Dual stack mobile IP security and bootstrapping

No Thumbnail Available

URL

Journal Title

Journal ISSN

Volume Title

School of Electrical Engineering | Master's thesis
Checking the digitized thesis and permission for publishing
Instructions for the author

Authors

Date

2012

Department

Tietoliikenne- ja tietoverkkotekniikan laitos

Major/Subject

Tietoverkkotekniikka

Mcode

S-38

Degree programme

Language

en

Pages

[7] + 73

Series

Abstract

The wide variety of wireless broadband solutions has redefined the notions of connectivity and mobility. Powerful mobile devices can take full advantage of the wide spectrum of connectivity choices and the need for seamless mobility between different access networks is greater than ever before. At the same time, exhaustion of IPv4 address space marks the gradual evolution to the new IPv6 platform. Dual stack frameworks are important for a smooth transition to an all IPv6 Internet and DSMIPv6 is one such framework which provides inter-access mobility between heterogeneous IP (IPv4 and IPv6) networks. DSMIPv6 relies on IPsec to secure its signalling and payload communication. Though IPsec can be manually configured for this purpose, IKEv2 provides a platform to automate this process. DSMIPv6 can also use IKEv2 for dynamic allocation of Home Address (or Home Prefix) to a bootstrapping mobile node. However, lack of a standardized interface between IKEv2 and DSMIPv6 frameworks obstructs the implementation of such an automated process. This work provides security and bootstrapping solution to DSMIPv6 nodes under the guidelines laid out by IETF. At the same time, we critically review the complexity of implementing the solutions as proposed in the standards. Problems faced while implementing some of the guidelines are discussed in detail and, if required, an alternative solution is provided. A user-mode-linux test network is created to analyze the problems and verify solutions. Although this work focuses on the architectural issues of DSMIPv6 framework, a brief analysis of DSMIPv6 performance on the test network is given.

Description

Supervisor

Ott, Jörg

Thesis advisor

Mahkonen, Heikki

Keywords

DSMIPv6, security, bootstrapping, static security, dynamic, signaling, payload, home address allocation

Other note

Citation

Permanent link to this item

https://urn.fi/URN:NBN:fi:aalto-2020122859155

Collections

[dipl] Sähkötekniikan korkeakoulu / ELEC