Development of a Snort IPv6 Plugin - Detection of Attacks on the Neighbor Discovery Protocol

Martin Schütte; Thomas Scheffler; Bettina Schnor

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Development of a Snort IPv6 Plugin - Detection of Attacks on the Neighbor Discovery Protocol

Topics: Intrusion Detection & Prevention; Network Security

In Proceedings of the International Conference on Security and Cryptography - Volume 0ICETE, 399-402, 2012 , Rome, Italy

Authors: Martin Schütte ¹ ; Thomas Scheffler ¹ and Bettina Schnor ²

Affiliations: ¹ Beuth University of Applied Sciences, Germany ; ² Potsdam University, Germany

Keyword(s): IPv6, Neighbor Discovery, Intrusion Detection System.

Related Ontology Subjects/Areas/Topics: Information and Systems Security ; Intrusion Detection & Prevention ; Network Security ; Wireless Network Security

Abstract: This paper describes the implementation and use of a preprocessor module for the open source Intrusion Detection System Snort. Our implementation utilizes preprocessor APIs for the extension of Snort and provides several new IPv6-specific rule options that make the definition of IPv6-specific attack signatures possible. The preprocessor detects attacks against the IPv6 Neighbor Discovery Protocol and can identify suspicious activity in local IPv6 networks. This includes misconfigured network elements, as well as malicious activities from attackers on the network. To our knowledge this is the first such implementation in an Open Source IDS.

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.221.129.19

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Schütte, M.; Scheffler, T. and Schnor, B. (2012). Development of a Snort IPv6 Plugin - Detection of Attacks on the Neighbor Discovery Protocol. In Proceedings of the International Conference on Security and Cryptography (ICETE 2012) - SECRYPT; ISBN 978-989-8565-24-2; ISSN 2184-3236, SciTePress, pages 399-402. DOI: 10.5220/0004073303990402

@conference{secrypt12,
author={Martin Schütte. and Thomas Scheffler. and Bettina Schnor.},
title={Development of a Snort IPv6 Plugin - Detection of Attacks on the Neighbor Discovery Protocol},
booktitle={Proceedings of the International Conference on Security and Cryptography (ICETE 2012) - SECRYPT},
year={2012},
pages={399-402},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004073303990402},
isbn={978-989-8565-24-2},
issn={2184-3236},
}

TY - CONF

JO - Proceedings of the International Conference on Security and Cryptography (ICETE 2012) - SECRYPT
TI - Development of a Snort IPv6 Plugin - Detection of Attacks on the Neighbor Discovery Protocol
SN - 978-989-8565-24-2
IS - 2184-3236
AU - Schütte, M.
AU - Scheffler, T.
AU - Schnor, B.
PY - 2012
SP - 399
EP - 402
DO - 10.5220/0004073303990402
PB - SciTePress