BY LEX BERKO
It is now possible to scan the Internet in just under the amount of time it would take you watch an episode of Breaking Bad.
Three computer scientists headquartered at the University of Michigan announced Zmap this past Friday. Zmap is an “open-source network scanner” designed to make internet-wide research all the more accessible.
HTTPS adoption. Image courtsey of Zakir Durumeric, Eric Wustrow, and J. Alex Halderman.
Admittedly, it’s a bit of an overstatement to say this scans the entire Internet. What it actually does is scan all IPv4 addresses in about three-quarters of an hour. Although it doesn’t touch IPv6, that’s a big deal.
First of all, IPv6 may be the latest version of the Internet Protocol, but according to Zakir Durumeric, one of the Michigan researchers, “the vast majority of clients on the Internet do not have access to IPv6. Because most clients do not support IPv6, we expect that most public services and hosts will still support IPv4.” Durumeric noted, however, that adoption is on the rise for the new protocol and “this places us in a unique position in history where we can fully enumerate the IPv4 address space while we still believe hosts are using IPv4.”
Secondly, while doing a scan itself is nothing new, being able to do it in a manageable time frame is. Nmap, a scanner that predates Zmap by over a decade and even made an appearance in The Matrix Reloaded, can take months to do an internet-wide scan. According to Durumeric and his colleagues, the two products were designed with very different objectives in mind, but as Nmap has been used in research previously, they compared them anyway. What they discovered through some extrapolation was that Zmap could complete an internet-wide scan 1,300 times faster than Nmap on its most vigorous setting.
Photo via Mike Lee/Flickr