한국정보과학회논문지:정보통신 (Journal of KIISE:Information Networking)

한국정보과학회 (Korean Institute of Information Scientists and Engineers)
권호 표지

Mobile IPv6에서 AAA를 이용한 MN과 CN간의 상호 인증 및 경로 최적화

Mutual Authentication and Route Optimization between MN and CN using AAA in Mobile IPv6

  • 발행 : 2004.10.01
PDF 다운로드
⟨ 이전 논문 다음 논문 ⟩

초록

IETF의 mobileip 작업 그룹에서는 경로 최적화를 위해 절차가 간단하고 이동 노드의 낮은 연산 처리 능력을 고려해 암호학적 연산을 대폭 줄인 보안 기능으로서 RR(Return Routability)를 제공하지만 실질적으로 제공하는 보안 강도는 매우 낮으므로 이를 개선하기 위해 현재 CGA(Cryptographically Generated Address), IPsec(Internet Protocol Security)등의 암호학적 처리 방법과 PKI(Public Key Infrastructure), AAA(Authentication, Authorization and Account)등의 기존 인프라와 통합하는 강력한 보안 서비스 방법이 연구되고 있다. 본 논문에서는 유선망 및 802.11, 3GPP(3rd Generation Partnership Project)등의 무선망에서 성공적으로 사용되고 있는 AAA 인프라 기반의 노드 인증 및 안전한 경로 최적화를 위한 키 분배 방안을 제안하고 제안된 방법에 대한 비용 분석 모델을 통해 RR과 효율성을 비교하였는데 결과적으로 최대 20 퍼센트의 성능 향상을 보였다.

The mobileip working group is equipped with the RR(Return Routabilit) taking the simple procedures and small amount of cryptographic operations by considering the processing capability of the mobile node however it dose not provide security features enough. To replace with enhanced methods, mobileip WG is making an effort to find the approved solutions include CGA(Craptographically Generated Address), IPsec(Internet Protocol Security) as well as the existing infrastructure such as AAA(Authentication, Authorization and Account) and PKI(Public Key Infrastructure). In this paper, we propose the authentication and route optimization based on AAA suitable for the requested security service for its successful story in wireless network such as 802.11 and 3GPP(3rd Generation Partnership Project) as well as wired one. We analyze the effectiveness of our scheme according to the traffic and mobility properties. The result shows the cost reduction up to 20 percent comparing with RR.

키워드

참고문헌

  1. F. Dupont, J. Bournelle: AAA for Mobile IPv6, draft-dupont-mipv6-aaa-01.txt, Internet Draft IETF, Nov. 2001
  2. Pat R. Calhoun, Charels E. Perkins: Diameter Mobile IPv4 Application, Intener Draft, Internet Engineeri Task Force, Nov. 2001
  3. David B. Johnson, Charles E. Perkins, Jari Arkko: Mobility Support in IPv6, draft-ietf-mobileipipv6-24.txt, Internet Draft IETF, Dec. 2003
  4. P.Calhoun, C.Perkins: Mobile IP Network Access Identifier Extension for IPv4, RFC 2794, IETF, March, 2000
  5. Franck Le, Basavaraj Pati!, Charles E. Perkins: Diameter Mobile IPv6 Application, draft-le-aaadiameter-mobileipv6-03.txt, Internet Draft IETF, Oct. 2003
  6. Allison Mankin, Basavaraj Patil, Dan Harkins, Erik Nordmark, Pekka Nikander, Phil Roberts, Thomas Narten: Threat Model introduced by Mobil IPv6 and Requirements for Security in Mobile IPv6, draft-ietf-mobileip-ipv6-scrty-reqts02.txt, Internet Draft IETF, May, 2001
  7. IEEE Std 802.1x-2001: Port-Based Network Access Control, June 2001
  8. Pat R. Calhoun, Erik Guttman, Jari Arkko: Diameter Base Protocol, RFC3588, IETF, Sep. 2003
  9. R. Jain, T.Raleigh, C. Graff and M. Bereschinsky: Mobile Interner Access and QoS Guarantees Using Mobile IP and RSVP with Location Registers, in Proc. ICC'98 Conf., pp.1690-1695, Atlanta, Jan. 1998 https://doi.org/10.1109/ICC.1998.683118
  10. Thomas, R., H. Gilbert and G.Mazzioto: Infulence of the mobile station on the performance of a radio mobile cellualar network, Proc. 3rd Nordc Sem., paper 9.4, Copenhagen, Denmark, Sep. 1988