• Journal of the Korea Society of Computer and Information
• /
• v.9 no.3
• /
• pp.171-175
• /
• 2004

This paper proposes a seamless handoff scheme that enables a mobile node to continue a session when moving to an overlapping area. During handoff due to the weakness of signaling, mobile node makes new Care-of Addresses using signals received from access router when MN reaches the edge of its area in addition to its current CoA, and it sends temporary binding update messages to Mobility Anchor Point which manage the area covering MN. MAP receives that binding update messages from MN, and temporarily stores new binding informations from them to its binding cache besides existing binding information for MN. This scheme ensures a seamlessly handoff using multicasting until MN enter a new access router area and sends a confirmed binding update message to MAP.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2006.05a
• /
• pp.905-908
• /
• 2006

MIPv6 는 MN(Mobile Node)가 자신의 홈 네트워크를 벗어나 외부 네트워크로 이동하여도 다른 노드들과 끊김 없이 지속적인 통신을 할 수 있게 해주는 인터넷 프로토콜이다. MN 은 외부네트워크로 이동 후 HA(Home Agent) 및 CN(Correspondent Node)로 핸드오버(Handover) 동작의 수행하며 이로 인한 지연이 발생하게 된다. 이러한 지연을 줄이기 위한 대책으로 Fast 핸드오버가 등장하였다. Fast 핸드오버 과정에서 MN 은 이동하려는 서브넷의 라우터(New Access Router: NAR)로의 전환을 위하여 현재 연결된 AR 과 미리 정보를 주고 받게 되고, 이동이 발생한 후에 NAR 과의 핸드오버 지연시간이 감소하게 된다. 반면 공격자가 flooding 을 통해 MN 에게 DoS(Denial of Service) 공격을 가하여 MN 을 다운시킨 후, MN 으로 위장하여 데이터를 가로채는 취약점이 존재한다. 본 논문에서는 위의 취약점을 보완하기 위하여 핸드오버 과정에서 주고받는 메세지에 대한 기밀성 및 노드 인증을 제공하는 ID 기반 암호시스템에 기반한 안전한 Fast 핸드오버 방식을 제안한다. 제안하는 모델은 메시지의 암호화와 노드 인증을 통해 무결성 및 기밀성을 보장하고 Traditional PKI 시스템에 비해 공개키 인증시간을 단축하는 이점을 가질 것으로 기대된다.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2012.04a
• /
• pp.488-491
• /
• 2012

모바일 유저를 위한 무결점 전송 서비스는 최근에 모바일 통신에 있어 가장 중요한 논제 중 하나가 되었다. 차세대 무선 네트워크(Next Generation Wireless Networks, NGWN)상에서의 무결점 서비스는 이동단말(MN, Mobile Node)에게 광범위한 로밍을 효율적으로 제공하는 이동성관리가 매우 중요하게 되었다. MIPv6(Mobility IPv6)는 IETF(The Internet Engineering Task Force)에 의해 제안된 이동성관리 기법들 중 하나이다. IPv6기반에서 이동성관리 기법들은 다양한 형태로 발전되어왔다. 각각의 관리 기법들은 이동단말에서의 데이터 이동에 직접적인 관여를 하고 있다. 이 논문에서 두 가지의 이동성관리 평가기법에 대해 제안하고자 한다. 이동성관리를 위한 다양한 프로토콜에서 네트워크상의 핸드오버나 패킷의 전송절차를 수행할 때, 데이터의 전송절차에 대하여 분석하며 또 시그널링의 비용을 산정함에 있어 연산처리하는 노드들과 그 노드간의 파라미터들을 이용하여 가장 효율적인 방법으로 분석모델링을 제안한다. 이동성 프로토콜의 시그널링 비용과 그 비용을 구성하는 각각의 파라미터들을, 수치적 결과를 통해서 각각의 프로토콜들의 비용을 분석한다. 비용은 시그널링 비용과 패킷전송의 합이며, 각각의 이동성관리 기법에 적용하여 그 비용을 분석한다. 이동성 관리의 다양한 기법들 중 가장 최근에 제안되어지고 있는 네트워크 기반의 이동성 프로토콜이 전체적인 비용측면에서 더 우수한 결과를 보여준다.

• The Journal of the Institute of Internet, Broadcasting and Communication
• /
• v.13 no.5
• /
• pp.107-119
• /
• 2013

This paper reinforced security under the network evaluation of wire wireless integration of NEMO (NEwork MObility) supporting mobility and network-based PMIPv6 (Proxy Mobile IPv6). It also proposes $SK-L^2AS$ (Symmetric Key-Based Local-Lighted Authentication Scheme) based on simple key which reduces code calculation and authentication delay costs. Moreover, fast handover technique was also adopted to reduce handover delay time in PMIPv6 and X-FPMIPv6 (eXtension of Fast Handover for PMIPv6) was used to support global mobility. In addition, AX-FPMIPv6 (Authentication eXtension of Fast Handover for PMIPv6) is proposed which integrated $SK-L^2AS$ and X-FPMIPv6 by applying Piggybacks method to reduce the overhead of authentication and signaling. The AX-FPMIPv6 technique suggested in this paper shows that this technique is better than the existing schemes in authentication and handover delay according to the performance analysis.

• The Journal of Korean Institute of Communications and Information Sciences
• /
• v.35 no.7A
• /
• pp.688-696
• /
• 2010

The Proxy Mobile IPv6 (PMIPv6) is a network localized mobility management protocol that is independent of global mobility management protocols. In a single mobility domain (LMD), the mobile node (MN) is not involved in any IP mobility-related signaling and uses only its PMIPv6 home address for all its communication. Subsequently, when the MN moves into another LMD, the MN must change its PMIPv6 home address. In such a circumstance, host-based mobility signaling is activated. Thus, the nature of the network-based mobility of the PMIPv6 cannot be retained. Additionally, if the MN does not support global mobility, it cannot maintain communication with its correspondent node (CN). In this paper, we propose a solution for global mobility support in PMIPv6 networks, called Global-PMIPv6 that allows current communication sessions of a MN without mobility protocol stacks to be maintained, even when the MN moves into another LMD. Thus, Global-PMIPv6 retains the advantages of the PMIPv6 for global mobility support. We then evaluate and compare network performance between our proposed solution and PMIPv6.

• Journal of Internet Computing and Services
• /
• v.14 no.5
• /
• pp.11-26
• /
• 2013

In the wireless Internet, it is so restrictive to use the IPSec. The MIPv4 IPSec's path cannot include wireless links. That is, the IPSec of the wireless Internet cannot protect an entire path of Host-to-Host connection. Also wireless circumstance keeps a path static during the shorter time, nevertheless, the IKE for IPSec SA agreement requires relatively long delay. The certificate management of IPSec PKI security needs too much burden. This means that IPSec of the wireless Internet is so disadvantageous. Our paper is to construct the Mobile IPSec proper to the wireless Internet which provides the host-to-host transport mode service to protect even wireless links as applying excellent WP-IBE scheme. For this, Mobile IPSec requires a dynamic routing over a path with wireless links. FA Forwarding is a routing method for FA to extend the path to a newly formed wireless link. The FA IPSec SA for FA Forwarding is updated to comply the dynamically extended path using Source Routing based Bind Update. To improve the performance of IPSec, we apply efficient and strong future Identity based Weil Pairing Bilinear Elliptic Curve Cryptography called as WP-IBE scheme. Our paper proposes the modified protocols to apply 6 security-related algorithms of WP-IBE into the Mobile IPSec. Particularly we focus on the protocols to be applied to construct ESP Datagram.

• The KIPS Transactions:PartC
• /
• v.14C no.6
• /
• pp.503-508
• /
• 2007

Since the Wibro service realize mobile network on the public, it has been considered that it is not enough to support real time service at vehicular speed. The standard Fast Mobile IPv6 Handover Protocol using HMIPv6 may guarantee seamless service as long as the Mobile Node moves in the same domain MAP however it does not regard fast handover over inter-MAP domain. Thus Macro Mobility Handover in HMIPv6 was proposed to reduce handover latency in inter-MAP domain. But it is still not enough to support real-time service. So we propose an Improved FHMIPv6 over 802.16e network to reduce the overall handover latency. We embedded Layer 3 handover messages of the FHMIPv6 into the Layer 2 handover messages. So the MN is able to $^-nish$ overall handover procedure earlier in our scheme. The numerical results show the performance of IFHMIPv6 has improved about 32% in comparison with FHMIPv6.

• The KIPS Transactions:PartC
• /
• v.13C no.2 s.105
• /
• pp.211-218
• /
• 2006

The Mobile IPv6 provides the enhanced internet services to user by supporting a node's mobility. In Mobile IPv6(MIPv6), the mobile node sends the binding message which binds home address(HoA) with care-of address(CoA) to the home agent whenever it changes its point of attachment to the internet. To reduce the mobility management signal message the Paging Hierarchical Mobile IPv6(PHMIPv6) is proposed. The mobile node does not send the binding message within the domain if the mobile node's state is idle. Therefore the mobility signal message cost can be reduced. However, when the mobile node's session arrival rate is high the many mobility management signal cost are needed because the paging cost is very high. In this paper, we analysis the drawback of PHMIPv6 and propose the scheme which can reduce the mobility management signal cost. The proposed scheme works independent of the number of subnet in the domain. Therefore the proposed scheme can improve the mobile node's mobility management scheme.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.27 no.2
• /
• pp.397-408
• /
• 2017

As mobile traffic increases rapidly, DMM (Distributed Mobility Management) has been proposed as a mobility management technology for seamless communication of mobile devices as mobile traffic increases rapidly. the DMM distributes mobility management from the core network to the edge network, enabling stable binding updates with low latency. However, the DMM still have network delay and security problems for sessions. In this paper, we point out the problems existing in the DMM and propose a new protocol in which the MN (Mobile Node) directly participates in authentication and mutual authentication is correctly performed to solve this problem. We demonstrate not only security improvements but also performance improvements with performance analysis.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.20 no.3
• /
• pp.121-134
• /
• 2010

With the help of various Layer 2 triggers, Fast Handover for Mobile IPv6 (FMIPv6) considerably reduces the latency and the signaling messages incurred by the handover. Obviously, if not secured, the protocol is exposed to various security threats and attacks. In order to protect FMIPv6, several security protocols have been proposed. To our best knowledge, there is lack of analysis and comparison study on them though the security in FMIPv6 is recognized to be important. Motivated by this, we provide an overview of the security protocols for FMIPv6, followed by the comparison analysis on them. Also, the security threats and requirements are outlined before the protocols are explored. The comparison analysis result shows that the protocol presented by You, Sakurai and Hori is more secure than others while not resulting in high computation overhead. Finally, we introduce Proxy MIPv6 and its fast handover enhancements, then emphasizing the need for a proper security mechanism for them as a future work.