Addressless: Enhancing IoT Server Security Using IPv6

Renjie Liu, Zhe Weng, Shanshan Hao, Deliang Chang, Congxiao Bao, Xing Li
2020 IEEE Access  
Nowadays more and more IoT devices, including a large number of IoT servers, have been deployed on the Internet. The security of IoT servers has always been a challenge. In this paper, a new model named addressless IoT server is proposed, which allows people to use the large IPv6 address space to protect IoT server security. The server is allocated an IPv6 prefix instead of an address. When the authenticated client initiates communication, it uses an encryption mechanism to generate a specific
more » ... estination address under the prefix. The server verifies the destination address when receiving the packet, and discards the packet if the verification fails. In this way, the model can prevent attackers from perceiving the server and launching scans or attacks, while remains compatible with the current Internet. The prototype is implemented and an extensive set of experiments are conducted in this paper. The results demonstrate that the model can better protect server security. INDEX TERMS IPv6, IPv6 address space, Internet of Things, network security, prefix delegation. This work is licensed under a Creative Commons Attribution 4.0 License. For more information, see https://creativecommons.org/licenses/by/4.
doi:10.1109/access.2020.2993700 fatcat:yh4aaxfgqbb6zifothcdywsvwi