IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Firms warned over IPv6 security risks

Industry players urge end users to step up security as IPv6 adoption grows.

World on red alert

Companies need to be on their guard against cyber criminals using IPv6 networks to stage attacks, as the number of compatible end point devices in the workplace soars.

This is the view of WAN optimisation vendor Blue Coat Systems, who want firms to upgrade their security strategies to cover IPv6 network vulnerabilities.

The use of IPv6 networks has been gradually rising in recent years as the number of IPv4 addresses has dwindled.

This shift has been gaining momentum since the beginning of the year, when the Internet Society confirmed 6 June as World IPv6 Launch Day.

However, during this transition, it is claimed that some firms are failing to update their network monitoring and security tools to include traffic sent over IPv6 networks. This, it is claimed, is leaving them open to attack.

Speaking to IT Pro, Dave Ewart, director of product management at Blue Coat Systems, explained: "This shift has been gathering momentum for a while, with all the headlines around the fact we are running out of IPv4 addresses," he said.

"IPv4 will be running in parallel to IPv6, so it would make sense for people to start looking at solutions that are able to monitor both networks," he added.

Not doing so could result in bandwidth issues, as staff use unmonitored IPv6 networks to access restricted material. They could also provide a hiding place for cyber criminal activity, said Ewart.

"By not monitoring IPv6 traffic, businesses may be unaware of the amount of bandwidth that is being used by certain apps or employees that are using iOS devices, for example, in the workplace," said Ewart.

Industry backing

His claims have been backed by several industry players, including Terry Greer-King, managing director of end point security vendor Check Point.

"Because IPv6 now comes as a default option on [most] new server operating system software, end users can inadvertently (or purposefully) create an IPv6 network that is invisible to existing security products," he said.

David Harley, senior research fellow at anti-virus software vendor ESET, said this is a situation that can be easily avoided.

"The problem is not that IPv6 is intrinsically insecure, it's the fact that it's creeping onto sites by default via newer systems, [when businesses] should really have been working on a strategic, enterprise-wide rollout [based on] sound project management," said Harley.

Marina Gil-Santamaria, director of product marketing management at Ipswitch Network Management, added: "Logging, reporting, and analysing both IPv4 and IPv6 traffic should be done throughout [this] transition [because] attackers do not limit themselves to one protocol."

Featured Resources

The state of Salesforce: Future of business

Three articles that look forward into the changing state of Salesforce and the future of business

Free Download

The mighty struggle to migrate SAP to the cloud may be over

A simplified and unified approach to delivering Enterprise Transformation in the cloud

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

Free Download

The Total Economic Impact™ Of IBM FlashSystem

Cost savings and business benefits enabled by FlashSystem

Free Download

Recommended

What is subnetting?
Network & Internet

What is subnetting?

28 Jul 2022
Server virtualisation: What is it and what are the benefits?
virtualisation

Server virtualisation: What is it and what are the benefits?

25 Jul 2022
Rogers Communication to invest C$10 billion in AI, oversight following outage
business transformation

Rogers Communication to invest C$10 billion in AI, oversight following outage

25 Jul 2022
Paessler PRTG Network Monitor 21.4 review: Hard to beat
Network & Internet

Paessler PRTG Network Monitor 21.4 review: Hard to beat

15 Mar 2022

Most Popular

Cyber attack on software supplier causes "major outage" across the NHS
cyber attacks

Cyber attack on software supplier causes "major outage" across the NHS

8 Aug 2022
Why convenience is the biggest threat to your security
Sponsored

Why convenience is the biggest threat to your security

8 Aug 2022
How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

29 Jul 2022