Presentation is loading. Please wait.

Presentation is loading. Please wait.

Addressing IPv6 Vulnerabilities on Small Business Networks Bradley HainesVincent Pullano University of Cincinnati College of Education, Criminal Justice,

Published byHeidi Dow Modified over 9 years ago

Similar presentations

Presentation on theme: "Addressing IPv6 Vulnerabilities on Small Business Networks Bradley HainesVincent Pullano University of Cincinnati College of Education, Criminal Justice,"— Presentation transcript:

1 Addressing IPv6 Vulnerabilities on Small Business Networks Bradley HainesVincent Pullano University of Cincinnati College of Education, Criminal Justice, and Human Services May 7, 2012

2 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks Problem Description Describe Solution Intended Use Deliverables Demonstration Conclusion Questions 2 Overview

3 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks IPv6 link-local networks Improperly implemented networks Poor hardware IPv6 support Growing number of vulnerabilities Lack of publicly available preconfigured/easy to use IPv6 monitoring solutions 3 Problem

4 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks Preconfigured IDS – Monitor network, send alerts – Ease of use top priority – SecurityOnion, Linux IDS-centric Distro – Snort sensor, OSSEC Web GUI/Notifier Initial quick setup document Primer of known IPv6 Vulnerabilities Reference of proper implementation 4 Solution - Overview

5 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks Popular intrusion detection system CLI based, not easy for casual users Displays alerts, but not always easy to understand No immediate overview of network health 5 Solution – IDS – Snort

6 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks GUI frontend to Snort Easy to view events Reporting capabilities Simple custom alerting Email alerts Minimal configuration 6 Solution – IDS – OSSEC

7 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks 7 Solution – Diagram

8 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks Small business system/network administrators No dedicated security team No IPv6 considerations internally No time to learn and set up complex integrated systems 8 Intended Use

9 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks Implement Snort/OSSEC on Security Onion VM Create vulnerability triggers for Snort Configure IDS to send detection alerts Configure IDS Web GUI Primer on known vulnerabilities Guide to further resources for implementing IPv6 securely 9 Deliverables

10 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks Vulnerability triggering alert – RH0 amplification attack Snort IPv6 Rules Email alerts to administrator 10 Demonstration

11 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks IPv6 networks are vulnerable Off the shelf, low cost, configured IPv6 monitoring doesn’t exist Our IDS makes it easy to monitor small networks 11 Conclusion

12 B. Haines / V. Pullano Addressing IPv6 Vulnerabilities on Small Business Networks Questions? 12

Download ppt "Addressing IPv6 Vulnerabilities on Small Business Networks Bradley HainesVincent Pullano University of Cincinnati College of Education, Criminal Justice,"

Similar presentations

Unified Communications (UC) Quick Reference Guide USING YOUR UC CLIENT This guide is designed to provide you with a quick overview of the Unified Communications.

Unified Communications (UC) Quick Reference Guide USING YOUR UC CLIENT This guide is designed to provide you with a quick overview of the Unified Communications.
ClearCube Blade Manager 4.0 Overview and Demonstration Rev. 11-09-04.

ClearCube Blade Manager 4.0 Overview and Demonstration Rev
Snort & ACID. UTSA IS 6973 Computer Forensics SNORT.

Snort & ACID. UTSA IS 6973 Computer Forensics SNORT.
1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.

1 Chapter 7 Intrusion Detection. 2 Objectives In this chapter, you will: Understand intrusion detection benefits and problems Learn about network intrusion.
ITIS2110 Lab 9. Scenario There are web network problems at your site Your manager has assigned you to track down the problem  He “highly” suggests you.

ITIS2110 Lab 9. Scenario There are web network problems at your site Your manager has assigned you to track down the problem  He “highly” suggests you.
SafeLINC™ Fire Panel Internet Interface

SafeLINC™ Fire Panel Internet Interface
Guide to Network Defense and Countermeasures Second Edition

Guide to Network Defense and Countermeasures Second Edition
Security Management IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.

Security Management IACT 918 July 2004 Gene Awyzio SITACS University of Wollongong.
Security Management IACT 418/918 Autumn 2005 Gene Awyzio SITACS University of Wollongong.

Security Management IACT 418/918 Autumn 2005 Gene Awyzio SITACS University of Wollongong.
OpStor V 9.1 - A multi vendor storage resource management and capacity forecasting software.

OpStor V A multi vendor storage resource management and capacity forecasting software.
Honeywall CD-ROM. 2 Developers and Speakers  Dave Dittrich University of Washington  Rob McMillen USMC  Jeff Nathan Sygate  William Salusky AOL.

Honeywall CD-ROM. 2 Developers and Speakers  Dave Dittrich University of Washington  Rob McMillen USMC  Jeff Nathan Sygate  William Salusky AOL.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 14: Troubleshooting Windows Server 2003 Networks.

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 14: Troubleshooting Windows Server 2003 Networks.
Barracuda Networks Confidential1 Barracuda Backup Service Integrated Local & Offsite Data Backup.

Barracuda Networks Confidential1 Barracuda Backup Service Integrated Local & Offsite Data Backup.
Using the Windows Event Viewer and Task Scheduler Chapter 5.

Using the Windows Event Viewer and Task Scheduler Chapter 5.
Intrusion Prevention, Detection & Response. IDS vs IPS IDS = Intrusion detection system IPS = intrusion prevention system.

Intrusion Prevention, Detection & Response. IDS vs IPS IDS = Intrusion detection system IPS = intrusion prevention system.
Appliance Firewalls A Technology Review By: Brent Huston T h e B l a c k H a t B r i e f i n g s July 7-8, 1999 Las Vegas.

Appliance Firewalls A Technology Review By: Brent Huston T h e B l a c k H a t B r i e f i n g s July 7-8, 1999 Las Vegas.
SYSTEM CENTER: ENDPOINT PROTECTION FUNDAMENTALS Howard A. Carter III Senior Consultant Microsoft Consulting Services September 21, 2013 TechGate 2013 –

SYSTEM CENTER: ENDPOINT PROTECTION FUNDAMENTALS Howard A. Carter III Senior Consultant Microsoft Consulting Services September 21, 2013 TechGate 2013 –
IDS Mike O’Connor Eric Tallman Matt Yasiejko. Overview IDS defined IDS defined What it does What it does Sample logs Sample logs Why we need it Why we.

IDS Mike O’Connor Eric Tallman Matt Yasiejko. Overview IDS defined IDS defined What it does What it does Sample logs Sample logs Why we need it Why we.
By: Paul Albert.  Project Description  Design Protocols  User Profiles  Deliverables  Timeline  Budget  Demonstration  Conclusion.

By: Paul Albert.  Project Description  Design Protocols  User Profiles  Deliverables  Timeline  Budget  Demonstration  Conclusion.
Internet Service Provisioning Phase - I August 29, 2003 TSPT Web:

Internet Service Provisioning Phase - I August 29, 2003 TSPT Web:

Similar presentations

Ads by Google