For a Secure Mobile IP and Mobile IPv6 Deployment
نویسنده
چکیده
This paper addresses the security problems raised by the introduction of Mobile IP and Mobile IPv6 protocols into existing networks. First, a protocol-based analysis highlights several malicious attacks like masquerade, and denial of service. Then a classical network architecture is studied for the best placements of mobility entities from the security point of view. Firewalls and, possibly NAT/NAPT devices should take into account the mobility dimension. Impact on the filtering rules enforced within a firewall is presented with inherent security risks. Solutions for the mobile behind a NAT/NAPT device to remain reachable are exposed with introduced security weaknesses.
منابع مشابه
Enabling Mobile Ipv6 in Operational Environments
Although Mobile IPv6 allows maintaining transport layer connections alive when an IPv6 node roams to different access networks, certain enabling mechanisms are needed for it to work in large scale network scenarios, including, most notably, issues with Mobile IPv6 bootstrapping and firewall traversal. This paper tries to address these problems by extending the IETF PANA and NSIS protocols to fo...
متن کاملThe Internet of Everything through IPv6: An Analysis of Challenges, Solutions and Opportunities
The public IPv4 address space managed by IANA (http://www.iana.org) has been completely depleted by Feb 1st, 2011. This creates by itself an interesting challenge when adding new things and enabling new services on the Internet. Without public IP addresses, the Internet of Things capabilities would be greatly reduced. Most discussions about IoT have been based on the illusionary assumption that...
متن کاملMobile IPv6 security while traversing a NAT
The mobile Wv6 protocol allows a mobile node to move from one link to another without changing the mobile node’s home address by using a care-of address. When a mobile node moves to a foreign link bebind a NAT, it uses a local-scope care-of address, which bas been allocated by a foreign router dominating the visited nehvork, as identification of itself. On the other hand, other nodes outside th...
متن کاملComparative Performance Analysis of Mobile IPv6 Protocols: Special Reference to Simultaneous Bindings
Mobile IP is the Internet Engineering Task Force (IETF) proposal to cater for All-Internet Protocol (All-IP) mobility. It forms the backbone for next generation Wireless Internet Technology to provide uninterrupted network service while on the move. Our paper conducts a performance study of the various Mobile Internet Protocol version 6 (IPv6) protocols such as Simple Mobile IPv6, Hierarchical ...
متن کاملFirewall traversal in mobile IPv6 networks
Middleboxes such as firewalls are an important aspect for a majority of IP networks today. Current IP networks are predominantly based on IPv4 technology, and hence various firewalls as well as Network Address Translators (NATs) have been originally designed for these networks. Deployment of IPv6 networks is currently work in progress. Given the fact that Mobile IPv6 is a recent standard, most ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2002