Server Siblings: Identifying Shared IPv4/IPv6 Infrastructure via Active Fingerprinting
MetadataShow full item record
We present, validate, and apply an active measurement tech- nique that ascertains whether candidate IPv4 and IPv6 server addresses are “siblings,” i.e., assigned to the same physical machine. In contrast to prior efforts limited to passive monitoring, opportunistic measurements, or end-client populations, we propose an active methodology that gen- eralizes to all TCP-reachable devices, including servers. Our method ex- tends prior device fingerprinting techniques to improve their feasibility in modern environments, and uses them to support measurement-based detection of sibling interfaces. We validate our technique against a di- verse set of 61 web servers with known sibling addresses and find it to be over 97% accurate with 99% precision. Finally, we apply the technique to characterize the top ∼6,400 Alexa IPv6-capable web domains, and discover that a DNS name in common does not imply that the corre- sponding IPv4 and IPv6 addresses are on the same machine, network, or even autonomous system. Understanding sibling and non-sibling rela- tionships gives insight not only into IPv6 deployment and evolution, but also helps characterize the potential for correlated failures and suscepti- bility to certain attacks.
Includes article and presentation.PAM 2015 - 16th Passive and Active Measurement Conference
Showing items related by title, author, creator and subject.
Beverly, Robert; Berger, Arthur; Weaver, Nicholas; Campbell, Larry (Monterey, California : Naval Postgraduate School, 2013-06-21);While IPv6 is finally experiencing non-trivial deployment, IPv4 and IPv6 are expected to co-exist for the foreseeable future, implying dual-stacked devices, and protocol interdependence. We develop and deploy a system for ...
Ferry, John V.; Romero, Benny H. (Monterey, California: Naval Postgraduate School, 2013-12);Beginning with the United States (U.S.)Mexican War in 1846 and continuing to the most recent combat operations in Afghanistan and Iraq, United States military history has repeatedly shown the importance of civil affairs ...
Arthur Berger; Nicholas Weaver; Beverly, Robert; Larry Campbell (2013);The modern Domain Name System (DNS) provides not only resolution, but also enables intelligent client routing, \eg for Content Distribution Networks (CDNs). The adoption of IPv6 presents CDNs the opportunity to utilize ...