COMPUTER SCIENCE
and ENGINEERING

Reverse Detection (RD) is an IPv6 Neighbor Cache (NC) protection approach. Since the RD message has no protection mechanism, an attacker can forge RD reply packet to avoid the approach. This paper presents an Improved Reverse Detection (IRD) approach, a timestamp and a packet sequence are introduced to limit the response time and response packet matching respectively; then, define the IRD queue to store timestamp and packet sequence number and other information, and design a Random Early Detection (RED) algorithm based on timestamp to prevent DoS. Our experiment result shows that IRD can effectively resist the neighbor cache spoofing and DoS, compared with the existing approaches, the CPU occupancy rate decreased by 8.31% and neighbor cache update accuracy increased by 4.53%.

IPv6, Neighbor discovery protocol, Neighbor cache