A large-scale scan of IPv6 IP-ID.
Saved in:
| Title: | A large-scale scan of IPv6 IP-ID. |
|---|---|
| Authors: | HUANG, Fengyuan1 huangfengyuan@nudt.edu.cn, YANG, Yifan1 yangyifanyyf@nudt.edu.cn, YU, Bo1 yubo0615@nudt.edu.cn, YANG, Zhenzhong1, CAI, Zhiping1 zpcai@nudt.edu.cn, HOU, Bingnan1 |
| Source: | Computer Engineering & Science / Jisuanji Gongcheng yu Kexue. Aug2025, Vol. 47 Issue 8, p1391-1398. 8p. |
| Subjects: | Internet protocols, Computer network security, Computer network protocols, Leaks (Disclosure of information), Research personnel, Internet protocol version 6 |
| Abstract: | In IPv6 networks, the Internet protocol identification (IP-ID) fields, which are used to support fragmentation and reassembly of network-layer datagrams, no longer appear as fixed fields but are instead placed in the extension header for flexible use. In recent years, researchers have exploited the IPv6 fragmentation mechanism to induce IPv6 target hosts to generate IP-IDs and perform tasks such as alias prefix resolution, demonstrating that the IP-ID field in IPv6 networks can still leak information and pose certain security risks. Since existing IP-ID exploitation methods rely on simple, predictable IP-ID types, probing whether the IP-ID types of IPv6 devices on the internet are predictable hold significant importance for IPv6 network security and asset assessment. This paper proposes a method to detect IPv6 devices on the Internet, and classifies them into different types. Among the nearly 5 million IPv6 addresses returned, 41. 1% of the addresses still used predictable IP-ID, indicating that IPv6 networks are not immune to fragment and IP-ID based attacks. There are still a considerable number of devices in IPv6 network using predictable IP-ID which are of high security risk. [ABSTRACT FROM AUTHOR] |
| Copyright of Computer Engineering & Science / Jisuanji Gongcheng yu Kexue is the property of Computer Engineering & Science and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.) | |
| Database: | Engineering Source |
| FullText | Links: – Type: pdflink Text: Availability: 0 |
|---|---|
| Header | DbId: egs DbLabel: Engineering Source An: 188160255 AccessLevel: 6 PubType: Academic Journal PubTypeId: academicJournal PreciseRelevancyScore: 0 |
| IllustrationInfo | |
| Items | – Name: Title Label: Title Group: Ti Data: A large-scale scan of IPv6 IP-ID. – Name: Author Label: Authors Group: Au Data: <searchLink fieldCode="AR" term="%22HUANG%2C+Fengyuan%22">HUANG, Fengyuan</searchLink><relatesTo>1</relatesTo><i> huangfengyuan@nudt.edu.cn</i><br /><searchLink fieldCode="AR" term="%22YANG%2C+Yifan%22">YANG, Yifan</searchLink><relatesTo>1</relatesTo><i> yangyifanyyf@nudt.edu.cn</i><br /><searchLink fieldCode="AR" term="%22YU%2C+Bo%22">YU, Bo</searchLink><relatesTo>1</relatesTo><i> yubo0615@nudt.edu.cn</i><br /><searchLink fieldCode="AR" term="%22YANG%2C+Zhenzhong%22">YANG, Zhenzhong</searchLink><relatesTo>1</relatesTo><br /><searchLink fieldCode="AR" term="%22CAI%2C+Zhiping%22">CAI, Zhiping</searchLink><relatesTo>1</relatesTo><i> zpcai@nudt.edu.cn</i><br /><searchLink fieldCode="AR" term="%22HOU%2C+Bingnan%22">HOU, Bingnan</searchLink><relatesTo>1</relatesTo> – Name: TitleSource Label: Source Group: Src Data: <searchLink fieldCode="JN" term="%22Computer+Engineering+%26+Science+%2F+Jisuanji+Gongcheng+yu+Kexue%22">Computer Engineering & Science / Jisuanji Gongcheng yu Kexue</searchLink>. Aug2025, Vol. 47 Issue 8, p1391-1398. 8p. – Name: Subject Label: Subjects Group: Su Data: <searchLink fieldCode="DE" term="%22Internet+protocols%22">Internet protocols</searchLink><br /><searchLink fieldCode="DE" term="%22Computer+network+security%22">Computer network security</searchLink><br /><searchLink fieldCode="DE" term="%22Computer+network+protocols%22">Computer network protocols</searchLink><br /><searchLink fieldCode="DE" term="%22Leaks+%28Disclosure+of+information%29%22">Leaks (Disclosure of information)</searchLink><br /><searchLink fieldCode="DE" term="%22Research+personnel%22">Research personnel</searchLink><br /><searchLink fieldCode="DE" term="%22Internet+protocol+version+6%22">Internet protocol version 6</searchLink> – Name: Abstract Label: Abstract Group: Ab Data: In IPv6 networks, the Internet protocol identification (IP-ID) fields, which are used to support fragmentation and reassembly of network-layer datagrams, no longer appear as fixed fields but are instead placed in the extension header for flexible use. In recent years, researchers have exploited the IPv6 fragmentation mechanism to induce IPv6 target hosts to generate IP-IDs and perform tasks such as alias prefix resolution, demonstrating that the IP-ID field in IPv6 networks can still leak information and pose certain security risks. Since existing IP-ID exploitation methods rely on simple, predictable IP-ID types, probing whether the IP-ID types of IPv6 devices on the internet are predictable hold significant importance for IPv6 network security and asset assessment. This paper proposes a method to detect IPv6 devices on the Internet, and classifies them into different types. Among the nearly 5 million IPv6 addresses returned, 41. 1% of the addresses still used predictable IP-ID, indicating that IPv6 networks are not immune to fragment and IP-ID based attacks. There are still a considerable number of devices in IPv6 network using predictable IP-ID which are of high security risk. [ABSTRACT FROM AUTHOR] – Name: AbstractSuppliedCopyright Label: Group: Ab Data: <i>Copyright of Computer Engineering & Science / Jisuanji Gongcheng yu Kexue is the property of Computer Engineering & Science and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract.</i> (Copyright applies to all Abstracts.) |
| PLink | https://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=egs&AN=188160255 |
| RecordInfo | BibRecord: BibEntity: Identifiers: – Type: doi Value: 10.3969/j.issn.1007-130X.2025.08.006 Languages: – Code: chi Text: Chinese PhysicalDescription: Pagination: PageCount: 8 StartPage: 1391 Subjects: – SubjectFull: Internet protocols Type: general – SubjectFull: Computer network security Type: general – SubjectFull: Computer network protocols Type: general – SubjectFull: Leaks (Disclosure of information) Type: general – SubjectFull: Research personnel Type: general – SubjectFull: Internet protocol version 6 Type: general Titles: – TitleFull: A large-scale scan of IPv6 IP-ID. Type: main BibRelationships: HasContributorRelationships: – PersonEntity: Name: NameFull: HUANG, Fengyuan – PersonEntity: Name: NameFull: YANG, Yifan – PersonEntity: Name: NameFull: YU, Bo – PersonEntity: Name: NameFull: YANG, Zhenzhong – PersonEntity: Name: NameFull: CAI, Zhiping – PersonEntity: Name: NameFull: HOU, Bingnan IsPartOfRelationships: – BibEntity: Dates: – D: 01 M: 08 Text: Aug2025 Type: published Y: 2025 Identifiers: – Type: issn-print Value: 1007130X Numbering: – Type: volume Value: 47 – Type: issue Value: 8 Titles: – TitleFull: Computer Engineering & Science / Jisuanji Gongcheng yu Kexue Type: main |
| ResultId | 1 |