Risk assessment equation for IPv6 network / Athirah Rosli

Rosli, Athirah (2017) Risk assessment equation for IPv6 network / Athirah Rosli. Masters thesis, Universiti Teknologi MARA (UiTM).

Abstract

Exposure to risk due to the implementation of IPv6 has made enterprise networks take immediate actions to avoid misrepresenting of risks and applying inadequate countermeasures. Being aware of the needs to calculate the risk of IPv6 threats and vulnerabilities, enterprises demand a proper equation that is flexible to represent risks of the network. Unfortunately, the existing risk assessment equation is insufficient because it calculates risk per asset rather than the network as a whole. The current risk assessment equation also fails to relate security requirements with the dependencies of asset, threat and vulnerability. By using grounded theory, it is realized that confidentiality, integrity, and availability are important elements to be considered in risk assessment. Thus, this research proposes new risk assessment equation for IPv6 deployment that includes base score value that considers security goal of the network. The developed equation was validated via experimentation that involved testing the UDP flooding attack, TCP flooding attack and multicast attack by using OMNeT++. Result shows that the IRA6 equation is adequate in determining the risk value compared to the exvisting risk assessment equation. The risk values are associated into IPv6 threat model for future reference and as preliminary information for enterprise network. With the added information, it can be used by network administrators in their decision making and strategic planning for network security. Further research can include other elements in security goals which are nonrepudiation, authentication, authorization and accountability.

Metadata

Item Type: Thesis (Masters)
Creators:
Creators
Email / ID Num.
Rosli, Athirah
201344436
Contributors:
Contribution
Name
Email / ID Num.
Thesis advisor
Mat Taib, Abidah
UNSPECIFIED
Subjects: T Technology > TK Electrical engineering. Electronics. Nuclear engineering > Telecommunication > Computer networks. General works. Traffic monitoring
T Technology > TK Electrical engineering. Electronics. Nuclear engineering > Telecommunication > Computer networks. General works. Traffic monitoring > Computer network protocols > TCP/IP (Computer network protocol)
Divisions: Universiti Teknologi MARA, Shah Alam > Faculty of Computer and Mathematical Sciences
Programme: Master of Science (Computer Science)
Keywords: Network, security, IPv6
Date: 2017
URI: https://ir.uitm.edu.my/id/eprint/37209
Edit Item
Edit Item

Download

[thumbnail of 37209.pdf] Text
37209.pdf

Download (158kB)

Digital Copy

Digital (fulltext) is available at:

Physical Copy

Physical status and holdings:
Item Status:
On Shelf

ID Number

37209

Indexing

Statistic

Statistic details