Abstract: The vast address space of IPv6 will have major implications for Internet and network security. The Research stage of this project included an analysis of current packet inspection and traffic filtering systems, and also the countermeasures, deployed on the IPv4-based Internet. The Development stage proposes a design for a secure communications system that is highly resistant to Internet surveillance and traffic filtering methods, incorporating IPv6 address switching, encryption and IPsec. The Evaluation stage assessed the potential for a real-world implementation of this system.
The dissertation report and accompanying software was submitted at the University of Wales, Newport (now the University of South Wales) in May 2013.
// System Overview //
A peer-to-peer system, this is based on a software client that manages application-layer encryption, IPsec tunneling and IP address management. To counter traffic inspection and filtering, communicating parties within a group select a specific address from within a range using a Secret Address Generation Algorithm – this address is known only within the group, and it changes every x number of minutes.
After addresses are determined, the clients establish tunnel-mode IPsec connections to further protect the content of their communications, and symmetric encryption might be used in addition to this.
// Resources //
HUGHES, L. 2010. The Second Internet. InfoWeapons. [PDF]. www.ipv6forum.com/dl/books/the_second_internet.pdf. 6th June 2017.
HURRICANE ELECTRIC.2017. Hurricane Electric Free IPv6 Tunnel Broker. [WWW]. https://tunnelbroker.net. 8th June 2017.
NARTEN, T., HUSTONM, G., ROBERTS, L. 2011. IETF Network Working Group. RFC 6177: IPv6 Address Assignment to End Sites. [TXT]. https://tools.ietf.org/html/rfc6177. 7th June 2017.
NARTEN, T., NORDMARK, E., SIMPSON, W. 2007. IETF Network Working Group. RFC 4861: Neighbor Discovery for IP version 6 (IPv6). [TXT]. https://tools.ietf.org/html/rfc4861. 6th June 2017.
PYTHON SOFTWARE FOUNDATION. 2017. Python 3.6.1 Documentation. ipaddress — IPv4/IPv6 manipulation library. [WWW]. https://docs.python.org/3/library/ipaddress.html#module-ipaddress. 6th June 2017.