We propose a secure route optimization mechanism for network mobility management. We also solve three problems to achieve the route optimization: Mobile Router's security association, need of Correspondent Node's Mobile IPv6-awareness, and location privacy. In order to solve the problems, we make a Mobile Router a secure proxy of a mobile network node so that the mobile router can send a proxy binding update to a home agent of the mobile network node in a secure way. We also use multi-key cryptographically generated addresses (MCGA). By using MCGA, a mobile network node can securely authorize a Mobile Router to use the same address. At the same time, a home agent of a mobile network node can also verify that the binding update is from either an actual address owner or an authorized proxy. Having performed an analysis of our secure route optimization over rather realistic environment, we show we can save propagation path length between the home agent of the mobile network node and the mobile router.
[1]
Ryuji Wakikawa,et al.
Network Mobility (NEMO) Basic Support Protocol
,
2005,
RFC.
[2]
Pekka Nikander,et al.
SEcure Neighbor Discovery (SEND)
,
2005,
RFC.
[3]
Fan Zhao,et al.
Network Mobility Route Optimization Problem Statement
,
2007,
RFC.
[4]
Jonathan Wood,et al.
IP Address Authorization for Secure Address Proxying Using Multi-key CGAs and Ring Signatures
,
2006,
IWSEC.
[5]
Tuomas Aura,et al.
Cryptographically Generated Addresses (CGA)
,
2005,
ISC.
[6]
Thomas Narten,et al.
IPv6 Stateless Address Autoconfiguration
,
1996,
RFC.
[7]
Charles E. Perkins,et al.
Mobility support in IPv6
,
1996,
MobiCom '96.
[8]
Jukka Manner,et al.
Mobility Related Terminology
,
2004,
RFC.