Multi Thread Intrusion detection System (MIDS) for IPv6
Abstract: IPv6 is designed as a next generation internet protocol. It is considered to replace current in use IPv4 protocol gradually in coming years. IPv6 provides many capabilities and futures over IPv4. Security is a key future supported by IPv6, and is mandatory option in IPv6 networks. Security is not mature in IPv6 as compare to IPv4. With the innovation of new capabilities and application, additional security measure are required for next generation operational network for end to end communication. In this paper will elaborate the key threats associated with IPv6 and its possible solution. Intrusion detection system is one of the solutions available, although it is widely used in IPv4 networks, but there is no operational solution for IPv6. In this paper we have proposed an intrusion detection system (IDS) based on multi thread technique. The proposed model is a software base design and can be used efficiently and effectively for IPv6 network as well IPv4 networks during transition period.
Keywords: IDS, IPS, NAT, Firewalls
IPv4 is used since 1980s. It provides basis for internet communication. IPv4 effectively fulfill the needs and requirements of communication and application of that time. Due to innovation of new market trends, ideas and new application, the growth of internet dramatically increased. It needs to support new demanding services. To eliminate this problem there should be a replace of IPv4. A new protocol named as IPv6 was introduced for future needs and end to end communication. IPv6 is considered as a next generation protocol. 128 bit address space is used to overcome the problem of address degradation. Hierarchal routing, mobility support, auto configuration and built in security are the main supported futures of IPv6.
Today’s markets need more and more security option. IPv6 provides mandatory security for next generation networks. Although security is mandatory for IPv6 but is not mature as compare to IPv4, still some vulnerabilities are present and need to be considered. With the introduction of new option and services support many new threats are evolved. The main threats IPv6 networks faces are sniffing attack, application layer attack such as buffer overflow attack, web application attack, virus and worms, flooding attack and reconnaissance attacks. Reconnaissance  in which some body is trying to learn as much as possible about victim network. It is a hard task to attempt ping and port scan over such a large address space. Further more elimination of NAT is also security vulnerability. IPv6 does not support NAT, as next generation protocol provides IP address to each node for end to end communication. NAT allow a single point to enter a specific network without it this is a security breach. According to  some other threats like DoS attack, host initialization and associated attack, bogus router implementation...