Title: Advanced dynamic IPv6 activation-based defence for IPv6 router advertisement flooding (DoS) attack

Authors: Jai Narayan Goel; B.M. Mehtre

Addresses: School of Computer and Information Sciences, University of Hyderabad, Hyderabad 500046, India; Center for Cyber Security, Institute for Development and Research in Banking Technology, Hyderabad 500057, India ' Center for Cyber Security, Institute for Development and Research in Banking Technology, Hyderabad 500057, India

Abstract: IPv6 router advertisement (RA) flooding is an example of a DoS attack. It leads to denial of service attack on entire local area network. As a result, all systems connected to that LAN get frozen and unresponsive. Hence, it is very important to protect our LANs from IPv6 RA flood attack. In this paper, we describe IPv6 RA flood attack in virtual LAN using KALI Linux. We show its effects on the victim's computer. We propose a new approach to defend from IPv6 RA flooding DoS attack by dynamic IPv6 activation. Such a system would detect the attack and raise a warning alarm. It deactivates IPv6 temporarily. When the host recovers from the attack, the proposed system reactivates IPv6 again. So by using this approach users can use both IPv6 and IPv4 services even under attack. We have also provided pseudo code and experimental results in this paper.

Keywords: IPv6 RA flood attacks; router advertisement flooding; DoS attacks; denial of service; computer security; cyber defence; flood_router26; network security; cyber attacks; auto configuration; local area networks; LANs; dynamic IPv6 activation.

DOI: 10.1504/IJNS.2016.077219

International Journal of Network Science, 2016 Vol.1 No.2, pp.155 - 166

Received: 19 Jun 2015
Accepted: 01 Nov 2015

Published online: 24 Jun 2016 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article