论文信息 - A method for authentication and key exchange for seamless inter-domain handovers

A method for authentication and key exchange for seamless inter-domain handovers

With the rapid growth of the Internet and mobile wireless technologies, an ever-increasing requirement on securing services between mobile users and access networks has become especially important. When a user roams into a foreign network, in addition to data confidentiality, mutual authentication between the user and the provider is also a vital issue. These concerns and the desire to stay seamlessly connected lead to the demand of fast authentication and key establishment mechanisms, which are particularly difficult in inter-domain handover scenarios. In this paper, we introduce a novel mechanism to provide a simple but effective method, which forwards the key from the previous access router to the new access router that the mobile node attaches to. With this mechanism, trust relationship can be re-established even if the access routers do not trust each other in such an inter-domain scenario. Compared with the classical authentication method used in GSM and a recently proposed EAP-based secure key exchange protocol, our approach shows advantages of faster key exchange and authentication with only minimal message exchange in the wireless link.

[1] Stephen T. Kent,et al. Security Architecture for the Internet Protocol , 1998, RFC.

[2] Dan Harkins,et al. The Internet Key Exchange (IKE) , 1998, RFC.

[3] Radia J. Perlman,et al. DoS protection for UDP-based protocols , 2003, CCS '03.

[4] Sarvar Patel,et al. Efficient authentication and key distribution in wireless IP networks , 2003, IEEE Wireless Communications.

[5] Hugo Krawczyk,et al. A Security Architecture for the Internet Protocol , 1999, IBM Syst. J..

[6] Bernard Aboba,et al. Extensible Authentication Protocol (EAP) , 2004, RFC.

[7] L. Salgarelli,et al. EAP-SKE authentication and key exchange protocol , 2003 .

[8] Allan C. Rubens,et al. Remote Authentication Dial In User Service (RADIUS) , 2000, RFC.

[9] Jari Arkko,et al. Diameter Base Protocol , 2003, RFC.

[10] Wei-Pang Yang,et al. Enhanced privacy and authentication for the global system for mobile communications , 1999, Wirel. Networks.

[11] Hugo Krawczyk,et al. A Security Architecture for the Internet Protocol , 1999, IBM Syst. J..

[12] Larry J. Blunk,et al. PPP Extensible Authentication Protocol (EAP) , 1998, RFC.