Deploy360 31 January 2012

TechRepublic: Are You Thinking About IPv6 Security With World IPv6 Launch Looming?

By Dan YorkDirector, Internet Technology

Techrepublic In a TechRepublic article out today titled “World IPv6 launch day set: Security pitfalls to look out for“, author Patrick Lambert asks a key question related to World IPv6 Launch on June 6, 2012:

Now, this year is the real deal. On June 6, the IPv6 switch gets turned on again, but this time it will stay on. But what does this mean for organizations and companies? Is everyone ready, and if not, will things break? Worse, are there security concerns that may arise from such a major event?

He rightly points out that the IPv4 to IPv6 transition technologies – and the wide number of them – may cause some of the largest security headaches. Similarly Internet Service Providers who are not planning ahead may be an issue:

While I have all confidence that Comcast and AT&T will get their transition systems working, when some small provider finds out that they can’t get another batch of IPv4 addresses from their upstream link, and instead get IPv6 addresses, and they need to rush to adapt, that may be a different story.

He goes on to mention issues around IPv6 numbering and also the immaturity of IPv6 network stacks compared to their IPv4 counterparts. He ends with an upbeat caution:

Overall, all of these issues shouldn’t dissuade anyone from moving on with their IPv6 implementations, but it’s good to remember that as World IPv6 Day approaches, and the big players like Comcast, AT&T, Facebook, Google, and so on are all on board, it’s always the small players that are going to be playing catch up, and may get things wrong. And that’s where a particular attention should be paid to implementation security, and making sure things are done right.

With World IPv6 Launch approaching, what are you doing to ensure the security of your network once it moves to IPv6?

P.S. If you need help with IPv6 and your network, check out our IPv6 resources.

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Related articles

Improving Technical Security 15 March 2019

DNS Privacy Frequently Asked Questions (FAQ)

We previously posted about how the DNS does not inherently employ any mechanisms to provide confidentiality for DNS transactions,...

Improving Technical Security 14 March 2019

Introduction to DNS Privacy

Almost every time we use an Internet application, it starts with a DNS (Domain Name System) transaction to map...

Improving Technical Security 13 March 2019

IPv6 Security for IPv4 Engineers

It is often argued that IPv4 practices should be forgotten when deploying IPv6, as after all IPv6 is a...