IPv6 Transition

There are significant potential benefits to transitioning enterprise networks to IPv6, but wide-scale adoption in general enterprise settings continues to lag. Questions about the viability of technologies and deployment guidance necessary to do so securely remain a barrier to progress for many.

The IPv6 protocol suite offers a vastly greater address space than IPv4 and supports significant new capabilities necessary to enable modern network environments.

The NCCoE aims to demonstrate the feasibility of securely migrating common enterprise network environments to IPv6-only deployments. In doing so, the project will also address the technologies necessary to maintain interoperability between IPv4 and IPv6 systems during such a transition.
Status: Reviewing Comments

The public comment period has closed for the draft Project Description for the IPv6 Transition project. Thank you to everyone who shared their feedback with us. We are currently reviewing the comments received as work continues on the implementation of the demonstration and development of other sections of the publication.

The NCCoE is planning a project to provide guidance and a reference architecture that address operational, security, and privacy issues associated with the evolution to IPv6-only network infrastructures. The project will demonstrate tools and methods for securely implementing IPv6, whether as a “greenfield” implementation, or as a transition from an IPv4 infrastructure to an IPv6-only network.

While the focus is on enterprise networks, use case scenarios may address other technologies commonly found in modern enterprise environments such as hybrid public/private cloud services, mobile devices, remote/telework, and advanced transport services. The primary focus of the demonstration project will be on the security technologies, services, and recommended practices necessary to ensure that evolving enterprise IT environments to be IPv6-only can be accomplished in a secure and robust manner.

This project will result in the publication of a NIST Cybersecurity Practice Guide, which can serve as a source of guidance and support for IPv6 acquisition, and a reference for secure implementation requirements.

Mature IPv6 implementations exist in almost all client/server operating systems and network routing and switching platforms. Today, there are few technical barriers to deploying robust dual-stack enterprise control and data-planes.

Join the Community of Interest

Employee speaking on video call with colleagues on online briefing with laptop at home

A Community of Interest (COI) is a group of professionals and advisors who share business insights, technical expertise, challenges, and perspectives to guide NCCoE projects. COIs often include experts, innovators, and everyday users of cybersecurity and privacy technologies. Share your expertise and consider becoming a member of this project's COI. 

Tell us about yourself

First & Last Name