Feeds

Net shakeup looms as IPv4 resources start running low

There's a bit of unused space, just behind the sofa

Top three mobile application threats

Analysis A new study has called into question the previous received wisdom that IPv4 addresses are running out, forcing the long-heralded move to IPv6.

The migration to IPv6 is needed because it offers a massively increased address space as well as advantages in mobility and security. The use of technologies such as Network Address Translation, which means corporate PCs all sit behind a small range of IP addresses, has held back the long anticipated move towards IPv6 for years.

More recently, the greater use of internet-connected mobile devices has been eating up IPv4 address space. Or so many reckon.

However, a study by cloud security firm Zscaler published last week paints a very different picture. Zscaler reckons that despite reports stating we’re running out of IPv4 address space, much of the internet remains untouched.

Mike Geide, senior security researcher for Zscaler, explained: "Allocated, public IPv4 space by nature is used to provide internet accessible services and content. Web, mail, and DNS make up the majority of these Internet services."

The firm's findings were drawn from a study of sites visited by Zscaler customers, which it reckons provides good insight into the portions of the web that are being leveraged by enterprises.

"From Zscaler's large and diverse customer base and our billions of web transactions serviced, we are able to infer that the large amount of 'untouched' IP space from our customers is a good representation of internet as a whole," said Geide. "In other words, much of the IPv4 space is not utilised to provide public, internet-facing services or content."

Numbers up

Reports elsewhere, citing Internet Assigned Numbers Authority (IANA), which oversees the net address space, predicts that the entire pool of IPv4 addresses will be depleted by April 2012, the BBC reports. Major tranches will all go before then, or July 2011, according to the latest estimates.

Figures published in April from the The Number Resource Organization, which works with regional internet registries in allocating internet number resources (IPv6 and IPv4 addresses), estimate that just 7.8 percent of IPv4 addresses are left unallocated.

Pv6 was established as a replacement for IPv4, the current generation of Internet Protocol, by the IETF way back 1995. IPv4 has a 32-bit address space offering up to 4.3 billion addresses. IPv6 offers a much larger address space, due to the use of 128-bit addresses.

Support for the protocol has been available for years. For example, Cisco added IPv6 support to its routers and switches back in 2001. Mac OS X has supported IPv6 since 2006, with built-in support for Windows coming with the introduction of Windows Vista.

“The allocation rate of IPv4 addresses continues to increase due to the growing number of devices that require IP addresses - mobile phones, laptops, servers, routers, and more,” said Axel Pawlik, chair of the NRO. “We have also seen many new IP address requests from developing countries, whose populations are coming online more quickly than ever before.”

NRO reports that it made 186 IPv6 allocations in the first quarter of 2010, more than in the whole of any previous year, a sign that government, large organisations and service providers are beginning to switch over to the next generation internet protocol.

Black market fears

Mismatch between supply and demand in any market creates problems. The market for internet addresses is no exception to the hard rules of economics. Some recent reports suggest a black market in traditional IPv4 addresses is in the process of developing. This is of concern to many outside the sys admin community because it could have a knock-on effect on internet access prices.

Trial projects by the US government and others have laid the framework and helped to establish best practice for IPv6 migration but the process is far from straightforward and requires co-ordination. What's likely to happen is a co-existence of IPv4 and IPv6 addresses for the next five years or so.

After years of treating IPv6 migration as a low priority service providers and enterprises are beginning to talk seriously about roll-outs and deployments, if a recent post by network security firm Arbor are anything to go by. Even so many content providers, service providers and governments may still need a helpful push in the right direction before they are ready to make the plunge, Arbor's Carlos Morales explained.

"One challenge is that ARIN is still handing out IP address blocks with little to no resistance. This ensures business continuity but it also makes it so that some people, particularly those responsible for the bottom line, don’t perceive the gravity of the situation and hold back major IPv6 initiatives.

"The evidence of IPv4 exhaustion is so overwhelming that it is only a matter of time before the objections are overcome and major IPv6 initiatives begin across the Internet community." ®

Top three mobile application threats

More from The Register

next story
A black box for your SUITCASE: Now your lost luggage can phone home – quite literally
Breakfast in London, lunch in NYC, and your clothes in Peru
Broadband Secretary of SHEEP sensationally quits Cabinet
Maria Miller finally resigns over expenses row
Skype pimps pro-level broadcast service
Playing Cat and Mouse with the media
EE dismisses DATA-BURNING glitch with Orange Mail app
Bug quietly slurps PAYG credit - yet EE denies it exists
Like Google, Comcast might roll its own mobile voice network
Says anything's possible if regulators approve merger with Time Warner
Turnbull leaves Australia's broadband blackspots in the dark
New Statement of Expectations to NBN Co offers get-out clauses for blackspot builds
Facebook claims 100 MEEELLION active users in India
Who needs China when you've got the next billion in your sights?
Facebook splats in-app chat, whacks brats into crack yakety-yak app
Jibber-jabbering addicts turfed out just as Zuck warned
prev story

Whitepapers

Designing a defence for mobile apps
In this whitepaper learn the various considerations for defending mobile applications; from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.