June 23, 2013
June 23, 2013
June 26, 2013
Computing & Information Technology
23.834.1 - 23.834.11
IPv6 Security Course with Remote Labs - Design and DevelopmentAs the successor to the current Internet Protocol, IPv4, IPv6 is critical to the Internet's continuedgrowth as a platform for innovation and economic development. Work began on the nextgeneration protocol in 1994 and 18 years later adoption rates are still very low due to varioustechnological solutions, such as NAT, CIDR, and DHCP that were put into place to extend thelife of IPv4. However, it is becoming increasingly evident, even to the most ardent skeptics,that the replacement of IPv4 by IPv6 is inevitable. The transition is being driven by a number offorces: (1) the depletion of the IPv4 address space; (2) the proliferation of managed devicesbrought about by the Internet of Things; (3) the explosive growth of mobile broadband devices;(4) Government initiatives to increase IPv6 as a means to provide the next-generationinfrastructure to government sponsored initiatives; and (5) IETF standards designed to accelerateIPv6 adoption.As IPv6 deployments increase so too will the security threats to networks. Since networks willinitially be dual staked, running both IPv4 and IPv6, they will be vulnerable to attacks on bothprotocols. IPv6’s new features will generate new protocol attacks as the hacking communityactively targets IPv6. A lack of trained professionals and scarcity of IPv6-related networksecurity analysis and monitory tools will further add to potential network vulnerabilities. Forthese reasons, demand for network professionals who are trained in IPv6 and specifically IPv6security will be in high demand by the industry. The IPv6 Forum recognizes this need skilledIPv6 professionals and has created the IPv6 Forum Education Logo Program to encourage andaccelerate the education on IPv6 in colleges and universities.In this paper, we discuss the design and development of an undergraduate stand-alone distance-education course IPv6 security course that was developed in close partnership with an industryleader in IPv6 and that meets the IPv6 Forum’s Certified Security Engineer curriculumobjectives. Course topics, remote laboratory environment, and certification will also bepresented. The curriculum is designed to give students an understanding of IPv6-specific aspectsof IT security, the security implications of enabling IPv6 in the environment and the operationalaspects of managing an IT environment during the transition to IPv6, as well as best practices inimplementing and operating a complete IPv6 security lifecycle. Additionally, a review ofextensive remote-laboratory exercises that include mitigating IPv6 based reconnaissance andDDOS attacks, implementing IPv6 security best practice policies, mitigating security threatsintroduced by transition mechanisms, and updating security controls on infrastructure equipmentis presented.
pickard, J., & Chou, T., & Lunsford, P. J., & Spence, J. (2013, June), IPv6 Security Course with Remote Labs - Design and Development Paper presented at 2013 ASEE Annual Conference & Exposition, Atlanta, Georgia. https://peer.asee.org/19848
ASEE holds the copyright on this document. It may be read by the public free of charge. Authors may archive their work on personal websites or in institutional repositories with the following citation: © 2013 American Society for Engineering Education. Other scholars may excerpt or quote from these materials with the same citation. When excerpting or quoting from Conference Proceedings, authors should, in addition to noting the ASEE copyright, list all the original authors and their institutions and name the host city of the conference. - Last updated April 1, 2015