Donate
Hello IPv6, Goodbye CGNs – Recent Discussions at a EU/Europol Meeting Thumbnail
‹ Back
Deploy360 24 October 2017

Hello IPv6, Goodbye CGNs – Recent Discussions at a EU/Europol Meeting

Megan Kruse
By Megan KruseBusiness Director, Online Trust Alliance

Jan Zorz was recently invited to speak at a workshop held by the Estonian Presidency of the Council of the EU and Europol. Jan gave a well-received talk about how Slovenia widely deployed IPv6 and encouraged EU policymakers and law enforcement officials to do the same across Europe.

Per the press release, the workshop was “to address the increasing problem of non-crime attribution associated with the widespread use of Carrier Grade Network Address Translation (CGN) technologies by companies that provide access to the internet.”

With IPv4 address space depleting, CGNs have been widely implemented to conserve public IPv4 address space. In other words, many customers are sharing a single public IPv4 address that often also changes over time. Problems with sharing IP addresses (and therefore CGNs) are well outlined in RFC 6269: “Such issues include application failures, additional service monitoring complexity, new security vulnerabilities, and so on.”

CGNs also present a problem for law enforcement agencies looking to investigate and prosecute crimes online, as it’s much more difficult to narrow down the culprit. This workshop had several IPv6 experts speak of their experiences, partially on the assertion that IPv6 deployment would eliminate CGNs and once again allow law enforcement to track individual users via their IP addresses.

The Internet Society strongly believes in enabling private communications over the Internet, though we understand this can be a divisive issue as law enforcement has legitimate concerns relating to public safety and security and the ability to prosecute criminals. This is a policy discussion we won’t delve into here, but you can read about our upcoming Chatham House Roundtable on Encryption and Lawful Access to learn more about our work.

Back to the topic of IPv6, we are encouraged to see Europol and the EU discussing the need for full IPv6 deployment in public meetings. CGNs are not a sustainable path forward for a variety of reasons, and the faster we fully deploy IPv6, the better off the Internet will be.

If you’d like to get started with your own IPv6 deployment, check out our Deploy360 Start Here page where we have created a series of pages pointing to specific resources that are relevant to different audiences.

‹ Back

Disclaimer: Viewpoints expressed in this post are those of the author and may or may not reflect official Internet Society positions.

Related articles

CGN, IPv6 and fighting online crime...
CGN, IPv6 and fighting online crime...
Improving Technical Security10 March 2018

CGN, IPv6 and fighting online crime…

Carrier Grade NAT (CGN) is commonly used by network operators as a way of ekeing out the limited supply of...

The Network Forensics problem of IPv4
Deploy36010 March 2017

The Network Forensics problem of IPv4

Although not directly on the subject IPv6, we absolutely need to draw your attention to a great presentation from Geoff Huston (APNIC)...

RIPE 73 - Highlights from Day 1
Deploy36025 October 2016

RIPE 73 – Highlights from Day 1

The RIPE 73 meeting is happening this week in Madrid. Spain is less than sunny at this time of the year,...

Join the conversation with Internet Society members around the world