Bootstrapping mobile IPv6 using EAP

2004

Journal of Computer Science, 2006

The recent advances in wireless communication technology and the unprecedented growth of the Internet have paved the way for wireless networking and IP mobility. Mobile Internet protocol has been designed within the IETF to support the mobility of users who wish to connect to the Internet and maintain communications as they move from place to place. This study describes and summarizes the current Internet draft for mobile IP (MIPv4) with its major components: agent discovery, registration and tunneling. In addition, we outline the available encapsulation techniques and route optimization procedure. In the end, we describe the design of the new protocol for transparent routing of IPv6 packets to mobile IPv6 nodes operating in the Internet.

IFIP Advances in Information and Communication Technology, 2002

This paper addresses the security problems raised by the introduction of Mobile IP and Mobile IPv6 protocols into existing networks. First, a protocolbased analysis highlights several malicious attacks like masquerade, and denial of service. Then a classical network architecture is studied for the best placements of mobility entities from the security point of view. Firewalls and, possibly NATINAPT devices should take into account the mobility dimension. Impact on the filtering rules enforced within a firewall is presented with inherent security risks. Solutions for the mobile behind a NATINAPT device to remain reachable are exposed with introduced security weaknesses.

2016

This document defines a profile that is a superset of the connection to IPv6 cellular networks defined in the IPv6 for Third Generation Partnership Project (3GPP) Cellular Hosts document. This document defines a profile that is a superset of the connections to IPv6 cellular networks defined in "IPv6 for Third Generation Partnership Project (3GPP) Cellular Hosts" (RFC 7066). Both mobile hosts and mobile devices with the capability to share their 3GPP mobile connectivity are in scope. IESG Note The consensus-based IETF description of IPv6 functionality for cellular hosts is described in RFC 7066. Binet, et al. Informational [Page 1] RFC 7849 IPv6 Profile for Cellular Devices May 2016 Status of This Memo This document is not an Internet Standards Track specification; it is published for informational purposes. This is a contribution to the RFC Series, independently of any other RFC stream. The RFC Editor has chosen to publish this document at its discretion and makes no statement about its value for implementation or deployment. Documents approved for publication by the RFC Editor are not a candidate for any level of Internet Standard; see Section 2 of RFC 5741. Information about the current status of this document, any errata, and how to provide feedback on it may be obtained at http://www.rfc-editor.org/info/rfc7849.

Proceedings of the Eighth IEEE Symposium on Computers and Communications. ISCC 2003, 2003

Hierarchical Mobile IPv6 (HMIPv6) is a protocol that enhances Mobile IPv6 (MIPv6) with faster handovers. Neither HMIPv6 nor MIPv6 provides ways to authenticate roaming mobile nodes, although visited networks will need to check if mobile nodes can be authorized access. A solution is required before MIPv6 can be commonly deployed. Mechanisms to integrate Mobile IPv4 and the Diameter protocol for authentication, authorization and accounting (AAA) have proved to be a useful solution for IPv4. However, a similar mechanism does not yet exist for IPv6. We therefore propose a modification to HMIPv6 to allow for authenticated access for IPv6 supported mobility. HMIPv6, as well as Diameter protocols, supports transportation of AAA information and extends MIPv6 with mobility anchor points. Our proposed solution shows how different mechanisms for secure roaming can be united in an efficient, secure and scalable manner. Furthermore, since HMIPv6 is a protocol designed to reduce the delay and signaling overhead of MIPv6, our proposal represents a way to integrate fast handovers with authenticated and authorized access.

2005

Abstract Numerous mobility solutions have been proposed in the past, but none of them have been widely deployed today. To address the deployment difficulty in previous work, we propose an end-system-based mobility solution for IPv6 (EMIPv6). In our design, we adhere to the end-to-end principle (Saltzer et al., 1984) by directly performing connection maintenance and data packet delivery between the two communicating hosts.

ETRI Journal, 2014

In the Mobile IPv6 (MIPv6) protocol, a mobile node (MN) is a mobile device with a permanent home address (HoA) on its home link. The MN will acquire a care-of address (CoA) when it roams into a foreign link. It then sends a binding update (BU) message to the home agent (HA) and the correspondent node (CN) to inform them of its current CoA so that future data packets destined for its HoA will be forwarded to the CoA. The BU message, however, is vulnerable to different types of security attacks, such as the man-in-the-middle attack, the session hijacking attack, and the denial-of-service attack. The current security protocols in MIPv6 are not able to effectively protect the BU message against these attacks. The private-key-based BU (PKBU) protocol is proposed in this research to overcome the shortcomings of some existing MIPv6 protocols. PKBU incorporates a method to assert the address ownership of the MN, thus allowing the CN to validate that the MN is not a malicious node. The results obtained show that it addresses the security requirements while being able to check the address ownership of the MN. PKBU also incorporates a method to verify the reachability of the MN.

2011 International Conference on Multimedia Computing and Systems, 2011

Engineering Task Force to support the mobility service as wireless technologies have grown and many people are more and more using wireless networks during movements. MIPv6 has long been favored over Mobile IPv4 and it's a major solution to supply mobility services on the Internet and therefore it's proposed for the future of the mobile Internet access. Many networking vendors have already implemented it in their operating systems and equipments even if, in practice, vendors are actively deploying these capabilities only in part. Moreover, MIPv6 was recently selected to provide network-level mobility management to end-users of WiMAX and 3GPP2. The aim of MIPv6 is to provide uninterrupted connection while users being mobile. This protocol relies on a specific router called the home agent that hides location changes of the mobile nodes from the rest of the Internet. To do so, the mobile nodes traffic must flow through the home agent. This mandatory deviation, called dogleg routing, produces longer paths and higher communication delays. Therefore, MIPv6 cannot satisfy requirements of realtime applications such as video streaming service and VoIP service. In order to solve these problems, we intend to develop a new approach to address deployments of Home Agents in MIPv6 based on mobility patterns.

GLOBECOM 2009 - 2009 IEEE Global Telecommunications Conference, 2009

The evolution of Internet and its hosts does not match anymore the current Internet architecture, designed when mobility, multihoming and security were not considered, and based on IP addresses with the double role of host's identity and host's topological location. In this paper we propose a secure global and localized mobility management scheme suitable for multihomed Mobile Nodes (MNs) and based on Host Identity Protocol (HIP) and Proxy Mobile IPv6 (PMIPv6). It merges the new identifier/locator split architecture proposed by HIP, especially designed for providing security and multihoming to MNs, with the micro-mobility management scheme of PMIPv6, which has been proposed for unmodified MNs with future Global Mobility Management (GMM) protocols. HIP-PMIPv6 combination has double benefits. On one side, it represents an efficient micro-mobility solution for HIP. On the other side, it provides a GMM scheme for PMIPv6, which supports intertechnology handover and multihoming together with security. The HIP-PMIPv6 scheme has been implemented in a real testbed and experimental results prove its viability.

2000

The paper is focused on Mobile IPv6 recommendations, including draft-ietf-mobileip- ipv6-19 and mainly regarding to Linux Red Hat 8.0. Although Microsoft's Windows 2000/XP/2003 currently uses the obsolete recommendation draft- ietf-mobileip-ipv6-13, we did select also these operating systems for our trial. The testing scenario did not include from the beginning any wireless equipment. The minimal mobility demonstrator was based on three