Presentation is loading. Please wait.

Presentation is loading. Please wait.

Mobility Support in IPv6 (MIPv6)

Published byAlaina Barber Modified over 6 years ago

Similar presentations

Presentation on theme: "Mobility Support in IPv6 (MIPv6)"— Presentation transcript:

1 Mobility Support in IPv6 (MIPv6)
Chun-Chuan Yang Dept. Computer Science & Info. Eng. National Chi Nan University Jan. 29, 2008

2 Outline Introduction to Mobile Networking Background: MIPv4
MIPv6 Features MIPv6 Basic Operations MIPv6 Security MIPv6 vs. MIPv4

3 Mobile Networking Wireless devices offering IP connectivity
PDA, handhelds, digital cellular phones, etc. Mobile networking Computing activities are not disrupted when the user changes the computer’s point of attachment to the Internet All the needed reconnection occurs automatically and non-interactively Technical obstacles Internet Protocol (IP) routing scheme Security concerns

4 Nomadicity (1) How mobility affects the protocol stack

5 Nomadicity (2) Layer 2 (data link layer) Layer 3 (network layer)
Collision detection  collision avoidance Dynamic range of the signals is very large, so that a transmitting station cannot effectively distinguish incoming weak signals from noise and the effects of its own transmissions Cell size (frequency reuse) Layer 3 (network layer) Changing the routing of datagrams destined for the mobile nodes

6 Nomadicity (3) Layer 4 (transport layer) Top layer (application layer)
Congestion control is based on packet loss However, packet loss  congestion? Other reasons for packet loss Noisy wireless channel, During handoff process Top layer (application layer) Automatic configuration Service discovery Link awareness  adaptability Environment awareness

7 Mobile IPv4 (1) Basic idea Two IP addresses for mobile node
New IP address associated with the new point of attachment is required Two IP addresses for mobile node Home address: static Care-of address: topologically significant address Home network, home agent Foreign network, foreign agent

8 Mobile IPv4 (2) Three Mobile IP mechanisms
1. Discovering the care-of address 2. Registering the care-of address 3. Tunneling to the care-of address

9 Mobile IPv4 (3) 1. Discovery Extension of ICMP Router Advertisement
Home agents and foreign agents broadcast agent advertisements at regular intervals Agent advertisement Allows for the detection of mobility agents Lists one or more available care-of addresses Informs the mobile node about special features Mobile node selects its care-of address Mobile node checks whether the agent is a home agent or foreign agent Mobile node issues an ICMP router solicitation message

10 Mobile IPv4 (4) 2. Registration
Once a mobile node has a care-of address, its home agent must find out about it

11 Mobile IPv4 (5) 3. Tunneling Tunneling

12 Mobile IPv4 (6) Registration request Message
Registration reply Message

13 Mobile IPv4: Route Optimization

14 Mobile IPv6 Features (1) IPv6 Mobility is based on core features of IPv6 The base IPv6 was designed to support Mobility Mobility is not an “Add-on” features All IPv6 Networks are IPv6-Mobile Ready All IPv6 nodes are IPv6-Mobile Ready All IPv6 LANs/Subnets are IPv6 Mobile Ready IPv6 Neighbor Discovery and Address Autoconfiguration allow hosts to operate in any location without any special support

15 Mobile IPv6 Features (2) No Foreign Agent
In a Mobile IP, an MN registers to a foreign node and borrows its’ address to build an IP tunnel so that the HA can deliver the packets to the MN. But in Mobile IPv6, the MN can get a new IPv6 address, which can be only used by the MN and thus the FA no longer exists IPv6 Address auto-configuration: MN can obtain a CoA in foreign network without any help of foreign agent More Scalable : Better Performance Less traffic through Home Link Less redirection/re-routing (Traffic Optimization)

16 Mobile IPv6 Features (3) Bi-directional tunneling mode
Does not require for the CN to support Mobile IPv6 Use of Reverse tunneling Route Optimization (RO) mode Requires to register the MN’s current binding at the CN Uses a new type of IPv6 routing header Type-2 routing header = home address (Dest Addr = MN’s CoA) Shortest communications path Eliminates congestion at the MN’s HA and home link Impact of any possible failure of the HA or networks on the path to or from it is reduced

17 Mobile IPv6 Features (4) Dynamic Home Agent Address Discovery
Allows a MN to dynamically discover the IP address of a home agent on its home link ICMP Home Agent Address Discovery Request Message Destination address: Home Agent anycast address for its own home subnet prefix Reply message HA list (with preferences) in the home link Each HA maintains the home agent lists

18 New IPv6 Protocol (1) Mobility Header
Home Test Init, Home Test, Care-of Test Init, Care-of Test Perform the return routability procedure from MN to CN for ensuring authorization of subsequent Binding Updates Binding Update Binding Acknowledgement Binding Refresh Request Binding Error

19 New IPv6 Protocol (2) New IPv6 Destination Option
Home Address destination option Type-2 Routing header: route optimization New ICMPv6 Messages Home Agent Address Discovery Request Home Agent Address Discovery Reply Mobile Prefix Solicitation Mobile Prefix Advertisement

20 Mobility Header Payload Proto: Same as IPv6 Next Header
MH Type: Identifies the particular mobility message Message Data: the data specific to the indicated MH type

21 Binding Update Message
MH Type=5 Message Data: A: Acknowledge H: Home Registration L: Link-Local Address Compatibility K: Key Management Mobility Capability

22 Binding Acknowledgement Message
MH Type=6 Message Data: K:Key Management Mobility Capability

23 MIPv6 Basic Operation (1)
IP Header PayLoad CN S: MN’s Home Address D: CN’s IP Address IP Header PayLoad Home Network Internet HA Foreign Network S: CN’s IP Address D: MN’s Home Address Mobile Node

24 MIPv6 Basic Operation (2)
CN Home Network PayLoad IP Header Mobility Header MH=5 Internet HA Binding Update Foreign Network Binding Ack MH=6 PayLoad IP Header Mobility Header Mobile Node

25 MIPv6 Basic Operation (3)
IP Header PayLoad S: CN’s IP Address D: MN’s Home Address CN Home Network Internet HA Tunneled packets New IP Header PayLoad Old IP Header S: HA’s Address D: MN’s COA Mobile Node

26 MIPv6 Basic Operation (4)
CN Home Network Binding Ack Binding Update Internet HA PayLoad IP Header Mobility Header MH=5 MH=6 PayLoad IP Header Mobility Header Mobile Node

27 MIPv6 Basic Operation (5)
CN S: MN’s COA D: CN’s Address (includes MN’s Home Address) Payload IP Header HA Dest Opt S: CN’s Address D: MN’s COA Payload IP Header Routing Header (Type 2, MN’s Home Address) Home Network Internet HA Mobile Node

28 Movement Movement Detection: Detect L3 handovers
Neighbor Unreachability Detection (NUD) Default router is no longer bi-directionally reachable Router Discovery: select a new default router Prefix Discovery: form new care-of address Home registration Correspondent registration

29 Home Registration (1) Set H-bit & A-bit in the Binding Updates sent to the HA MN’s home address in Home Address destination option Source address = Care-of address Set L-bit if the MN’s link-local address (for the new care-of-address) has the same interface ID as the home address Set K-bit if the IPsec SAs between the MN and the HA have been established dynamically, and the mobile node has the capability to update its endpoint in the used key management protocol to the new care-of address every time it moves

30 Home Registration (2) Sequence # Lifetime
Used by the receiving node to sequence BUs and by the sending node to match a returned BACK with this BU Lifetime The number of time units remaining before the binding must be considered expired One time unit is 4 seconds

31 Correspondent Registration (1)
Allowing the CN to cache the MN’s current care-of address Return Routability procedure + registration After home registration, the MN should initiate a correspondent registration for each node that already appears in the MN’s Binding Update List The initiated procedures can be used to either update or delete binding information in the CN In addition, MN initiate the registration in response to receiving a packet tunneled using IPv6 encapsulation

32 Correspondent Registration (2)
A Binding Update is created as follows 1. Source address of the IPv6 header = the current care-of address 2. Destination address = the address of the CN 3. Mobility header with MH type = 5, including the Binding Authorization Data and the Nonce Indices mobility options 4. Home Address destination option = MN’s home address

33 Conceptual Data Structures
CN: Binding Cache When sending a packet, the Binding Cache is searched before the Neighbor Discovery conceptual Destination Cache HA: Binding Cache and Home Agents List The Home Agents List is used by the dynamic home agent address discovery mechanism MN: Binding Update List It records information for each BU sent by this MN, in which the lifetime of the binding has not yet expired The Binding Update List includes all bindings sent by the MN either to its HA or CNs

34 MIPv6 Security Binding Updates to HA Binding Updates to CN
IPsec and ESP between MN and HA Key Distribution (IKE, Internet Key Exchange) Binding Updates to CN Return Routability Procedure to assure that the right MN is sending the message Binding management key (Kbm) for integrity and authenticity of the BU messages

35 IPsec Security Association
An SA is a cryptographically protected connection There MUST be a SA between the MN and HA Provides integrity and autentication of BU and BACK An SA is defined by: <SPI, destination adress, flag> One SA per home-address IPsec Authentication Header (authentication only service)

36 Encapsulating Security Payload
ESP: authentication + encryption

37 IPsec: AH vs. ESP

38 Binding Updates to CN Return Routability Procedure
It enables CN to obtain some reasonable assurance that MN is in fact addressable at its claimed care-of address as well as at its home address Done by testing whether packets addressed to the two claimed addresses are routed to MN MN can pass the test only if it is able to supply proof that it received certain data (the “keygen tokens”) which CN sends to those addresses. These data are combined by MN into Kbm

39 Return Routability Procedure

40 RR Procedure Terminology (1)
Node Key: a secret key (20 octets), Kcn, at CN Nonce: CN also generates nonces at regular intervals Cookie: Random number used by MN To prevent spoofing by a bogus CN in the RR procedure Home init cookie A cookie sent to the CN in the Home Test Init message, to be returned in the Home Test message Care-of init cookie A cookie sent to the CN in the Care-of Test Init message, to be returned in the Care-of Test message

41 RR Procedure Terminology (2)
Keygen Token Number supplied by CN to enable MN to compute the necessary binding management key for authorizing a BU Care-of keygen token: Care-of Test message Home keygen token: Home Test message Cryptographic Functions SHA: Secure Hash Standard HMAC_SHA1: Keyed-Hashing for Message Authentication MAC: Message Authentication Codes

42 Return Routability Test: step 1
Secret Key: <Kcn> Temporary Nonces: 1 - <nonce1> 2 - <nonce2> ... Correspondent Node Home Test Init: src=<home address> dst=<correspondent address> <home init cookie> <home keygen token> = HMAC_SHA1Kcn (<home-address> | <nonce1> | 0) [1:64] <home init cookie> Home Test: src=<correspondent address> dst=<home address> <home init cookie> <home keygen token> home nonce index: 1 <Correspondent Address> Home Agent Mobile Node <Care-Of Address> Cookies: <home init cookie> <home keygen token> home nonce index: 1

43 Return Routability Test: step 2
Secret Key: <Kcn> Temporary Nonces: 1 - <nonce1> 2 - <nonce2> ... Correspondent Node <care-of keygen token> = HMAC_SHA1Kcn (<care-of-address> | <nonce1> | 1) [1:64] <care-of init cookie> <Correspondent Address> Care-of Test Init: src=<care-of address> dst=<correspondent address> <care-of init cookie> Home Agent Care-of Test: src=<correspondent address> dst=<care-of address> <care-of init cookie> <care-of keygen token> care-of nonce index: 1 Mobile Node <Care-Of Address> Cookies: <care-of init cookie> <care-of keygen token> care-of nonce index: 1

44 Secure Binding Update to CN
Secret Key: <Kcn> Temporary Nonces: 1 - <nonce1> 2 - <nonce2> ... Correspondent Node <home keygen token> = HMAC_SHA1Kcn (<home-address> | <nonce1> | 0) [1:64] <care-of keygen token> = HMAC_SHA1Kcn (<care-of-address> | <nonce1> | 1) [1:64] <Correspondent Address> Once the correspondent node has verified the MAC, it can create a Binding Cache entry for the mobile. Binding Update src=<care-of address> dst=<correspondent address> option: Home Address = <home address> <sequence number> <home nonce index = 1> <care-of nonce index = 1> <MAC> Kbm = SHA1 (<home-keygen-token> | <care-of keygen token>) MAC = HMAC_SHA1Kbm(<care-of-address>|<correspondent address>|BU) [1:96] Cookies: <care-of init cookie> <care-of keygen token> care-of nonce index: 1 <home init cookie> <home keygen token> home nonce index: 1 Mobile Node <Care-Of Address>

45 Mobile IPv4 vs. Mobile IPv6
Mobile node, home agent, home link, foreign link (same) Mobile node’s home address Globally routable home address and link-local home address Foreign agent A “plain” IPv6 router on the foreign link (foreign agent no longer exists) Collocated care-of address Care-of address obtained via Agent Discovery, DHCP, or manually Care-of address obtained via Stateless Address Autoconfiguration, DHCP, or manually Agent Discovery Router Discovery Authenticated registration with home agent Authenticated notification of home agent and other correspondent nodes Routing to mobile nodes via tunneling Routing to mobile nodes via tunneling and source routing Route optimization via separate protocol specification Integrated support for route optimization

46 MIPv6 References RFC 3775: Mobility Support in IPv6 RFC 4443: ICMPv6
RFC 3776: Using IPsec for MIPv6 RFC 2408: The Internet Key Exchange

Download ppt "Mobility Support in IPv6 (MIPv6)"

Similar presentations

Mobile IPv6. Why study Mobility in IPv6? What is so different about Mobile IPv6 ?

Mobile IPv6. Why study Mobility in IPv6? What is so different about Mobile IPv6 ?
Mobile Networking through Mobile IP

Mobile Networking through Mobile IP
Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)

Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)
Mobile Communications-Network Protocols/Mobile IP

Mobile Communications-Network Protocols/Mobile IP
1 Introduction to Mobile IPv6 IIS5711: Mobile Computing Mobile Computing and Broadband Networking Laboratory CIS, NCTU.

1 Introduction to Mobile IPv6 IIS5711: Mobile Computing Mobile Computing and Broadband Networking Laboratory CIS, NCTU.
Neighbor Discovery for IPv6 Mangesh Kaushikkar. Overview Introduction Terminology Protocol Overview Message Formats Conceptual Model of a Host.

Neighbor Discovery for IPv6 Mangesh Kaushikkar. Overview Introduction Terminology Protocol Overview Message Formats Conceptual Model of a Host.
Mobility Support in IPv6 Advanced Internet, 2004 Fall 8 November 2004 Sangheon Pack.

Mobility Support in IPv6 Advanced Internet, 2004 Fall 8 November 2004 Sangheon Pack.
MIP Extensions: FMIP & HMIP

MIP Extensions: FMIP & HMIP
Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.

Transitioning to IPv6 April 15,2005 Presented By: Richard Moore PBS Enterprise Technology.
IP Mobility Support Basic idea of IP mobility management

IP Mobility Support Basic idea of IP mobility management
Mobile IPv6 趨勢介紹 1. Mobile IP and its Variants Mobile IPv4 (MIPv4) – MIPv4 – Low-Latency Handover for MIPv4 (FMIPv4) – Regional Registration for MIPv4.

Mobile IPv6 趨勢介紹 1. Mobile IP and its Variants Mobile IPv4 (MIPv4) – MIPv4 – Low-Latency Handover for MIPv4 (FMIPv4) – Regional Registration for MIPv4.
IPv6 Network Security.

IPv6 Network Security.
Internet Control Protocols Savera Tanwir. Internet Control Protocols ICMP ARP RARP DHCP.

Internet Control Protocols Savera Tanwir. Internet Control Protocols ICMP ARP RARP DHCP.
資 管 Lee Lesson 12 IPv6 Mobility. 資 管 Lee Lesson Objectives Components of IPv6 mobility IPv6 mobility messages and options IPv6 mobility data structures.

資 管 Lee Lesson 12 IPv6 Mobility. 資 管 Lee Lesson Objectives Components of IPv6 mobility IPv6 mobility messages and options IPv6 mobility data structures.
1 Mobile IP Myungchul Kim Tel: 042-866-6127.

1 Mobile IP Myungchul Kim Tel:
MOBILITY SUPPORT IN IPv6

MOBILITY SUPPORT IN IPv6
A Study of Mobile IP Kunal Ganguly Wichita State University CS843 – Distributed Computing.

A Study of Mobile IP Kunal Ganguly Wichita State University CS843 – Distributed Computing.
IPv6 Mobility David Bush. Correspondent Node Operation DEF: Correspondent node is any node that is trying to communicate with a mobile node. This node.

IPv6 Mobility David Bush. Correspondent Node Operation DEF: Correspondent node is any node that is trying to communicate with a mobile node. This node.
Mobile IP.

Mobile IP.
Mobile IP Polytechnic University Anthony Scalera Heine Nzumafo Duminda Wickramasinghe Edited by: Malathi Veeraraghavan 12/05/01.

Mobile IP Polytechnic University Anthony Scalera Heine Nzumafo Duminda Wickramasinghe Edited by: Malathi Veeraraghavan 12/05/01.

Similar presentations

Ads by Google