Dave Thaler dthaler@microsoft.com A Comparison of Mobility-Related Protocols: MIP6,SHIM6, and HIP draft-thaler-mobility-comparison-01.txt Dave Thaler.

Slides:



Advertisements
Similar presentations
Keiji Maekawa Graduate School of Informatics, Kyoto University Yasuo Okabe Academic Center for Computing and Media Studies, Kyoto University.
Advertisements

Internet Area IPv6 Multi-Addressing, Locators and Paths.
MIP Extensions: FMIP & HMIP
1Nokia Siemens Networks Presentation / Author / Date University of Twente On the Security of the Mobile IP Protocol Family Ulrike Meyer and Hannes Tschofenig.
Mobile IPv6 趨勢介紹 1. Mobile IP and its Variants Mobile IPv4 (MIPv4) – MIPv4 – Low-Latency Handover for MIPv4 (FMIPv4) – Regional Registration for MIPv4.
1 DSMIP6 Support QUALCOMM Inc. Jun Wang, George Cherian, Masa Shirota Notice.
CS470, A.SelcukIPsec – AH & ESP1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
Network Layer IPv6 Slides were original prepared by Dr. Tatsuya Suda.
Understanding IPv6 Slide: 1 Lesson 1 Introduction to IPv6.
Network Localized Mobility Management using DHCP
IPv6 Multihoming Support in the Mobile Internet Presented by Paul Swenson CMSC 681, Fall 2007 Article by M. Bagnulo et. al. and published in the October.
IETF 651 Issues With Protocols Proposing Multilink Subnets draft-thaler-intarea-multilink-subnet-issues-00.txt Dave Thaler
1 Lecture 15: IPsec AH and ESP IPsec introduction: uses and modes IPsec concepts –security association –security policy database IPsec headers –authentication.
1 © NOKIA NSIS MIPv6 FW/ November 8 th 2004 Mobile IPv6 - NSIS Interaction for Firewall traversal draft-thiruvengadam-nsis-mip6-fw-01 S. Thiruvengadam.
1 © 2005 Nokia mobike-transport.ppt/ MOBIKE Transport mode usage and issues Mohan Parthasarathy.
IP/ICMP Translation Algorithm (IIT) Xing Li, Congxiao Bao, Fred Baker
Host Identity Protocol
Slide 1, Dr. Wolfgang Böhm, Mobile Internet, © Siemens AG 2001 Dr. Wolfgang Böhm Siemens AG, Mobile Internet Dr. Wolfgang.
Host Mobility for IP Networks CSCI 6704 Group Presentation presented by Ye Liang, ChongZhi Wang, XueHai Wang March 13, 2004.
Overview of SHIM6 Multihoming Protocol Fuad Bin Naser Std. No A presentation for CSE6806: Wireless & Mobile Communication Networks.
March 7, 2005MOBIKE WG, IETF 621 Mobility Protocol Options for IKEv2 (MOPO-IKE) Pasi Eronen.
1 EAP Usage Issues Feb 05 Jari Arkko. 2 Typical EAP Usage PPP authentication Wireless LAN authentication –802.1x and i IKEv2 EAP authentication.
Mobile IPv6 Location Privacy Solutions UPDATE draft-irtf-mobopts-location-privacy-solutions-04.txt Ying Qiu, Fan Zhao, Rajeev Koodli.
IPSec IPSec provides the capability to secure communications across a LAN, across private and public wide area networks (WANs) and across the Internet.
Universal, Ubiquitous, Unfettered Internet © ui.com Pte Ltd Mobile Internet Protocol under IPv6 Amlan Saha 3UI.COM Global IPv6 Summit,
IP Address Location Privacy and Mobile IPv6 draft-koodli-mip6-location-privacy-00.txt draft-koodli-mip6-location-privacy-solutions-00.txt.
1 IETF 78: NETEXT Working Group IPSec/IKEv2 Access Link Support in Proxy Mobile IPv6 IPSec/IKEv2-based Access Link Support in Proxy Mobile IPv6 Sri Gundavelli.
SHIM6 Protocol Drafts Overview Geoff Huston, Marcelo Bagnulo, Erik Nordmark.
Transport Layer3-1 Chapter 4: Network Layer r 4. 1 Introduction r 4.2 Virtual circuit and datagram networks r 4.3 What’s inside a router r 4.4 IP: Internet.
Lesson 2 Introduction to IPv6.
An Update on Multihoming in IPv6 Report on IETF Activity RIPE IPv6 Working Group 22 Sept 2004 RIPE 49 Geoff Huston, APNIC.
Approaches to Multi6 An Architectural View of Multi6 proposals Geoff Huston March 2004.
07/03/ nd IETF – Minneapolis Mobile IPv6 WG meeting PF_KEY Extension as an Interface between Mobile IPv6 and IPsec/IKE Shinta Sugimoto Francis Dupont.
IPv 邱文揚 Joseph 李家福 Frank. Introduction The scale of IPv4 Internet has become far larger than one could ever imagine when designing.
Mobile IPv6 and Firewalls: Problem Statement Speaker: Jong-Ru Lin
Mobile IPv6 with IKEv2 and revised IPsec architecture IETF 61
By Mau, Morgan Arora, Pankaj Desai, Kiran.  Large address space  Briefing on IPsec  IPsec implementation  IPsec operational modes  Authentication.
Site Multihoming for IPv6 Brian Carpenter IBM TERENA Networking Conference, Poznan, 2005.
Network Mobility (NEMO) Advanced Internet 2004 Fall
HIP & MIP V 6 SECURITY Research: Security Architecture IRT Lab, Columbia University.
IPSec – IP Security Protocol By Archis Raje. What is IPSec IP Security – set of extensions developed by IETF to provide privacy and authentication to.
Internet Area Meeting 66th IETF Montreal, Canada Jari Arkko and Mark Townsley Mailing list:
Mobile IPv6 Location Privacy Solutions UPDATE draft-irtf-mobopts-location-privacy-solutions-04.txt Ying Qiu, Fan Zhao, Rajeev Koodli.
IP Address Location Privacy and Mobile IPv6: Problem Statement draft-irtf-mobopts-location-privacy-PS-00.txt Rajeev Koodli.
Paris, August 2005 IETF 63 rd – mip6 WG Mobile IPv6 bootstrapping in split scenario (draft-ietf-mip6-bootstrapping-split-00) mip6-boot-sol DT Gerardo Giaretta,
HIP-Based NAT Traversal in P2P-Environments
Establishing Host Identity Protocol Opportunistic Mode with TCP Option
Preferred Alternatives for Tunnelling HIP (PATH)
Chapter 4 Network Layer Computer Networking: A Top Down Approach 6th edition Jim Kurose, Keith Ross Addison-Wesley March 2012 CPSC 335 Data Communication.
RFC 3775 IPv6 Mobility Support
Booting up on the Home Link
Encryption and Network Security
Chapter 18 IP Security  IP Security (IPSec)
An IPv6 Flow Label Specification Proposal
NEMO Basic Support Protocol IETF 60, San Diego
IETF 55 IPv6 Working Group IPv6 Node Requirements
for IP Mobility Protocols
Carrying IPSEC Authentication and ESP Headers Across SCPS-NP Networks
27th September 2016 IPv6 27th September 2016
IPSec IPSec is communication security provided at the network layer.
IETF67 B. Patil, Gopal D., S. Gundavelli, K. Chowdhury
IPv4 Support for Proxy Mobile IPv6 Ryuji Wakikawa & Sri Gundavelli
Network Layer Functions
ECE 544 Protocol Design Project 2016
Network Virtualization
Tunnel Loops and Its Detection draft-ng-intarea-tunnel-loop-00.txt
Neighbor discovery to support direct communication in ITS
IEEE IETF Liaison Report
An Update on Multihoming in IPv6 Report on IETF Activity
FARA: Reorganizing the Addressing Architecture
Presentation transcript:

Dave Thaler dthaler@microsoft.com A Comparison of Mobility-Related Protocols: MIP6,SHIM6, and HIP draft-thaler-mobility-comparison-01.txt Dave Thaler dthaler@microsoft.com IETF 66

Goal of this presentation Help those in none of the WGs understand the relationship between them Help those in one WG understand other WGs IETF 66

Disclaimers Only work in the IETF (as WG drafts and RFCs) has been considered There are individual submissions and IRTF drafts in addition This is a snapshot in time, as of beginning of June 2006 This is a moving target Only MIP6, SHIM6, and HIP have been considered so far Other mobility-related protocols do exist (NEMO, SCTP, NETLMM, MOBIKE, etc.) Points of comparison derived from union of the three problem statements IETF 66

Terminology Name: A DNS fully-qualified domain name Upper-layer Identifier (ULID): Address used above the mobility/multihoming layer MIP6: “Home Address” SHIM6: “ULID” HIP: “Host Identity Tag (HIT)” Locator: Address used below the mobility/multihoming layer MIP6: “Care-of Address” SHIM6 & HIP: “Locator” IETF 66

Extension Header Order Each protocol defines headers to go in data packets, and defines where they have to go A hypothetical data packet with all of them, plus other headers, would look like this: IPv6 Hdr HbH Opts Type 2 Rtg Hdr DstOpts (HoA) SHIM6 PEH Frag Hdr ESP (HIP) Payload Mobile IPv6 SHIM6 HIP This leads to a natural layering model… IETF 66

Fragmentation/reassembly Layering Transport layer IPsec + HIP sub-layer Fragmentation/reassembly Network Layer SHIM6 sub-layer MIP6 sub-layer Routing sub-layer Link layer IETF 66

Feature Comparison 1/2 MIP SHIM6 HIP Preserve established connections Yes Support both ends moving simultaneously Only within known set Span outages No Resolve name to locators immediately after move IETF 66

Feature Comparison 2/2 MIP SHIM6 HIP Support referrals Yes Only by name Stable addresses Assumed Non-routable Support load spreading (monami6) Multicast sourcing support Not mobile No IETF 66

Efficiency Considerations MIP SHIM6 HIP Per-packet overhead (bytes) 0 if both home / 20/40 if src away + 24 if dest away 0 normally / 8 if moved 0 + IPsec transport mode (~18-29) Connect overhead (messages) 0 if home / 6 if away 0 + 4 for IPsec key neg Locator change overhead (messages) 2 to update HA + 6 to update peer 4 to update peer 3 to update RVS + 3 to update peer IETF 66

Deployment Considerations MIP SHIM6 HIP One-end benefit Yes No Typical deployment dependencies Home agent None Rendezvous Server, New RR, IPsec For the full security benefit of HIP, DNSSec is also needed However, without it, it’s no worse than the others IETF 66

Security Considerations MIP SHIM6 HIP Control message auth check: Minimum On path On path + new locator of same node Cryptographic Maximum Data security Optional Required IETF 66

Questions? IETF 66

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.