Protecting Hosts in IPv6 Networks

March 15, 2016 (at 10:15 a.m.) in Day 2 Track 2

From a host's perspective the threat profile has changed quite a bit in IPv6 networks. For example in IPv4 router advertisements did not really exist (let's ignore RFC 1256 for a moment) and MLD's predecessor IGMP usually wasn't enabled by default.

On the other hand there's a number of "Hardening IPv6" recommendations around, including the guides we wrote ourselves (1,2,3). Still, namely from an operations perspective one has to be careful which actual steps to apply. In this talk we'll discuss what works and what doesn't when it comes to applying IPv6 security measures to individual systems.

Enno Rey

Enno Rey @Enno_Insinuator is an old school network security guy who has been involved with IPv6 since 1999. In the last years he has contributed to many IPv6 projects in very large environments, both on a planning and on a technical implementation level.