A Design Comparison Between IPv4 and IPv6 in the Context of MYSEA, and Implementation of an IPv6 MYSEA Prototype
Abstract
Internet Protocol version six (IPv6) is only sparsely implemented in the world today. However, as it gains popularity, it will grow into a vital part of the Internet and communications technology in general. Many large organizations, including the Department of Defense, are considering deployment of IPv6. Experiments will ensure that IPv6 will work with both existing and planned applications. One area where its success is essential is that of systems designed to support multilevel security. This thesis focuses on the design and implementation issues that accompany a migration of the Monterey Security Enhanced Architecture (MYSEA) from Internet Protocol version four (IPv4) to IPv6. The research for this thesis consists of two major parts: a functional comparison between the IPv4 and IPv6 designs, and a prototype implementation of MYSEA in an IPv6 environment. The current MYSEA prototype relies on a subset of Network Address Translation (NAT) functionality to support the network's operation; and, since IPv6 has no native support for it, a NAT mechanism was created in IPv6. This thesis provides a preliminary examination of IPv6 in MYSEA, which is a necessary step in determining whether the new protocol will assist with or detract from the enforcement of MYSEA policies.
Document Details
- Document Type
- Technical Report
- Publication Date
- Jun 01, 2003
- Accession Number
- ADA417706
Entities
People
- Matthew R. O'neal
Organizations
- Naval Postgraduate School