LHIP – Lightweight Authentication for the Host Identity Protocol

The ubiquity of truly mobile appliances such as Wi-Fi-enabled mobile phones, PDAs, and Internet web pads stands in stark contrast to the lack of mobility support in today’s communication protocols. Many of these devices are multihomed and use standard protocols like IP and TCP, which have been designed for non-mobile computers with a single network device. Therefore, they are not able to cope with mobility and multihoming appropriately. Several protocols and protocol extensions have been proposed in order to add mobility support to TCP/IP. One of the most promising among them is the Host Identity Protocol (HIP) which adds an additional protocol layer between TCP and IP to hide host mobility from the transport layer. Apart from mobility and multihoming support, HIP also supports host authentication, payload encryption, and a cryptographic namespace without requiring changes to the network infrastructure or network applications. Especially mobile devices with few CPU resources are slowed down by HIP. The poor performance of HIP on these mobile devices results from the extensive use of public-key cryptography for securing the main HIP protocol functions. These public key operations are complex and CPU intensive. In this thesis, we present Lightweight HIP (LHIP), a HIP protocol extension which enables HIP to offer mobility and multihoming support without the use of public key cryptography. The goal of LHIP is to speed up HIP in order to make it usable for weak mobile devices.