Presentation is loading. Please wait.

Presentation is loading. Please wait.

IPv6 Prefix Discovery Murray S. Kucherawy. Today IPv4-based email abuse prevention relies heavily on a database of IP addresses with bad reputations A.

Published byJuan Steele Modified over 10 years ago

Similar presentations

Presentation on theme: "IPv6 Prefix Discovery Murray S. Kucherawy. Today IPv4-based email abuse prevention relies heavily on a database of IP addresses with bad reputations A."— Presentation transcript:

1 IPv6 Prefix Discovery Murray S. Kucherawy

2 Today IPv4-based email abuse prevention relies heavily on a database of IP addresses with bad reputations A database of addresses is no larger than 4.3 billion entries (of course) Most popular expression of these is the RBL (Realtime Block List, RFCxxxx), which is published via the DNS

3 RBLs Query: 1.2.3.4.rbl-root, ask for A Reply: NXDOMAIN, or 127.0.0.1 – Or sometimes the octets in the reply encode reputation data Caching and redundancy keep this functional and practical – …so far

4 IPv6 Vastly larger address space Not practical to consider tracking reputation about each of them No standard delegation size; commonly between /48 and /64 A spammer could send junk from such a network and rarely, if ever, re-use a single address

5 RBLs under IPv6 Ignoring database size for a moment, this still wont work A spammer changing IP address quickly will mean caching of previous answers becomes useless And other cached data will be flushed because of space limits So this would clobber the DNS in general

6 Whats needed We need to be able to figure out, given an IP address, the size of the endpoint delegation Allows address aggregation by reputation systems Keeps the query space about the same as it is for IPv4 now IRTF has an idea out there that allows the DNS to express IP ranges

7 Some ideas Publish it via WHOIS – WHOIS isnt standard and doesnt seem scalable – Some registrars cant be trusted to publish real data Get it from BGP – MTAs dont really have access to BGP data – Wed need a standard interface to exchange it between the lower layers and the higher ones

8 Can you help? Does this working groups mandate fit the idea of exploring this? Or does it belong in some other WG? How would you suggest we go about doing this?

Download ppt "IPv6 Prefix Discovery Murray S. Kucherawy. Today IPv4-based email abuse prevention relies heavily on a database of IP addresses with bad reputations A."

Similar presentations

BGP Unallocated Address Route Server Geoff Huston March 2002.

BGP Unallocated Address Route Server Geoff Huston March 2002.
1 Taiwan Routing table statistics – a new service in TWNIC Ching-Heng Ku IP Department TWNIC.

1 Taiwan Routing table statistics – a new service in TWNIC Ching-Heng Ku IP Department TWNIC.
DNS Proxy Bypass by Recursive DNS Discovery and LOCAL.ARPA draft-ietf-dns-recursive-discovery Ray Bellis IETF76 DNSOP WG Hiroshima, 11 th November 2009.

DNS Proxy Bypass by Recursive DNS Discovery and LOCAL.ARPA draft-ietf-dns-recursive-discovery Ray Bellis IETF76 DNSOP WG Hiroshima, 11 th November 2009.
Internet Applications INTERNET APPLICATIONS. Internet Applications Domain Name Service Proxy Service Mail Service Web Service.

Internet Applications INTERNET APPLICATIONS. Internet Applications Domain Name Service Proxy Service Mail Service Web Service.
Applications Test Results in MIF environment draft-zheng-mif-apps-test-02.txt IETF 81 Quebec City.

Applications Test Results in MIF environment draft-zheng-mif-apps-test-02.txt IETF 81 Quebec City.
Lecturer, Department of Computer Application

Lecturer, Department of Computer Application
IP Address Presented by Ravi Namboori. IP Address IP Address is a numerical number assigned to each and every device which is looped in a computer network.

IP Address Presented by Ravi Namboori. IP Address IP Address is a numerical number assigned to each and every device which is looped in a computer network.
Connectivity  Colocation  Cloud Services Why You Can’t Ignore IPv6 Presented by Kirk Coviello VP of Support Services, Digital West Networks, Inc.

Connectivity  Colocation  Cloud Services Why You Can’t Ignore IPv6 Presented by Kirk Coviello VP of Support Services, Digital West Networks, Inc.
ARP Caching Christopher Avilla. What is ARP all about? Background Packet Structure Probe Announcement Inverse and Reverse Proxy Tools Poisoning MAC Flooding.

ARP Caching Christopher Avilla. What is ARP all about? Background Packet Structure Probe Announcement Inverse and Reverse Proxy Tools Poisoning MAC Flooding.
IPv6 Glue Why registrars need to support it Elise Gerich VP, IANA.

IPv6 Glue Why registrars need to support it Elise Gerich VP, IANA.
Internet Online Safety How to have FUN and Stay in Control.

Internet Online Safety How to have FUN and Stay in Control.
What is Spam  Any unwanted messages that are sent to many users at once.  Spam can be sent via email, text message, online chat, blogs or various other.

What is Spam  Any unwanted messages that are sent to many users at once.  Spam can be sent via , text message, online chat, blogs or various other.
Bangkok October 2005 Slide 1 Whois Services Jaap Akkerhuis

Bangkok October 2005 Slide 1 Whois Services Jaap Akkerhuis
Cyberbullying When good technology goes bad…….. Stay safe in cyberspace.

Cyberbullying When good technology goes bad…….. Stay safe in cyberspace.
What is Cyber bullying? Cyber bullying is when a person, or a group of people, uses the internet, mobile phones or other digital technologies to threaten,

What is Cyber bullying? Cyber bullying is when a person, or a group of people, uses the internet, mobile phones or other digital technologies to threaten,
1 Aug. 3 rd, 2007Conference on Email and Anti-Spam (CEAS’07) Slicing Spam with Occam’s Razor Chris Fleizach, Geoffrey M. Voelker, Stefan Savage University.

1 Aug. 3 rd, 2007Conference on and Anti-Spam (CEAS’07) Slicing Spam with Occam’s Razor Chris Fleizach, Geoffrey M. Voelker, Stefan Savage University.
An Engineering Approach to Computer Networking

An Engineering Approach to Computer Networking
How do Networks work – Really The purposes of set of slides is to show networks really work. Most people (including technical people) don’t know Many people.

How do Networks work – Really The purposes of set of slides is to show networks really work. Most people (including technical people) don’t know Many people.
An Operational Perspective on BGP Security Geoff Huston GROW WG IETF 63 August 2005.

An Operational Perspective on BGP Security Geoff Huston GROW WG IETF 63 August 2005.
1 A survey of Internet Topology Discovery. 2 Outline Motivations Internet topology IP Interface Level Router Level AS Level PoP Level.

1 A survey of Internet Topology Discovery. 2 Outline Motivations Internet topology IP Interface Level Router Level AS Level PoP Level.

Similar presentations

Ads by Google