNI). As part of his work, he wrote recommendations for network engineers and developers of the TCP / IP protocol suite, and was the first to conduct a full-fledged analysis of the security of the IPv6 protocol.

At PHDays, Gaunt will give a talk, “How We Moved to Secure IPv6.”

The whole world is moving to a new version of the Internet protocol - IPv6, which was developed taking into account the future development of the Internet. It is already supported by content providers such as Google and Facebook, and several major Internet providers, and many organizations have planned to deploy it in the next few years.

IPv6 should solve the Internet address problems that IPv4 has encountered by using an address length of 128 bits. Despite the fact that the IPv6 function is the same as that of IPv4 (moving packets over the network), there are serious differences between the two protocols and the peculiarities of interaction between them, which can lead to serious security problems.

Recently, information security experts report a sharp increase in the number of network attacks that exploit known IPv6 vulnerabilities. In early March, the first DDoS attack from IPv6 nodes was registered . About 1,900 native IPv6 nodes belonging to more than 650 different networks turned out to be sources of a DNS dictionary attack. The victim of the attack was the Neustar DNS service network.

By the way, it was Gaunt who helped develop RFC 8021, a patch designed to prevent fragmentation attacks on routers running IPv6 on large-scale networks.

As part of the PHDays 8 report, Fernando Gaunt will talk in detail about the IPv6 protocol and how its current level of security was achieved. The speaker will talk about the main decisions made to standardize the protocol and their impact on security and privacy. He will analyze the IPv6 vulnerabilities that an attacker could exploit. He will also demonstrate the tools that are publicly available through which these vulnerabilities are exploited.

Register and come to Positive Hack Days to listen to the live performance!