Authentication and Privacy Approach for DHCPv6
Dynamic Host Configuration Protocol for IPv6 (DHCPv6) is used to allocate and distribute IPv6 addresses and network configuration parameters to DHCPv6 clients. Two well-known issues of DHCPv6 are privacy concerns due to lack of protection of client information in transit, and lack of verification me...
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
IEEE
2019-01-01
|
| Series: | IEEE Access |
| Subjects: | |
| Online Access: | https://ieeexplore.ieee.org/document/8726291/ |
| _version_ | 1819132934707216384 |
|---|---|
| author | Ayman Al-Ani Mohammed Anbar Iznan Husainy Hasbullah Rosni Abdullah Ahmed K. Al-Ani |
| author_facet | Ayman Al-Ani Mohammed Anbar Iznan Husainy Hasbullah Rosni Abdullah Ahmed K. Al-Ani |
| author_sort | Ayman Al-Ani |
| collection | DOAJ |
| description | Dynamic Host Configuration Protocol for IPv6 (DHCPv6) is used to allocate and distribute IPv6 addresses and network configuration parameters to DHCPv6 clients. Two well-known issues of DHCPv6 are privacy concerns due to lack of protection of client information in transit, and lack of verification mechanism that allows attackers to inject fake network configuration parameters into the network undetected. This paper proposes DHCPv6 security (DHCPv6Sec) approach that is based on a hybrid cryptosystem to provide authentication for the DHCPv6 server messages and to protect the privacy of the DHCPv6 client. The DHCPv6Sec was evaluated and compared to the Secure-DHCPv6 in terms of processing time, traffic overhead, rogue DHCPv6 server prevention, privacy protection, and DHCPv6 message size limitation. The experiment results show that the DHCPv6Sec has 52% less processing time; 74% less traffic overhead; and remarkable superiority in all aspects measured. |
| first_indexed | 2024-12-22T09:39:17Z |
| format | Article |
| id | doaj.art-39003ec6e63a46878719e4fdc1866389 |
| institution | Directory Open Access Journal |
| issn | 2169-3536 |
| language | English |
| last_indexed | 2024-12-22T09:39:17Z |
| publishDate | 2019-01-01 |
| publisher | IEEE |
| record_format | Article |
| series | IEEE Access |
| spelling | doaj.art-39003ec6e63a46878719e4fdc18663892022-12-21T18:30:44ZengIEEEIEEE Access2169-35362019-01-017731447315610.1109/ACCESS.2019.29199668726291Authentication and Privacy Approach for DHCPv6Ayman Al-Ani0https://orcid.org/0000-0001-8391-5887Mohammed Anbar1https://orcid.org/0000-0002-7026-6408Iznan Husainy Hasbullah2Rosni Abdullah3Ahmed K. Al-Ani4https://orcid.org/0000-0003-1146-7119National Advanced IPv6 Centre (NAv6), Universiti Sains Malaysia, Penang, MalaysiaNational Advanced IPv6 Centre (NAv6), Universiti Sains Malaysia, Penang, MalaysiaNational Advanced IPv6 Centre (NAv6), Universiti Sains Malaysia, Penang, MalaysiaNational Advanced IPv6 Centre (NAv6), Universiti Sains Malaysia, Penang, MalaysiaNational Advanced IPv6 Centre (NAv6), Universiti Sains Malaysia, Penang, MalaysiaDynamic Host Configuration Protocol for IPv6 (DHCPv6) is used to allocate and distribute IPv6 addresses and network configuration parameters to DHCPv6 clients. Two well-known issues of DHCPv6 are privacy concerns due to lack of protection of client information in transit, and lack of verification mechanism that allows attackers to inject fake network configuration parameters into the network undetected. This paper proposes DHCPv6 security (DHCPv6Sec) approach that is based on a hybrid cryptosystem to provide authentication for the DHCPv6 server messages and to protect the privacy of the DHCPv6 client. The DHCPv6Sec was evaluated and compared to the Secure-DHCPv6 in terms of processing time, traffic overhead, rogue DHCPv6 server prevention, privacy protection, and DHCPv6 message size limitation. The experiment results show that the DHCPv6Sec has 52% less processing time; 74% less traffic overhead; and remarkable superiority in all aspects measured.https://ieeexplore.ieee.org/document/8726291/IPv6 networkDHCPv6 serverrogue DHCPv6 server attackDHCPv6IPv6 privacy |
| spellingShingle | Ayman Al-Ani Mohammed Anbar Iznan Husainy Hasbullah Rosni Abdullah Ahmed K. Al-Ani Authentication and Privacy Approach for DHCPv6 IEEE Access IPv6 network DHCPv6 server rogue DHCPv6 server attack DHCPv6 IPv6 privacy |
| title | Authentication and Privacy Approach for DHCPv6 |
| title_full | Authentication and Privacy Approach for DHCPv6 |
| title_fullStr | Authentication and Privacy Approach for DHCPv6 |
| title_full_unstemmed | Authentication and Privacy Approach for DHCPv6 |
| title_short | Authentication and Privacy Approach for DHCPv6 |
| title_sort | authentication and privacy approach for dhcpv6 |
| topic | IPv6 network DHCPv6 server rogue DHCPv6 server attack DHCPv6 IPv6 privacy |
| url | https://ieeexplore.ieee.org/document/8726291/ |
| work_keys_str_mv | AT aymanalani authenticationandprivacyapproachfordhcpv6 AT mohammedanbar authenticationandprivacyapproachfordhcpv6 AT iznanhusainyhasbullah authenticationandprivacyapproachfordhcpv6 AT rosniabdullah authenticationandprivacyapproachfordhcpv6 AT ahmedkalani authenticationandprivacyapproachfordhcpv6 |