Date: Fri, 29 Mar 2024 08:11:56 +0100 (CET) Message-ID: <2006459192.7698.1711696316356@wiki01p.surfnet.nl> Subject: Exported From Confluence MIME-Version: 1.0 Content-Type: multipart/related; boundary="----=_Part_7697_1121258464.1711696316356" ------=_Part_7697_1121258464.1711696316356 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Content-Location: file:///C:/exported.html
= Organisation | UTwente |
---|---|
= Deliverable | Report |
During 2016, as part of a RoN project we implemented a plugin for measur= ing the extension headers at the flow level. The plugin has been validated = within the UT campus network and at CESNET. This work was presented at the = Measurements And Tools Working Group (MAT-WG) at RIPE 73 in Madrid, Spain.<= /p>
For RoN 2017, we plan to enhance the implemented plugin targeting traffic =
measurements for applications of security, such as the measurement of TCP f=
lags, and ICMP types/codes. We will also perform large-scale and long-term =
measurements at the UT campus network, CESNET, and more specifically the AM=
SIX link of AS1101. This particular link is expected to feature malicious t=
raffic and allows us to do both the enhanced flow measurements, as well as =
packet-based measurements. With the addition of packet-based analysis, we a=
im at a profound validation of security incidents observed in the flow data=
, and possibly determine the limit of a flow-based approach in context of I=
Pv6 security solutions. In addition to this, we want to use the packet-base=
d information to research phenomena observed during RoN2016, which we suspe=
ct to be network misconfigurations: with the increasing adoption and deploy=
ment of IPv6, we hope to aid operators in spotting less obvious mistakes, p=
ossibly preventing security holes or impaired quality of experience at end-=
users.