IPv6 Security Course with Remote Labs - Design and Development

john pickard; Te-shun Chou; Philip J Lunsford; John Spence

Download Paper | Permalink

Conference: 2013 ASEE Annual Conference & Exposition
Location: Atlanta, Georgia
Publication Date: June 23, 2013
Start Date: June 23, 2013
End Date: June 26, 2013
ISSN: 2153-5965
Conference Session: Information and Network Security
Tagged Division: Computing & Information Technology
Page Count: 11
Page Numbers: 23.834.1 - 23.834.11
DOI: 10.18260/1-2--19848
Permanent URL: https://peer.asee.org/19848
Download Count: 882

Request a correction

Paper Authors

biography

john pickard East Carolina University

visit author page

Instructor
Department of Technology Systems
East Carolina University

visit author page

author page

Te-shun Chou East Carolina University

biography

Philip J Lunsford II P.E. East Carolina University

visit author page

Dr. Philip Lunsford is an Associate Professor in the Department of Technology Systems at East Carolina University in Greenville, NC. He received a Bachelor of Science in Electricall Engineering and an Masters of Science in Electrical engineering from the Georgia Institute of Technology, and a Ph.D. in Electrical engineering from North Carolina State University. His research interests includee information security, communication technologies, and the cross-discipline application of technologies. Dr. Lunsford is a registered Professional Engineer and a member of ACM, ASEE, and IEEE.

visit author page

author page

John Spence

Download Paper | Permalink

Abstract

IPv6 Security Course with Remote Labs - Design and DevelopmentAs the successor to the current Internet Protocol, IPv4, IPv6 is critical to the Internet's continuedgrowth as a platform for innovation and economic development. Work began on the nextgeneration protocol in 1994 and 18 years later adoption rates are still very low due to varioustechnological solutions, such as NAT, CIDR, and DHCP that were put into place to extend thelife of IPv4. However, it is becoming increasingly evident, even to the most ardent skeptics,that the replacement of IPv4 by IPv6 is inevitable. The transition is being driven by a number offorces: (1) the depletion of the IPv4 address space; (2) the proliferation of managed devicesbrought about by the Internet of Things; (3) the explosive growth of mobile broadband devices;(4) Government initiatives to increase IPv6 as a means to provide the next-generationinfrastructure to government sponsored initiatives; and (5) IETF standards designed to accelerateIPv6 adoption.As IPv6 deployments increase so too will the security threats to networks. Since networks willinitially be dual staked, running both IPv4 and IPv6, they will be vulnerable to attacks on bothprotocols. IPv6’s new features will generate new protocol attacks as the hacking communityactively targets IPv6. A lack of trained professionals and scarcity of IPv6-related networksecurity analysis and monitory tools will further add to potential network vulnerabilities. Forthese reasons, demand for network professionals who are trained in IPv6 and specifically IPv6security will be in high demand by the industry. The IPv6 Forum recognizes this need skilledIPv6 professionals and has created the IPv6 Forum Education Logo Program to encourage andaccelerate the education on IPv6 in colleges and universities.In this paper, we discuss the design and development of an undergraduate stand-alone distance-education course IPv6 security course that was developed in close partnership with an industryleader in IPv6 and that meets the IPv6 Forum’s Certified Security Engineer curriculumobjectives. Course topics, remote laboratory environment, and certification will also bepresented. The curriculum is designed to give students an understanding of IPv6-specific aspectsof IT security, the security implications of enabling IPv6 in the environment and the operationalaspects of managing an IT environment during the transition to IPv6, as well as best practices inimplementing and operating a complete IPv6 security lifecycle. Additionally, a review ofextensive remote-laboratory exercises that include mitigating IPv6 based reconnaissance andDDOS attacks, implementing IPv6 security best practice policies, mitigating security threatsintroduced by transition mechanisms, and updating security controls on infrastructure equipmentis presented.

Citation
Format

pickard, J., & Chou, T., & Lunsford, P. J., & Spence, J. (2013, June), IPv6 Security Course with Remote Labs - Design and Development Paper presented at 2013 ASEE Annual Conference & Exposition, Atlanta, Georgia. 10.18260/1-2--19848

TY  - CPAPER
AB  -          IPv6 Security Course with Remote Labs - Design and DevelopmentAs the successor to the current Internet Protocol, IPv4, IPv6 is critical to the Internet&#39;s continuedgrowth as a platform for innovation and economic development. Work began on the nextgeneration protocol in 1994 and 18 years later adoption rates are still very low due to varioustechnological solutions, such as NAT, CIDR, and DHCP that were put into place to extend thelife of IPv4. However, it is becoming increasingly evident, even to the most ardent skeptics,that the replacement of IPv4 by IPv6 is inevitable. The transition is being driven by a number offorces: (1) the depletion of the IPv4 address space; (2) the proliferation of managed devicesbrought about by the Internet of Things; (3) the explosive growth of mobile broadband devices;(4) Government initiatives to increase IPv6 as a means to provide the next-generationinfrastructure to government sponsored initiatives; and (5) IETF standards designed to accelerateIPv6 adoption.As IPv6 deployments increase so too will the security threats to networks. Since networks willinitially be dual staked, running both IPv4 and IPv6, they will be vulnerable to attacks on bothprotocols. IPv6’s new features will generate new protocol attacks as the hacking communityactively targets IPv6. A lack of trained professionals and scarcity of IPv6-related networksecurity analysis and monitory tools will further add to potential network vulnerabilities. Forthese reasons, demand for network professionals who are trained in IPv6 and specifically IPv6security will be in high demand by the industry. The IPv6 Forum recognizes this need skilledIPv6 professionals and has created the IPv6 Forum Education Logo Program to encourage andaccelerate the education on IPv6 in colleges and universities.In this paper, we discuss the design and development of an undergraduate stand-alone distance-education course IPv6 security course that was developed in close partnership with an industryleader in IPv6 and that meets the IPv6 Forum’s Certified Security Engineer curriculumobjectives. Course topics, remote laboratory environment, and certification will also bepresented. The curriculum is designed to give students an understanding of IPv6-specific aspectsof IT security, the security implications of enabling IPv6 in the environment and the operationalaspects of managing an IT environment during the transition to IPv6, as well as best practices inimplementing and operating a complete IPv6 security lifecycle. Additionally, a review ofextensive remote-laboratory exercises that include mitigating IPv6 based reconnaissance andDDOS attacks, implementing IPv6 security best practice policies, mitigating security threatsintroduced by transition mechanisms, and updating security controls on infrastructure equipmentis presented.
AU  - john pickard
AU  - Te-shun Chou
AU  - Philip J Lunsford II P.E.
AU  - John Spence
CY  - Atlanta, Georgia
DA  - 2013/06/23
PB  - ASEE Conferences
TI  - IPv6 Security Course with Remote Labs - Design and Development
UR  - https://peer.asee.org/19848
DO  - 10.18260/1-2--19848
ER  -