• Title/Summary/Keyword: Return Routability Procedure

Search Result 10, Processing Time 0.035 seconds

Return Routability Procedure for MAP in HMIPv6 (HMIPv6에서 MAP과 이동노드 사이의 Return Routability Procedure)

  • Lee, Jung-Seob;Jung, Hee-Young;Kim, Sung-Han;Koh, Seok-Joo;Min, Jae-Hong
    • Proceedings of the Korea Information Processing Society Conference
    • /
    • 2003.05b
    • /
    • pp.1249-1252
    • /
    • 2003
  • IETF 에서는 이동노드와 다른 엔티티들 사이에서 발생하는 시그널링을 줄이기 위하여 계층적 이동성 관리 프로토콜(HMIPv6)을 제시하고 있다. HMIPv6는 MAP이라는 새로운 엔티티를 도입하여 특정 지역 내에서 지역 흠 에이전트의 역할을 수행하도록 함으로써 이동노드와 다른 엔티티 간에 발생하는 시그널링을 줄이고, Mobile IPv6의 핸드오프 성능을 개선하도록 하고 있다. HMIPv6에서는 MAP과 이동노드 사이의 인증을 위해 IKE 와 같은 보안 프로토콜을 사용하도록 정의하고 있다. 본 논문에서는 많은 부하가 걸리는 IKE 대신에 RR(Return Routability) 절차를 이용하여 이동노드와 MAP 사이의 인중을 제공하는 방법을 제안한다.

  • PDF

Return Routability Procedure for MAP in HMIPv6 (HMIPv6에서 MAP을 위한 Return Routability Procedure)

  • 이준섭;정희영;김성한;고석주;민재홍
    • Proceedings of the Korean Information Science Society Conference
    • /
    • 2003.04d
    • /
    • pp.409-411
    • /
    • 2003
  • IETF에서는 이동노드와 다른 엔티티들 사이에서 발생하는 시그날링을 줄이기 위하여 계층적 이동성 관리 프로토콜(HMIPv6)을 제시하고 있다. HMIPv6는 MAP(Mobility Anchor Point)라는 새로운 엔티티를 도입하여 특정 지역 내에서 지역 홈 에이전트의 역할을 수행하도록 한다. HMIPv6를 이용함으로써 이동노드와 다른 엔티티 간에 발생하는 시그날링을 줄이고, Mobile IPv6의 핸드오프 성능을 개선할 수 있다. HMIPv6에서는 MAP과 이동노드 사이의 보안을 위해 IKE(The Internet Key Exchange)와 같은 보안 프로토콜을 사용하도록 정의하고 있다. 본 논문에서는 많은 부하가 걸리는 IKE 대신에 RR(Return Routability) 절차를 이용하여 이동노드와 MAP 사이의 보안을 제공하는 방법을 제안한다.

  • PDF

A Study on Performance Improvement of Route Optimization in Fast Mobile IPv6 (Fast Mobile IPv6에서 Route Optimization 성능 향상에 관한 연구)

  • Oh, Moon-Kyoon;Kim, Dae-Young;Ryu, Jung-Kwan;Ro, Soong-Hwan
    • The Journal of Korean Institute of Communications and Information Sciences
    • /
    • v.35 no.4B
    • /
    • pp.559-565
    • /
    • 2010
  • In Mobile IPv6 handover should be followed by RO(Route Optimization) to support direct communication between a MN(Mobile Node) and CN(Correspondent Node). For this RR MIPv6 must perform RR(Return Routability) procedure before BU(Binding Update) to CN. The Fast Handover for MIPv6(FMIPv6) also performs the RR test for MN to communicate with CN directly. However, Return Routability test has long latency resulting in handover delay in MIPv6. This paper proposes the method to reduce the handover deay by reducing RO latency in FastMobile IPv6.

Optimized Route Optimization mode of MIPv6 between Domains Based on AAA (관리상의 도메인간 이동시 AAA 기반의 핸드오버 성능향상 방안)

  • Ryu, Seong-Geun;Mun, Young-Song
    • Journal of the Institute of Electronics Engineers of Korea TC
    • /
    • v.46 no.9
    • /
    • pp.39-45
    • /
    • 2009
  • When Mobile IPv6 is deployed in commercial network, a mobile node needs AAA services for an authentication, authorization and accounting. AAA and Mobile IPv6 are protocols which are operated independently. Then schemes which merge these protocols have been emerged. These schemes can enable a mobile node to establish a security association between the mobile node and a home agent and to perform a binding update for the home agent using AAA authentication request. But these schemes introduce many signal messages and long handover latency during the handover, since Route Optimization mode for Mobile Ipv6 is performed using Return Routability procedure. To solve this problem, we propose a scheme for Route Optimization mode that the home agent performs the binding update for a correspondent node via the AAA infrastructure between the home agent and the correspondent node instead of Return Routability procedure. For performance evaluation, we analyze signal message transmission costs and handover latencies during handover. We show performance improvement of the proposed scheme which reduces handover latency as 61% compared with the existing scheme.

Enhancement of Return Routability Mechanism for Optimized-NEMO Using Correspondent Firewall

  • Hasan, Samer Sami;Hassan, Rosilah
    • ETRI Journal
    • /
    • v.35 no.1
    • /
    • pp.41-50
    • /
    • 2013
  • Network Mobility (NEMO) handles mobility of multiple nodes in an aggregate manner as a mobile network. The standard NEMO suffers from a number of limitations, such as inefficient routing and increased handoff latency. Most previous studies attempting to solve such problems have imposed an extra signaling load and/or modified the functionalities of the main entities. In this paper, we propose a more secure and lightweight route optimization (RO) mechanism based on exploiting the firewall in performing the RO services on behalf of the correspondent nodes (CNs). The proposed mechanism provides secure communications by making an authorized decision about the mobile router (MR) home of address, MR care of address, and the complete mobile network prefixes underneath the MR. In addition, it reduces the total signaling required for NEMO handoffs, especially when the number of mobile network nodes and/or CNs is increased. Moreover, our proposed mechanism can be easily deployed without modifying the mobility protocol stack of CNs. A thorough analytical model and network simulator (Ns-2) are used for evaluating the performance of the proposed mechanism compared with NEMO basic support protocol and state-of-the-art RO schemes. Numerical and simulation results demonstrate that our proposed mechanism outperforms other RO schemes in terms of handoff latency and total signaling load on wired and wireless links.

The Methods of applying IPsec between MN and HA based on Mobile IPv6 (Mobile IPv6환경에서 MN과 HA간의 IPsec 적용 방안에 관한 연구)

  • 박원주;서동일
    • Proceedings of the Korean Institute of Information and Commucation Sciences Conference
    • /
    • 2003.05a
    • /
    • pp.241-244
    • /
    • 2003
  • Recently, IETF Mobile IP WG focus on security problem issues in Mobile IPv6 and provide appropriate protocol to solve them. These include the protections of Binding Updates both to home agents and correspondent nodes, prefix discovery messages and transporting data packets. In Mobile IPv6, control traffics between home agents and mobile nodes uses IPsec to avoid that mobile nodes and correspondent nodes may be vulnerable to attacks. It is used, however, Return Routability procedure for correspondent node to assure that the right mobile node is sending the messages. In this paper, we propose method of IPser processing to protect messages between home agents and mobile nodes.

  • PDF

A Method of Performance Improvement for AAA Authentication using Fast Handoff Scheme in Mobile IPv6 (Mobile IPv6에서 Fast Handoff기법을 이용한 AAA 인증 성능 향상 방안)

  • Kim Changnam;Mun Youngsong;Huh Eui-Nam
    • Journal of KIISE:Information Networking
    • /
    • v.31 no.6
    • /
    • pp.566-572
    • /
    • 2004
  • In this paper, we define the secure authentication model to provide a mobile node with global roaming service and integrate the Fast Handoff scheme with our approach to minimize the service latency. By starting the AAA(Authentication, Authorization and Account) procedure with Fast Handoff simultaneously when a roaming occurs, authentication latency is reduced significantly and provision of fast and seamless service is possible. The previous works such as IPsec(Internet Protocol Security), RR (Return Routability) and AAA define the procedures performed after the completion of Layer2 Handoff which leads us to study a way of providing the real time and QoS guaranteed service during this period. The proposed scheme is for this goal and when appling it to roaming environment it shows the cost reduction up to 55% and 17% for the case of the MN receiving the FBACK and not respectively before L2 Handoff occurs.

HT-RR:Procedure for Improving authentication by CoTI and Binding information (HT-RR:CoTI와 직전 바인딩 정보를 이용한 바인딩 갱신 패킷의 인증 향상 기법)

  • Byun, Kyung-Hwan;Park, Min-Woo;Chung, Tai-Myoung
    • Proceedings of the Korea Information Processing Society Conference
    • /
    • 2008.05a
    • /
    • pp.1155-1158
    • /
    • 2008
  • MIPv6(Mobile IPv6)는 이동노드(mobile node, MN)의 이동성(mobility)를 고려하여 만들어진 프로토콜로 이동노드와 상대노드(correspondent node, CN)간의 효율적인 통신을 위해 경로 최적화 기능을 제공하며, 이를 통해 두 노드가 홈 링크를 통하지 않고도 직접 통신할 수 있다. 이때 경로 최적화를 위해 바인딩 갱신(binding update)과정을 수행하며, MIPv6는 RR(return routability)를 통해 바인딩 갱신을 보호한다. 하지만 RR을 통한 바인딩 갱신은 거짓된 바인딩 갱신 공격에 취약하다. 본 논문에서는 RR과정의 취약점을 보완하는 HT-RR메커니즘을 제안한다.

Enhancement of Fast Handover for Mobile IPv6 based on IEEE 802.11 Network (IEEE 802.11 네트워크 기반 Mobile IPv6 Fast Handover 성능 향상 방안)

  • Ryu, Seong-Geun;Mun, Young-Song
    • Journal of KIISE:Information Networking
    • /
    • v.35 no.1
    • /
    • pp.46-55
    • /
    • 2008
  • As a mobility support for IP have studied, Internet Engineering Task Force(IETF) standardized the Mobile IPv6(MIPv6) protocol. When a mobile node moves between subnets, MIPv6 maintains connectivity to network and supports seamless communication, and these processes are called a Handover. Whenever the mobile node moves between subnets, the Handover is performed. The mobile node can not communicate during the Handover. This period is Galled Handover latency. To reduce this latency, mipshop working group standardizes Fast Handovers for Mobile IPv6(FMIPv6), but latency which the mobile node registers its new care-of address to a home agent and a correspondent node is still long. To solve this problem, we propose a scheme that the mobile node registers the new care-of address to the home agent and initiates Return Routability procedure in advance during layer 2 handover, based on FMIPv6 and IEEE 802.11. We analyze MIPv6, FMIPv6 and the proposed scheme in term of packet transmission cost during the Handover. Compared to MIPv6 the proposed scheme gains 79% improvement, while it gains 31% improvement compared to FMIPv6.

Clue for Secure Route Optimization in Mobile IPv6 (모바일 IPv6 바인딩 업데이트의 보안 향상 기법)

  • Song, Se-Hwa;Choi, Hyoung-Kee;Kim, Jung-Yoon
    • The KIPS Transactions:PartC
    • /
    • v.17C no.2
    • /
    • pp.153-158
    • /
    • 2010
  • Mobile IPv6 is one of method can keep Mobile node's session. To solve legacy Mobile IPv4's triangular routing problem, in Mobile IPv6, Mobile Node could directly communicate with Correspond node by Binding Update. But, attacker could interfere Return Routability Procedure that is Correspond node check Home address and Care of address reachable. At this result, Attacker is able to hijack Session to correspond node from Mobile node. In This paper, We propose new Binding Update scheme for solving that problem. Our approach is that MN gives association both home token and care of token using onewayness of keyed hash fuction. From security and performance analysis, we can see that proposed binding Update Scheme can achieve stronger security than legacy scheme and at the same time requires minimal computational overhead.