5. Attacks on the ND protocol
There are 2 categories of vulnerabilities for the NDP mechanism:
The first category concerns attacks external to the network link where potential victims are located;
The second category is based on attacks inside the network link.
5.1 External attacks
When a router receives an IPv6 packet destined for a node on this subnet, according to the NDP specifications, it must check whether it already has the information concerning the recipient of this IPv6 packet in its Neighbor Cache, so that it can forward it. If this is not the case, it stores the IPv6 packet and applies the ND procedure (§
The Ultimate Scientific and Technical Reference
This article is included in
Networks and Telecommunications
This offer includes:
Knowledge Base
Updated and enriched with articles validated by our scientific committees
Services
A set of exclusive tools to complement the resources
Practical Path
Operational and didactic, to guarantee the acquisition of transversal skills
Doc & Quiz
Interactive articles with quizzes, for constructive reading
Attacks on the ND protocol
ND protocol palliative protection solutions
Bibliography
Websites
NIST-CSRC – National Institute of Standards and Technology Computer Security Resource Center http://csrc.nist.gov
IANA – Internet Assigned Numbers Authority – Domain name management, number resources and protocol assignment http://www.iana.org
The Ultimate Scientific and Technical Reference
