A Security Proxy Based Protocol for Authenticating the Mobile IPv6 Binding Updates

  • Il-Sun You
  • Kyungsan Cho
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3043)


In this paper, we propose a security proxy based protocol for authenticating the binding updates in Mobile IP Version 6 environment, which combines the Deng-Zhou-Bao’s protocol [2] with Aura’s two hash-based CGA scheme [8] to avoid the use of trusted CAs. The two hash-based CGA scheme enables our protocol to achieve stronger security than other CGA-based protocols without a trusted CA, resulting in less cost of verifying the HA’s public key than the one of the Deng-Zhou-Bao’s protocol. The comparison of our protocol with other protocols such as the Deng-Zhou-Bao’s protocol, CAM-DH and SUCV shows that our protocol can provide good performance and manageability in addition to stronger security than one hash-based CGA approaches.


Mipv6 Binding Update Protocol CGA CAM-DH 


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Arkko, J.: Security Framework for Mobile IPv6 Route Optimization, <draft-arkkomipv6ro- secframework-00.txt> (November 2001) Google Scholar
  2. 2.
    Deng, R., Zhou, J., Bao, F.: Defending Against Redirect attacks in Mobile IP. In: CCS 2002 (November 2002)Google Scholar
  3. 3.
    O’Shea, G., Roe, M.: Child-proof authentication for MIPv6 (CAM). ACM Computer Communications Review (April 2001)Google Scholar
  4. 4.
    Roe, M., Aura, T., O’Shea, G., Arkko, J.: Authentication of Mobile IPv6 Binding Updates and Acknowledgments. <draft-roe-mobileip-updateauth-02.txt> (February 2002) Google Scholar
  5. 5.
    Okazaki, S., Desai, A., Gentry, C.,et. el.: Securing MIPv6 Binding Updates Using Address Based Keys (ABKs) <draft-okazaki-mobileip-abk-01.txt> (October 2002) Google Scholar
  6. 6.
    Montenegro, G., Castelluccia, C.: SUCV Identifiers and Addresses, <draft-montenegrosucv- 02.txt>, (November 2001) Google Scholar
  7. 7.
    Johnson, D., Perkins, C., Arkko, A.: Mobility Support in IPv6, <draft-ietf-mobileipipv6- 24.txt> (June 2003) Google Scholar
  8. 8.
    Aura, T.: Cryptographically Generated Addresses (CGA), <draft-aura-cga-00.txt> (February 2003) Google Scholar
  9. 9.
    Housley, R., Ford, W., Polk, T., Solo, D.: Internet X.509 public key infrastructure certificate and CRL profile. In: RFC, January 1999, vol. 2459 (1999)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2004

Authors and Affiliations

  • Il-Sun You
    • 1
  • Kyungsan Cho
    • 1
  1. 1.Division of Information and Computer ScienceDankook UniversitySeoulRepublic of Korea

Personalised recommendations