[techsec-wg] Re: [address-policy-wg] Resilience Featuresof IPv6, DNSSEC and MPLS and Deployment Scenarios
Randy Bush randy at psg.com
Tue Jan 27 11:37:21 CET 2009
> http://www.enisa.europa.eu/sta/files/resilience_features.pdf Please > spread the words among your colleagues and peers. the word i would spread is that this is more marketing than actual operational reality. a survey by the wishful as opposed to the technical. to illustrate, take the first technical point it tries to make > In terms of resilience, IPv6 could address a noteworthy source of > vulnerabilities. It is harder to launch opportunistic attacks such > as worms against IPv6 hosts and makes reconnaissance probing much > more difficult due to the vastness of the address space. The > simplified packet headers and the lack of packet fragmentation make > packet processing by routers easier and more robustly. now go look at http://www.usipv6.com/6sense/2007/jan/article01.htm oh, and ipv6 has fragmentation. randy