DENIAL OF SERVICE ON DUPLICATE ADDRESS DETECTION USING NDPsec
MOHAMED SAKKEEL M, MOHAMED YASEER M, PUNNIYAMOORTHI R
Mrs . SARANYA E M.E
Assistant Professor
Department Of
Computer Science
E.G.S Pillay Engineering College
Nagapattinam,India
saranyaedumban@gmail.com
Abstract—Neighbor Discovery Protocol (NDP) is a stateless protocol used by Internet Protocol Version 6 (IPv6) to find hosts and routers in an IPv6 network.neighbor discovery involves the identification of neighboring nodes for connection and communication.The Edwards-curve Digital Signature Algorithm (EdDSA) was proposed to perform fast public-key digital signatures.the first practical fault attack against EdDSA or Ed25519.Neighbor discovery protocol (NDP) is the core protocol of Internet protocol version 6 (IPv6)A malicious host is able toexpose denial of service or man-in-the-middle attacks by injecting spoofed address in NDP messages.This article revolves around the survey of the vulnerabilities mitigations approaches of NDP.ICMPv6-based Denial of Service (DoS) attacks and its variant form Distributed Denial of Service (DDoS) attack. To detect ICMPv6-based DoS and DDoS attacks as single and hybrid classifiers. Address Resolution (AR) and Duplicate Address Detection (DAD) are considered the most important processes in Neighbour Discovery Protocol (NDP), which occurs frequently from each Internet Protocol version 6 (IPv6) host communicating with other neighbouring hosts. Two NDP messages are used during AR and DAD to communicate with one another in the same IPv6. Neighbour Solicitation (NS) and Neighbour Advertisement (NA) messages.DOS on duplicate address detection proposes an NDP security (NDPsec) mechanism based on the Ed25519 digital signature to authenticate IPv6 hosts to prevent unauthorized devices from joining the network. The proposed NDPsec mechanism is evaluated and compared to Secure NDP (SeND), Match-Prevention, and Trust-ND mechanisms.The optimization of the neighbor discovery to reduce the power consumption in wireless sensor networks.
Keywords - IPv6 link-local Network, NDP, denial of service, DDoS, duplicate address detection, address resolution,Anomaly Detection,authentication.