Security Enhancement of Route Optimization in Mobile IPv6 Networks
(*) Corresponding author
DOI's assignment:
the author of the article can submit here a request for assignment of a DOI number to this resource!
Cost of the service: euros 10,00 (for a DOI)
Abstract
Mobile IPv6 (MIPv6) allows Mobile Node (MN) to be always addressable by its home address. Route Optimization (RO) is standard in MIPv6 to route packets between MN and Correspondent Node (CN) using shortest possible path. It provides better bandwidth and faster transmission. RO greatly increases the security risk. This is one of the main reasons that IPv6 is not implemented yet. However, IPSec is used to protect signaling between MN and Home Agent. In this paper, focus is given on enhanced security scheme in terms of RO based Test-bed evaluation experiment. An enhanced security algorithm is developed on top of MIPv6 RO to secure data and prepare a safe communication between MN and CN. This algorithm is able to detect and prevent the attacker from modifying the data with using an encryption algorithm by cost of little bit increase but tolerable delay. The real-time network Test-bed is implemented to prove the efficiency of proposed method. The experimental results show that the proposed security scheme increases the security performance of the network. This gives advantage of safe communication that can significantly improve the data security of RO while maintaining the quality of other network performance.
Copyright © 2017 Praise Worthy Prize - All rights reserved.
Keywords
Full Text:
PDFReferences
D. Johson, C. Perkins, Mobility Support in IPv6, RFC 3775, IETF, 2004.
J. Arkko, Using IPsec to Protect Mobile IPv6 Signaling between Mobile Nodes and Home Agents, RFC 3776, IETF, 2004.
T. Aura, Mobile IPv6 security, Proceedings of the Security Protocols, 10th International Workshop, Cambridge, UK, April, LNCS, vol. 2467, 2002.
Aura Tuomas. Designing the Mobile IPv6 security protocol. Annals of Telecommunications (Special issue on network and information systems security) March–April 2006.
P. Nikander, T. Aura, J. Arkko, G. Montenegro, E. Nordmark, Mobile IP version 6 Route Optimization Security Design Background, RFC 4225, IETF, December 2005.
P. Nikander, T. Aura, J. Arkko, G. Montenegro, Mobile IP version 6 (MIPv6) Route optimization security design, Proceedings of the IEEE Vehicular Technology Conference Fall 2003, Orlando, 2003.
K. Ren, W. Lou, K. Zeng, F. Bao, J. Zhou, R. H. Deng, Routing Optimization Security in Mobile IPv6, Computer Networks, Vol. 50, Issue 13, pp 2401-2419, September 2006.
K. Elgoarany, M. Eltoweissy, Security in Mobile IPv6: A Survey, Information Security Technical Report, Volume 12, Issue 1, pp 32-43, 2007.
T. Aura, Cryptographically Generated Address (CGA), RFC 3972, IETF, 2005.
H. Soliman, Mobile IPv6 Security (Pearson Education, 2004).
C. Perkins, Securing Mobile IPv6 route optimization using a static shared key, RFC 4449, IETF, June 2006.
F. Duponet, J-M. Combes, Using IPsec between Mobile and Correspondent IPv6 Nodes, draft-ietf-mip6-cn-ipsec-04.txt, Expired IETF Internet Draft, 1 September 2007.
C. Vgot, J. Arkko, A taxonomy and Analysis of Enhancements to Mobile IPv6 Route Optimization, RFC 4651, IETF, February 2007.
F. Dupont, J-M. Combes, Care-of Address Test for MIP6 using a State Cookie, draft-dupont-mipv6-rrcookie-05.txt, November 2007.
C. Vgot, R. Bless, M. Doll, T. Kuefner, Early Binding Updates for MIPv6, Proceeding of the IEEE Wireless Communication and Networking Conference, IEEE, vol. 3, March 2005.
J. Arkko, C. Vgot, Credit-Based Authorization for Binding Lifetime Extension, Work in progress, June 2003.
S. Kent, K. Seo, Security Architecture for the Internet Protocol, RFC 4301, IETF, December 2005.
S. Kent, R. Atkinson, IP Encapsulating security payload (ESP), RFC 4303, IETF, December 2005.
S. Kent, IP authentication header, RFC 4302, IETF, December 2005.
D. Harkins, D. Carrel, The Internet key exchange, RFC 2409, IETF, November 1998.
F. Zhao, F. Wu, S. Jung, Extension to Return Routability Test in MIPv6, Work in progress, February 2005.
D. Montenegro, C. Perkins, SUVC Identifiers and Addresses, draft-montenegro-suvc-02, IETF, November 2001.
G. O’Shea, M. Roe, Child-proof Authentication for MIPv6 (CAM), Microsoft Research Ltd.
G. Montenegro, C. Castelluccia, Crypto-Based Identifiers (CBIDs): Concepts and Applications, ACM Transactions on Information and System Security, vol. 7, No. 1, February 2004.
Choi H, Song Hui, C. Guohong, Mobile multi-layered IPsec, IEEE INFOCOM, March 2005.
Zhang Y, Singh B, A Multi-layer IPsec Protocol, Proceeding of ninth USENIX security symposium, 2000.
Zhang Y, Multi-layer protection scheme for IPsec, IETF, April 2006.
Refbacks
- There are currently no refbacks.
Please send any question about this web site to info@praiseworthyprize.com
Copyright © 2005-2024 Praise Worthy Prize