Design and implementation of a secure Mobile IP protocol

2004 International Networking and Communication Conference Pub Date : 2004-06-11 DOI:10.1109/INCC.2004.1366576

M. Mufti, Aasia

{"title":"Design and implementation of a secure Mobile IP protocol","authors":"M. Mufti, Aasia","doi":"10.1109/INCC.2004.1366576","DOIUrl":null,"url":null,"abstract":"As the availability of mobile communication facilities becomes more and more important for the modern information era, there is a growing appreciation of the need to establish mobility standards on strong security foundations. One particular aspect of security that has a great impact in a mobile scenario is authentication. Authentication, by definition, is the guarantee that a received message has indeed originated from the claimed sender. The importance of authentication is highlighted by the growing number of denial of service (DoS) attacks in recent years. The major source of DoS attacks in Mobile IP networks is the absence or weakness of authentication procedures between the various communicating entities. The paper analyzes the security aspects of the basic Mobile IP for IPv4 with reference to DoS attacks. It then presents a new authentication scheme that the authors have developed as a part of a Mobile IP. The scheme is based on public key cryptography and is scalable enough to be adopted on a network of arbitrary size. Protocol implementation is demonstrated by the development of a patch for the Linux kernel.","PeriodicalId":337263,"journal":{"name":"2004 International Networking and Communication Conference","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2004-06-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2004 International Networking and Communication Conference","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/INCC.2004.1366576","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

As the availability of mobile communication facilities becomes more and more important for the modern information era, there is a growing appreciation of the need to establish mobility standards on strong security foundations. One particular aspect of security that has a great impact in a mobile scenario is authentication. Authentication, by definition, is the guarantee that a received message has indeed originated from the claimed sender. The importance of authentication is highlighted by the growing number of denial of service (DoS) attacks in recent years. The major source of DoS attacks in Mobile IP networks is the absence or weakness of authentication procedures between the various communicating entities. The paper analyzes the security aspects of the basic Mobile IP for IPv4 with reference to DoS attacks. It then presents a new authentication scheme that the authors have developed as a part of a Mobile IP. The scheme is based on public key cryptography and is scalable enough to be adopted on a network of arbitrary size. Protocol implementation is demonstrated by the development of a patch for the Linux kernel.

查看原文本刊更多论文

一个安全的移动IP协议的设计与实现

随着移动通信设施的可用性在现代信息时代变得越来越重要，人们越来越认识到需要在强大的安全基础上建立移动标准。在移动场景中有很大影响的安全性的一个特定方面是身份验证。根据定义，身份验证是对接收到的消息确实来自已声明的发送方的保证。近年来，越来越多的拒绝服务(DoS)攻击凸显了身份验证的重要性。移动IP网络中DoS攻击的主要来源是各种通信实体之间缺乏或薄弱的身份验证程序。本文结合DoS攻击对IPv4基本移动IP的安全性进行了分析。然后，它提出了一个新的身份验证方案，作者已经开发了作为移动IP的一部分。该方案基于公钥加密，并且具有足够的可扩展性，可以在任意大小的网络上采用。协议的实现通过Linux内核补丁的开发来演示。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2004 International Networking and Communication Conference

自引率

0.00%

发文量