Authenticated Binding Update in Mobile IPv6 Networks
Mobile IPv6 allows mobile nodes to remain reachable while moving around in the Internet. In Mobile IPv6, each mobile node is always identified by its home address, regardless of its current point of attachment to the Internet. While situated away from its home, a mobile node is also associated with a care-of address, which provides information about the mobile nodes current location. This chapter reviews security threats and solutions in Mobile IPv6 with particular emphasis on security of binding update operation -a central and mandatory operation to achieve efficient mobility support in Mobile IPv6. The binding update operation allows a mobile node to inform its home agent and its correspondent nodes about its new care-of address. Unauthenticated or malicious binding updates, however, open the door for intruders to perform redirect attacks -malicious acts which redirect traffic from home agent or correspondent nodes to locations chosen by intruders. We present various methods for securing the binding update operation, analyze their security and performance, and point out possible future research directions.
Authentication mobile IP redirect attacks binding update
Qiu Ying Bao Feng
Institute for Infocomm Research Singapore
国际会议
成都
英文
307-311
2010-07-07(万方平台首次上网日期,不代表论文的发表时间)