Effectiveness of security tools to anomalies on tunneled traffic

Bahaman, Nazrulazhar and Anton Satria, Prabuwono and Mas'ud, Mohd Zaki and Abdollah, Mohd Faizal (2012) Effectiveness of security tools to anomalies on tunneled traffic. Information Technology Journal, 11 (2). pp. 191-199. ISSN 1812-5638

Effectiveness_of_Security_Tools_to_Anomalies_on_Tunneled_Traffic.pdf - Published Version

Download (629kB)


Tunneling Mechanism has been proven as an option to link the communication between IPv6 networks and IPv4 environments without incurring the high costs of upgrading equipment. However, this mechanism has reduced the network performance and downgrade the level of security if compared to the native IPv6 network. The Transition Mechanism has also become a covert channel for spreading threats without being acknowledged by the network security tools. Even though the issue has been raised in the set of IETF rules, still they do not provide any recommendation to overcome the problem. Based on this reason, this study explored the effectiveness of conventional network security tools to detect any anomalies occurring on a tunneling mechanism especially against packet flooding attack in IPv6 tunneling. In order to achieve this objective, a testbed that has been deployed with conventional firewall and IDS is used to simulate the IPv6 to IPv4 tunneling mechanism, several network attacks are then launched and the network traffic is then captured to be analyzed. The result shows that the firewall with the default settings had blocked all the tunneling packets, while the firewall and IDS with the default rule of set had performed well in IPv4 but not in the IPv6 tunnel. © 2012 Asian Network for Scientific Information.

Item Type: Article
Additional Information: cited By (since 1996)2
Uncontrolled Keywords: Covert channels; Default rule; Default setting; Firewall; Flooding attack; Flooding attacks; High costs; IPv6 networks; Network analyzer; Network attack; Network traffic; Security tools; Transition mechanism; Tunneling mechanism, Computer crime; Computer system firewalls; Electron tunneling; Intrusion detection; Network performance; Network security, Internet protocols
Subjects: Q Science > Q Science (General)
T Technology > T Technology (General)
Divisions: Faculty of Information and Communication Technology > Department of System and Computer Communication
Depositing User: Dr. Nazrulazhar Bahaman
Date Deposited: 24 Feb 2014 00:18
Last Modified: 28 May 2015 04:15
URI: http://eprints.utem.edu.my/id/eprint/11204
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item