Feeds

What the hell is… IPv6?

Why it's happening, what it means, who's doing it

  • alert
  • submit to reddit

Protecting users from Firesheep and other Sidejacking attacks with SSL

There are just 4 billion possible IP addresses if we do not move from version 4 of the Internet Protocol to version 6. After the move, there would be 340 trillion trillion trillion (3.4 x 10**36) possible addresses under v6, because of the 128-bit address space. Scalability is just one reason to make the move, but the new levels of security that could be achieved - quite apart from much better network management, especially for mobile devices - make the move highly desirable. A further benefit of switching to IPv6 would be to get better and more reliable performance. Users mostly have little awareness of the routing problems in the global backbone, and the associated quality of service issues, but they are real enough to make it desirable to accelerate the move to v6. There are those who suggest that IPv4 extensions are capable of fixing problems as they arise, but introducing techniques like network address translators puts off the day when significantly better security could be achieved. An extremely important security feature is authentication of packets from a host. IPv4 servers cannot determine if the packets have been received from an acceptable node. A partial answer has been firewalls, but the consequences include a performance hit and restrictive policies. A blind eye has been turned towards the presence of sniffers for market research and network traffic analysis, but there is a great deal of latitude for misuse at this level, with resultant security and confidentiality compromises. With v6, there is end-to-end encryption at the network layer, and further handshaking protocols, to ensure a serious level of security unobtainable with v4. Apart from work on routers, the changes to accommodate IPv6 mostly require the inclusion of the protocol in the client operating system, with transparency so far as users are concerned. In the non-Microsoft world, in nearly all cases operating system developers are well-advanced in the incorporation of v6, although there are provisions in place to allow v4 and v6 to co-exist for many years. So far as implementations of IPv6 on non-Microsoft platforms is concerned, some of the horses have completed the course: IBM's AIX has it built in, as does Novell's NetWare, and BSDI. Some Linux distributions have it. Sun has a prototype for Solaris 7 (and first made v6 available in 1995); Compaq has a Tru64 prototype available for download; and HP has a developers' kit. Horses currently running include  Apple, now building IPv6 into MacOS X, and some Linux distributors who have not yet included it. Microsoft is galloping in the first furlong, with the jockey valiantly shouting: "Wait for us, we're the innovators." ®

Website security in corporate America

More from The Register

next story
Hey, Scots. Microsoft's Bing thinks you'll vote NO to independence
World's top Google-finding website calls it for the UK
Phones 4u slips into administration after EE cuts ties with Brit mobe retailer
More than 5,500 jobs could be axed if rescue mission fails
Apple CEO Tim Cook: TV is TERRIBLE and stuck in the 1970s
The iKing thinks telly is far too fiddly and ugly – basically, iTunes
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
Huawei ditches new Windows Phone mobe plans, blames poor sales
Giganto mobe firm slams door shut on Microsoft. OH DEAR
Phones 4u website DIES as wounded mobe retailer struggles to stay above water
Founder blames 'ruthless network partners' for implosion
Found inside ISIS terror chap's laptop: CELINE DION tunes
REPORT: Stash of terrorist material found in Syria Dell box
OECD lashes out at tax avoiding globocorps' location-flipping antics
You hear that, Amazon, Google, Microsoft et al?
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.