Phillip Deneault
Principal Information Security Analyst,
Boston College
IPv6 Security at Virginia Tech and WPI
Wednesday, May 16, 2012 | 11:45AM–12:45PM | White River Ballroom C
Session Type:
Professional Development
Institutions are hesitant to migrate to IPv6 because of perceived difficulties in supporting clients, servers, and the network infrastructure. IPv6 will force institutions to rethink their strategies and practices supporting services such as NAT and DHCP. Unfortunately, IPv6 traffic is also transparent to campus networking and security staff due to a lack of vendor security products capable of analyzing IPv6 traffic. This talk will discuss two institutions' IPv6 implementation processes. Virginia Tech has been running a full-production IPv6 network since 2006 and has been an active implementer since 1998, when the project was conceived. WPI has some production IPv6 available on its servers, with a tentative goal of offering IPv6 client support by fall 2012. Using real-world examples, we'll highlight successes and pitfalls in technology and policy at both institutions. We'll also feature several solutions to common security problems related to implementation of IPv6 networks and the seamless support of both IPv4 and IPv6.
