Security Enhancement on an Authentication Method for Proxy Mobile IPv6

Proxy Mobile IPv6 (PMIPv6) is an emerging network-based localized mobility management scheme. Recently, Zhou, Zhang and Qin proposed an authentication method for PMIPv6. However, this paper shows that their scheme fails to achieve mutual authentication between the Mobile Node (MN) and network. It performs only unilateral authentication of the MN to network, and the MN has no information about the authenticity of the network, thus it is susceptible to network spoofing attack and malicious MAG attack. Then, an improved scheme is proposed to remedy these security flaws.

[1]  Youngsong Mun,et al.  Mutual Authentication Scheme in Proxy Mobile IP , 2008, 2008 International Conference on Computational Sciences and Its Applications.

[2]  David Taniar,et al.  Computational Science and Its Applications - ICCSA 2009, International Conference, Seoul, Korea, June 29-July 2, 2009, Proceedings, Part I , 2009, ICCSA.

[3]  HyunGon Kim,et al.  Secure and low latency handoff scheme for proxy mobile IPv6 , 2008, Mobility '08.

[4]  Tai-Myoung Chung,et al.  A Traffic Analysis of Authentication Methods for Proxy Mobile IPv6 , 2008, 2008 International Conference on Information Security and Assurance (isa 2008).

[5]  Myung-Ki Shin,et al.  Mobility management for all-IP mobile networks: mobile IPv6 vs. proxy mobile IPv6 , 2008, IEEE Wireless Communications.

[6]  Tai-Myung Chung,et al.  Authentication Analysis Based on Certificate for Proxy Mobile IPv6 Environment , 2009, ICCSA.

[7]  Tai-Myung Chung,et al.  Ticket-Based Authentication Mechanism for Proxy Mobile IPv6 Environment , 2008, 2008 Third International Conference on Systems and Networks Communications.

[8]  Basavaraj Patil,et al.  Proxy Mobile IPv6 , 2008, RFC.

[9]  Victor Fajardo,et al.  Diameter Base Protocol , 2003, RFC.

[10]  Hongke Zhang,et al.  An authentication method for proxy mobile IPv6 and performance analysis , 2009, Secur. Commun. Networks.

[11]  James Kempf,et al.  Security Threats to Network-Based Localized Mobility Management (NETLMM) , 2007, RFC.

[12]  Mohamed Eltoweissy,et al.  Security in Mobile IPv6: A survey , 2007, Inf. Secur. Tech. Rep..