论文信息 - Protecting all traffic channels in mobile IPv6 network

Protecting all traffic channels in mobile IPv6 network

In this paper, we propose a comprehensive security solution for mobile IPv6 networks including secure binding update, secure fast handover, user authentication and session key management for data security. In our proposal, one of the home agent's functions is to act as a security proxy for its mobile nodes. The authentication is based on the home agent's certificate and the secret session keys are generated by strong cryptosystems. Since these session keys are long term, it is more suitable for fast handover in mobile network. In addition, as the major operations are deployed on the fixed and wired machines, i.e., the home agents of mobile nodes, it keeps well the balance between the strong security requirements for e-commerce and the weak capability of mobile devices in terms of computing power and communicating speed. Our proposal avoids many security obstacles in the return routability protocol and provides a simple, integrated and efficient security solution for mobile communication.

[1] Hugo Krawczyk,et al. HMAC: Keyed-Hashing for Message Authentication , 1997, RFC.

[2] Rajeev Koodli,et al. Fast Handovers for Mobile IPv6 , 2001, RFC.

[3] Dan Harkins,et al. The Internet Key Exchange (IKE) , 1998, RFC.

[4] Pekka Nikander,et al. Mobile IP Version 6 Route Optimization Security Design Background , 2005, RFC.

[5] Robert H. Deng,et al. Defending against redirect attacks in mobile IP , 2002, CCS '02.

[6] Charles E. Perkins,et al. Mobility support in IPv6 , 1996, MobiCom '96.

[7] Thomas Narten,et al. Neighbor Discovery for IP Version 6 (IPv6) , 1996, RFC.

[8] H. Soliman,et al. Hierarchical MIPv6 mobility management (HMIPv6) , 2002 .

[9] Ronald L. Rivest,et al. The MD5 Message-Digest Algorithm , 1992, RFC.

[10] Pekka Nikander,et al. Mobile IP version 6 (MIPv6) route optimization security design , 2003, 2003 IEEE 58th Vehicular Technology Conference. VTC 2003-Fall (IEEE Cat. No.03CH37484).

[11] Adi Shamir,et al. A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.

[12] Jari Arkko,et al. Using IPsec to Protect Mobile IPv6 Signaling Between Mobile Nodes and Home Agents , 2004, RFC.

[13] James H. Burrows,et al. Secure Hash Standard , 1995 .