Authentication Protocols for Binding Update in Route Optimization of Mobile IPv6
Date Issued
2004
Date
2004
Author(s)
Yu, Chun-Ta
DOI
en-US
Abstract
Mobile IPv6 (MIPv6) is a protocol proposed by IETF organization and based on Internet Protocol (IP) version 6 to support mobility. In order to support mobility, MIPv6 uses an additional network node, Home Agent (HA), with a fixed network address. Packets sent to HA first and HA relayed them to the destination. This mechanism introduces another problem: even if the sender and the receiver are close, the sender still has to send packets to the remote HA, which then relay them to the remote receiver. It increases unnecessary routing. This problem is named “Triangle Routing” Problem. IETF proposes “Route Optimization” to solve this problem. The sender sent packets to receivers directly instead of relaying from HA. Although it solves the delay caused by triangle routing problem, it introduces security issue.
Several protocols were proposed to solve security problems in Route Optimization. We list all possible attacks to analyze these protocols. In the protocol analysis, some flaws are found in these protocols. Beside the security issues, performance of the protocol is under consideration.
Three Protocols was proposed in the paper, one is based on existed infrastructure, and the others are based on Cryptographically Generated Addresses (CGA) technology. The infrastructure-based protocol solves most threats in binding update except the Denial of Service (DoS) attack. The other two protocols fix the loophole in other CGA-based protocols and improve the performance. At last, the three protocols are evaluated in security and performance.
Subjects
鑰匙交換認證
連結更新安全
安全性分析
行動IPv6
Secure Binding Update
Security Analysis
Authentication Key-Exchange
Mobile IPv6
Type
other
File(s)![Thumbnail Image]()
Loading...
Name
ntu-93-R91725023-1.pdf
Size
23.31 KB
Format
Adobe PDF
Checksum
(MD5):e102a7d4c4e48ae66392cd3794e7436a