IPv6 deployment: Security risk assessment using i-SeRP system in enterprise network

• Published in: SCOReD 2012 - 2012 IEEE Student Conference on Research and Development
• Main Author: Rosli A.; Ali W.N.A.W.; Taib A.H.M.
• Format: Conference paper
• Language: English
• Published: 2012
• Online Access: https://www.scopus.com/inward/record.uri?eid=2-s2.0-84879653111&doi=10.1109%2fSCOReD.2012.6518640&partnerID=40&md5=201f5e977ba23932aa51430c43534810

Enterprise network is a large and diverse network connecting major sites within an enterprise. As the Internet Protocol version 4 (IPv4) is depleting, the deployment of Internet Protocol version 6 (IPv6) in enterprise network is significant to ensure a continuous communication system. Unfortunately, the coexistence condition of IPv4 and IPv6 will expose enterprise network to IPv4 and IPv6 threats. This paper investigated the potential security risks that will affect the enterprise network by using threat model and measured the potential security risk in enterprise network by using IPv6 Security Risk Prototype (i-SeRP) system. Threats and vulnerabilities were identified by using threat model and i-SeRP system was developed. I-SeRP system helps network administrator to identify the security risk as well as the decision making process for security policy approach. An equation is adapted to calculate the risk value. Analysis from the risk value will assist the enterprise to identify risky assets that need to be secured. Through this study, enterprises are able to calculate the risk value easily using i-SeRP system. © 2012 IEEE.