IPv6 Transition

There are significant potential benefits to transitioning enterprise networks to IPv6, but wide-scale adoption in general enterprise settings continues to lag. Questions about the viability of technologies and deployment guidance necessary to do so securely remain a barrier to progress for many.

The IPv6 protocol suite offers a vastly greater address space than IPv4 and supports significant new capabilities necessary to enable modern network environments.

The NCCoE aims to demonstrate the feasibility of securely migrating common enterprise network environments to IPv6-only deployments. In doing so, the project will also address the technologies necessary to maintain interoperability between IPv4 and IPv6 systems during such a transition.
Status: Defining Scope

The NCCoE is working with interested stakeholders to define a scope of work, use cases, and hardware and software components needed for the IPv6 Transition project.

The public comment period for this draft Project Description is now open through January 27, 2022. 

IPv6 Transition Draft Project DescriptionDocument Version IPv6 Transition Draft Project Description

The NCCoE is planning a project to provide guidance and a reference architecture that address operational, security, and privacy issues associated with the evolution to IPv6-only network infrastructures. The project will demonstrate tools and methods for securely implementing IPv6, whether as a “greenfield” implementation, or as a transition from an IPv4 infrastructure to an IPv6-only network.

While the focus is on enterprise networks, use case scenarios may address other technologies commonly found in modern enterprise environments such as hybrid public/private cloud services, mobile devices, remote/telework, and advanced transport services. The primary focus of the demonstration project will be on the security technologies, services, and recommended practices necessary to ensure that evolving enterprise IT environments to be IPv6-only can be accomplished in a secure and robust manner.

This project will result in the publication of a NIST Cybersecurity Practice Guide, which can serve as a source of guidance and support for IPv6 acquisition, and a reference for secure implementation requirements.

Mature IPv6 implementations exist in almost all client/server operating systems and network routing and switching platforms. Today, there are few technical barriers to deploying robust dual-stack enterprise control and data-planes.

Join the Community of Interest

A Community of Interest (COI) is a group of professionals and advisors who share business insights, technical expertise, challenges, and perspectives to guide NCCoE projects. COIs often include experts, innovators, and everyday users of cybersecurity and privacy technologies. Members typically meet monthly by teleconference. Share your expertise and consider becoming a member for this project's COI. 

Request to Join
Employee speaking on video call with colleagues on online briefing with laptop at home