IPv6部署:企业网络中使用i-SeRP系统进行安全风险评估

2012 IEEE Student Conference on Research and Development (SCOReD) Pub Date : 2012-12-01 DOI:10.1109/SCORED.2012.6518640

A. Rosli, W. Ali, A. Taib

{"title":"IPv6部署:企业网络中使用i-SeRP系统进行安全风险评估","authors":"A. Rosli, W. Ali, A. Taib","doi":"10.1109/SCORED.2012.6518640","DOIUrl":null,"url":null,"abstract":"Enterprise network is a large and diverse network connecting major sites within an enterprise. As the Internet Protocol version 4 (IPv4) is depleting, the deployment of Internet Protocol version 6 (IPv6) in enterprise network is significant to ensure a continuous communication system. Unfortunately, the coexistence condition of IPv4 and IPv6 will expose enterprise network to IPv4 and IPv6 threats. This paper investigated the potential security risks that will affect the enterprise network by using threat model and measured the potential security risk in enterprise network by using IPv6 Security Risk Prototype (i-SeRP) system. Threats and vulnerabilities were identified by using threat model and i-SeRP system was developed. I-SeRP system helps network administrator to identify the security risk as well as the decision making process for security policy approach. An equation is adapted to calculate the risk value. Analysis from the risk value will assist the enterprise to identify risky assets that need to be secured. Through this study, enterprises are able to calculate the risk value easily using i-SeRP system.","PeriodicalId":299947,"journal":{"name":"2012 IEEE Student Conference on Research and Development (SCOReD)","volume":"6 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"IPv6 deployment: Security risk assessment using i-SeRP system in enterprise network\",\"authors\":\"A. Rosli, W. Ali, A. Taib\",\"doi\":\"10.1109/SCORED.2012.6518640\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Enterprise network is a large and diverse network connecting major sites within an enterprise. As the Internet Protocol version 4 (IPv4) is depleting, the deployment of Internet Protocol version 6 (IPv6) in enterprise network is significant to ensure a continuous communication system. Unfortunately, the coexistence condition of IPv4 and IPv6 will expose enterprise network to IPv4 and IPv6 threats. This paper investigated the potential security risks that will affect the enterprise network by using threat model and measured the potential security risk in enterprise network by using IPv6 Security Risk Prototype (i-SeRP) system. Threats and vulnerabilities were identified by using threat model and i-SeRP system was developed. I-SeRP system helps network administrator to identify the security risk as well as the decision making process for security policy approach. An equation is adapted to calculate the risk value. Analysis from the risk value will assist the enterprise to identify risky assets that need to be secured. Through this study, enterprises are able to calculate the risk value easily using i-SeRP system.\",\"PeriodicalId\":299947,\"journal\":{\"name\":\"2012 IEEE Student Conference on Research and Development (SCOReD)\",\"volume\":\"6 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2012 IEEE Student Conference on Research and Development (SCOReD)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SCORED.2012.6518640\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2012 IEEE Student Conference on Research and Development (SCOReD)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SCORED.2012.6518640","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

企业网络是连接企业内主要站点的大型多样网络。随着IPv4 (Internet Protocol version 4)资源的日益枯竭，在企业网络中部署IPv6 (Internet Protocol version 6)对于保证通信系统的连续性具有重要意义。不幸的是，IPv4和IPv6的共存状况将使企业网络暴露在IPv4和IPv6的威胁之下。本文利用威胁模型研究了影响企业网络的潜在安全风险，并利用IPv6安全风险原型(i-SeRP)系统对企业网络中的潜在安全风险进行了测量。利用威胁模型识别威胁和漏洞，开发i-SeRP系统。I-SeRP系统帮助网络管理员识别安全风险，以及制定安全策略方法的决策过程。采用方程来计算风险值。从风险价值的角度进行分析，有助于企业识别需要担保的风险资产。通过本研究，企业可以方便地使用i-SeRP系统计算风险值。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

IPv6 deployment: Security risk assessment using i-SeRP system in enterprise network

Enterprise network is a large and diverse network connecting major sites within an enterprise. As the Internet Protocol version 4 (IPv4) is depleting, the deployment of Internet Protocol version 6 (IPv6) in enterprise network is significant to ensure a continuous communication system. Unfortunately, the coexistence condition of IPv4 and IPv6 will expose enterprise network to IPv4 and IPv6 threats. This paper investigated the potential security risks that will affect the enterprise network by using threat model and measured the potential security risk in enterprise network by using IPv6 Security Risk Prototype (i-SeRP) system. Threats and vulnerabilities were identified by using threat model and i-SeRP system was developed. I-SeRP system helps network administrator to identify the security risk as well as the decision making process for security policy approach. An equation is adapted to calculate the risk value. Analysis from the risk value will assist the enterprise to identify risky assets that need to be secured. Through this study, enterprises are able to calculate the risk value easily using i-SeRP system.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2012 IEEE Student Conference on Research and Development (SCOReD)

自引率

0.00%

发文量