the impact of ipv6 and the iot on smart home technology
TRANSCRIPT
![Page 1: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/1.jpg)
Copyright 2016. Icontrol Networks.
Impact of IPv6 on Smart Home TechnologyApril 5, 2016
![Page 2: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/2.jpg)
Copyright 2016. Icontrol Networks. 2
Introduction
Corey GatesCTO
Icontrol Networks, Inc.
![Page 3: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/3.jpg)
Copyright 2016. Icontrol Networks. 3
RETAIL SOLUTIONS
TOP NORTH AMERICANCABLE PROVIDERS
WORLD’S LARGEST HOMESECURITY PROVIDERS
LEADING INTERNATIONAL SERVICE PROVIDERS
Connected Home Solutions Powered by Icontrol
![Page 4: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/4.jpg)
Copyright 2016. Icontrol Networks. 4
Doesn’t IPv4 Just Work?
For Sale
iPhone 6 16g cracked screen works fine for sprint willing to trade for another sprint phone also
Source: varagesale.com, March 2016
![Page 5: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/5.jpg)
Copyright 2016. Icontrol Networks. 5
IPv6 In Context
IPv4 address availability is in decline
Source: APNIC Labs, March 2016
![Page 6: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/6.jpg)
Copyright 2016. Icontrol Networks. 6
IPv6 In Context
Number of devices dramatically increasing
Source: Business Insider Intelligence, 2015
Smart HomeDevicesIncludedHere
![Page 7: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/7.jpg)
Copyright 2016. Icontrol Networks. 7
IPv6 In Context
Number of services increasing
Source: Forrester Research Inc., June 2015
Services RequiringInternet
Connectivity
![Page 8: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/8.jpg)
Copyright 2016. Icontrol Networks. 8
IPv6 In Context
Source: Image from blog.apnic.net
IPv6 is needed to ensure pervasive Internet connectivity
![Page 9: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/9.jpg)
Copyright 2016. Icontrol Networks. 9
Device Development and IPv6: Top Four Considerations
![Page 10: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/10.jpg)
Copyright 2016. Icontrol Networks. 10
Device Development and IPv6: Top Four Considerations
Education
![Page 11: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/11.jpg)
Copyright 2016. Icontrol Networks. 11
Device Development and IPv6: Top Four Considerations
Education Standards
![Page 12: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/12.jpg)
Copyright 2016. Icontrol Networks. 12
Device Development and IPv6: Top Four Considerations
Education Standards
Security
![Page 13: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/13.jpg)
Copyright 2016. Icontrol Networks. 13
Device Development and IPv6: Top Four Considerations
Education Standards
Security Fallback Plan
![Page 14: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/14.jpg)
Copyright 2016. Icontrol Networks. 14
Education
Education Plan
![Page 15: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/15.jpg)
Copyright 2016. Icontrol Networks. 15
Education
Education Plan
IPv6 Protocol
![Page 16: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/16.jpg)
Copyright 2016. Icontrol Networks. 16
Education
Education Plan
IPv6 Protocol
struct in6_addr addr;
s = socket(AF_INET6, SOCK_STREAM, 0);
IPv6 APIs
![Page 17: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/17.jpg)
Copyright 2016. Icontrol Networks. 17
IPv6 Protocol: Comparing IPv4 with IPv6
• IPv6 headers are focused on data needed for routing
Source: cisco.com CC-‐BY-‐SA-‐3.0, via Wikimedia Commons
![Page 18: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/18.jpg)
Copyright 2016. Icontrol Networks. 18
IPv6 Protocol: Comparing IPv4 with IPv6
• IPv6 extension headers add flexibility, but also complexity
IPv6 Header TCP Header Data
Next Header
Ext Header
Next Header
Zero or more extension headers:• Fragments• Routing• Security• Mobility…
![Page 19: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/19.jpg)
Copyright 2016. Icontrol Networks. 19
IPv6 Protocol: IPv6 vs. IPv4 Address Space
• Different address space means a different network
Source: cisco.com CC-‐BY-‐SA-‐3.0, via Wikimedia Commons
IPv4 Network
IPv6 Network
Device example.com
DNS: A record
DNS: AAAA record
![Page 20: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/20.jpg)
Copyright 2016. Icontrol Networks. 20
IPv6 Protocol: Address Assignment
• Stateless Address Auto Configuration (SLAAC) vs. DHCPv6
Network prefix Interface Id
Global prefix Link-‐local prefix MAC-‐based Pseudo-‐random
SLAAC enables a node to obtain an IPv6 address in a decentralized mannerDHCPv6 enables a centralized address assignments
What about Default Router, DNS, NTP, etc.?
☛ Available through DHCPv6 or ICMPv6 Router Announcements
![Page 21: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/21.jpg)
Copyright 2016. Icontrol Networks. 21
IPv6 Protocol: ICMPv6
• ICMPv6 – Control protocol for IPv6• Must be supported• Replaces ARP with ND over multicast• Assists with configuration, routing -‐more than ICMP did• Reducing fragmentation -‐ Path MTU
Source: cisco.com CC-‐BY-‐SA-‐3.0, via Wikimedia Commons
checksumtype code
message body
0-‐127 = error message128-‐255 = informational
![Page 22: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/22.jpg)
Copyright 2016. Icontrol Networks. 22
IPv6 Protocol: Multicast
• Multicast• Must be supported• How to Broadcast? => Link-‐local multicast group• Multicast address format allows multiple scopes:
Source: RFC 7371, September 2014
11111111 flags scope net prefixrsvd plen group id
temporaryor
permanent
1=node-‐local2=link-‐local5=site-‐local8=organization-‐local14=global
0:0:0:0:0:1 = all nodes0:0:0:0:0:2 = all routers…
flgs2
![Page 23: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/23.jpg)
Copyright 2016. Icontrol Networks. 23
IPv6 Protocol Education Summary
• New addressing scheme means a new network • DNS records are different
• Decentralized way to obtain addresses• Changes to well known protocols:
• ICMPv6 now critical• DHCPv6 less important and often not needed• ARP is not used
![Page 24: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/24.jpg)
Copyright 2016. Icontrol Networks. 24
IPv6 APIs
IPv6 impacts various APIs• C,C++,C#,Go,Java,JS,Python,Ruby,Swift etc. are affected• New data structures or new interfaces introduced• Error handling may change
IPv6 impacts DNS lookup and processing• Service discovery• Fallback process (more on this later)
![Page 25: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/25.jpg)
Copyright 2016. Icontrol Networks. 25
IPV4 to IPv6 Porting Example
struct sockaddr_in server;...server.sin_len = sizeof(server);server.sin_family = AF_INET;server.sin_addr.s_addr = INADDR_ANY;server.sin_port = 0;if (bind(sock, (struct sockaddr *) &server, sizeof(server)) <0) {...
struct sockaddr_in6 server;...server.sin6_len = sizeof(server);server.sin6_family = AF_INET6;server.sin6_addr = in6addr_any;server.sin6_port = 0;if (bind(sock, (struct sockaddr *) &server, sizeof(server)) <0) {...
IPv4:
IPv6:
![Page 26: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/26.jpg)
Copyright 2016. Icontrol Networks. 26
IPv6: Further Education
Learn about IPv6• Tutorials and primers
• Free tutorials on the web• Lots of primers and slideware available
• Technical training• Involve both managers and developers
![Page 27: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/27.jpg)
Copyright 2016. Icontrol Networks. 27
Standards
Relevant IPv6 standards exist in multiple domains
• IPv6 related standards
![Page 28: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/28.jpg)
Copyright 2016. Icontrol Networks. 28
Standards
Relevant IPv6 standards exist in multiple domains
• IPv6 related standards• IPv4 transition standards
![Page 29: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/29.jpg)
Copyright 2016. Icontrol Networks. 29
Standards
Relevant IPv6 standards exist in multiple domains
• IPv6 related standards• IPv4 transition standards• Various communication standards related to IPv6
• Example: HTTPS (over TCP over TLS over IPv6)• Example: Thread (mapping IPv6 onto 802.15.4)• …
![Page 30: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/30.jpg)
Copyright 2016. Icontrol Networks. 30
Security
Security must be considered from the start• New network layer -‐> time to re-‐examine security
![Page 31: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/31.jpg)
Copyright 2016. Icontrol Networks. 31
Security
Security must be considered from the start• New network layer -‐> time to re-‐examine security
• ICMPv6 and multicast• IPv6 depends on ICMPv6 and multicast• Cannot just shut this down (no ARP!)
![Page 32: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/32.jpg)
Copyright 2016. Icontrol Networks. 32
Security
Security must be considered from the start• New network layer -‐> time to re-‐examine security
• ICMPv6 and multicast• IPv6 depends on ICMPv6 and multicast• Cannot just shut this down (no ARP!)
• Dual stacks• Do not presume IPv6 is “off”• Need to audit and test both connectivity modes
![Page 33: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/33.jpg)
Copyright 2016. Icontrol Networks. 33
Security
Security must be considered from the start• New network layer -‐> time to re-‐examine security
• ICMPv6 and multicast• IPv6 depends on ICMPv6 and multicast• Cannot just shut this down (no ARP!)
• Dual stacks• Do not presume IPv6 is “off”• Need to audit and test both connectivity modes
• Auto-‐configuration• May expose MAC address• “Privacy” addresses using pseudo-‐random ids
![Page 34: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/34.jpg)
Copyright 2016. Icontrol Networks. 34
Security
• Multiple addresses• Very common in IPv6
![Page 35: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/35.jpg)
Copyright 2016. Icontrol Networks. 35
Security
• Multiple addresses• Very common in IPv6
• Some things to watch out for• Buffer overflow issues
• Larger IP addresses• DNS results (glibc had getaddrinfo buffer overflow!)
• Packet Filtering• Fake RA and ND multicasts
• Fallback attacks• Downgrading of security protocols• Forcing IPv4 addresses
![Page 36: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/36.jpg)
Copyright 2016. Icontrol Networks. 36
Fallback Plan
Is IPv4 alive and well?
By Dhatfield -‐ Own work, CC BY-‐SA 3.0, https://commons.wikimed ia.org/w/ index.php?cur id=4 27988 6
![Page 37: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/37.jpg)
Copyright 2016. Icontrol Networks. 37
Fallback Plan
Is IPv4 alive and well?
By Dhatfield -‐ Own work, CC BY-‐SA 3.0, https://commons.wikimed ia.org/w/ index.php?cur id=4 27988 6
IPv4
![Page 38: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/38.jpg)
Copyright 2016. Icontrol Networks. 38
Fallback Plan
Top ten networks by volume only average 39% IPv6
0%10%20%30%40%50%60%70%80%90%
100%
IPv6/Adoption
Source: Internet Society, March 2016
![Page 39: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/39.jpg)
Copyright 2016. Icontrol Networks. 39
Fallback Plan
Dual Stack IPv4/IPv6• Service discovery
• Can IPv6 be used? Or only IPv4?
![Page 40: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/40.jpg)
Copyright 2016. Icontrol Networks. 40
Fallback Plan
Dual Stack IPv4/IPv6• Service discovery
• Can IPv6 be used? Or only IPv4?• Network discovery
• Can IPv6 route to Internet services?
![Page 41: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/41.jpg)
Copyright 2016. Icontrol Networks. 41
Fallback Plan
Dual Stack IPv4/IPv6• Service discovery
• Can IPv6 be used? Or only IPv4?• Network discovery
• Can IPv6 route to Internet services?• Security issues
• How to protect a system with multiple interfaces?
![Page 42: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/42.jpg)
Copyright 2016. Icontrol Networks. 42
Fallback Plan
Dual Stack IPv4/IPv6• Service discovery
• Can IPv6 be used? Or only IPv4?• Network discovery
• Can IPv6 route to Internet services?• Security issues
• How to protect a system with multiple interfaces?• Usability issues
• Does the user need to know which network?• How will the UI expose this duality?
![Page 43: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/43.jpg)
Copyright 2016. Icontrol Networks. 43
Four Considerations
Education Standards
Security Fallback Plan
![Page 44: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/44.jpg)
Copyright 2016. Icontrol Networks. 44
Thanks
Questions?
Twitter:@CoreyCoreygates
![Page 45: The Impact of IPv6 and the IoT on Smart Home Technology](https://reader038.vdocuments.pub/reader038/viewer/2022103106/588c663b1a28ab75208b7296/html5/thumbnails/45.jpg)
Copyright 2016. Icontrol Networks.