Presentation is loading. Please wait.

Presentation is loading. Please wait.

Security in MobileIP Fahd Ahmad Saeed. Wireless Domain Problem Wireless domain insecure Data gets broadcasted to everyone, and anyone hearing this can.

Published bySilvia Barrett Modified over 9 years ago

Similar presentations

Presentation on theme: "Security in MobileIP Fahd Ahmad Saeed. Wireless Domain Problem Wireless domain insecure Data gets broadcasted to everyone, and anyone hearing this can."— Presentation transcript:

1 Security in MobileIP Fahd Ahmad Saeed

2 Wireless Domain Problem Wireless domain insecure Data gets broadcasted to everyone, and anyone hearing this can read it, regardless of destination address.

3 Common Security Problem Denial of Service Replay Attacks Theft of Information by Passive Eavesdropping Session Hijacking Malicious Mobile Node Flooding Other Active Attacks

4 Dos Attack at MobileIP If the bad guy manages to get a bogus registration of a new care-of-address for a certain mobile node, the Dos attack can occur and can cause these problems: The actual mobile node is no longer connected. The bad buy can see all the traffic going to the actual mobile node.

5 Replay Attacks A malicious node obtains a valid Registration Request, stores it, and then replay it to accomplish a forged care-of- address for a mobile node. Two ways for protecting from this kind of attack. Timestamp Timestamp Nonce value Nonce value

6 Theft of Information by Passive Eavesdropping Bad guy somehow manages to listen to the traffic between the Mobile node and home agent. The traffic can be accessed in two ways: Physical access to the network and connect as host. Physical access to the network and connect as host. Receive packets that are transmitted wirelessly. Receive packets that are transmitted wirelessly.Solution: Encryption Encryption End to End Encryption Link Layer encryption

7 Session-Hijacking Active form of Information theft. Solution: End to End Encryption Link Layer encryption

8 Malicious Mobile Node Flooding Insider attack: valid mobile node of the network

9 Other Active Attacks Do not require that a mobile IP session should be going on. If physical access of the network is available, the following attacks could happen: Attacker can figure out the network prefix to use for listening the Mobile IP agent advertisement or doing a DHCP configuration request Attacker can figure out the network prefix to use for listening the Mobile IP agent advertisement or doing a DHCP configuration request Can guess an available host number to use Can guess an available host number to use If attacker succeeded in guessing the available host number, then the attacker can gain access to the IP hosts. If attacker succeeded in guessing the available host number, then the attacker can gain access to the IP hosts.

10 Other Attacks Solutions: The entire visiting node must be registered to the foreign agent. The foreign agent will not route any packet for the mobile node that is not being registered with the foreign agent. The entire visiting node must be registered to the foreign agent. The foreign agent will not route any packet for the mobile node that is not being registered with the foreign agent. Each mobile node trying to connect to the foreign agent must perform link layer encryption. Each mobile node trying to connect to the foreign agent must perform link layer encryption.

11 Conclusion The Mobile Node and the Home Agent share the same security association and use the message digest 5 (MD5) with 128- bit encryption. Replay attacks are prevented by MN and HA using shared random number. During registration, the HA verifies the random number and issues a new random number for use for the next registration

Download ppt "Security in MobileIP Fahd Ahmad Saeed. Wireless Domain Problem Wireless domain insecure Data gets broadcasted to everyone, and anyone hearing this can."

Similar presentations

Security Issues In Mobile IP

Security Issues In Mobile IP
Secure Mobile IP Communication

Secure Mobile IP Communication
Mobile IPv6. Why study Mobility in IPv6? What is so different about Mobile IPv6 ?

Mobile IPv6. Why study Mobility in IPv6? What is so different about Mobile IPv6 ?
Mobile Networking through Mobile IP

Mobile Networking through Mobile IP
Mobile IP Outline Intro to mobile IP Operation Problems with mobility.

Mobile IP Outline Intro to mobile IP Operation Problems with mobility.
Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)

Mobile and Wireless Computing Institute for Computer Science, University of Freiburg Western Australian Interactive Virtual Environments Centre (IVEC)
Auto Configuration and Mobility Options in IPv6 By: Hitu Malhotra and Sue Scheckermann.

Auto Configuration and Mobility Options in IPv6 By: Hitu Malhotra and Sue Scheckermann.
A Seamless Handoff Approach of Mobile IP Protocol for Mobile Wireless Data Network. 資研一 黃明祥.

A Seamless Handoff Approach of Mobile IP Protocol for Mobile Wireless Data Network. 資研一 黃明祥.
1 Mobile IP Myungchul Kim Tel: 042-866-6127.

1 Mobile IP Myungchul Kim Tel:
Mobile IP Security Dominic Maguire Research Essay Presentation Communications Infrastructure Module MSc Communications Software, WIT 1 1 1 0 11 0.

Mobile IP Security Dominic Maguire Research Essay Presentation Communications Infrastructure Module MSc Communications Software, WIT
Network Attacks Mark Shtern.

Network Attacks Mark Shtern.
Spring 2004 Mobile IPv6 School of Electronics and Information Kyung Hee University Choong Seon HONG

Spring 2004 Mobile IPv6 School of Electronics and Information Kyung Hee University Choong Seon HONG
NISNet Winter School Finse 2008 1 Internet & Web Security Case Study 2: Mobile IPv6 security Dieter Gollmann Hamburg University of Technology

NISNet Winter School Finse Internet & Web Security Case Study 2: Mobile IPv6 security Dieter Gollmann Hamburg University of Technology
Mobile IP Overview: Standard IP Standard IP Evolution of Mobile IP Evolution of Mobile IP How it works How it works Problems Assoc. with it Problems Assoc.

Mobile IP Overview: Standard IP Standard IP Evolution of Mobile IP Evolution of Mobile IP How it works How it works Problems Assoc. with it Problems Assoc.
What we will cover… Home Networking: Network Address Translation (NAT) Mobile Routing.

What we will cover… Home Networking: Network Address Translation (NAT) Mobile Routing.
Chapter 13 Mobile IP. Outline  ADDRESSING  AGENTS  THREE PHASES  AGENT DISCOVERY  REGISTRATION  DATA TRANSFER  INEFFICIENCY IN MOBILE IP.

Chapter 13 Mobile IP. Outline  ADDRESSING  AGENTS  THREE PHASES  AGENT DISCOVERY  REGISTRATION  DATA TRANSFER  INEFFICIENCY IN MOBILE IP.
CMPE 257 - Wireless and Mobile Networking 1 CMPE 257 Spring 2006 Wireless Internetworking Wireless and Mobile Networks.

CMPE Wireless and Mobile Networking 1 CMPE 257 Spring 2006 Wireless Internetworking Wireless and Mobile Networks.
TCP/IP Protocol Suite 1 Upon completion you will be able to: Mobile IP Understand the addressing scheme for mobile hosts. To define home, care-of, and.

TCP/IP Protocol Suite 1 Upon completion you will be able to: Mobile IP Understand the addressing scheme for mobile hosts. To define home, care-of, and.
A Study of Mobile IP Kunal Ganguly Wichita State University CS843 – Distributed Computing.

A Study of Mobile IP Kunal Ganguly Wichita State University CS843 – Distributed Computing.
IPv6 Mobility David Bush. Correspondent Node Operation DEF: Correspondent node is any node that is trying to communicate with a mobile node. This node.

IPv6 Mobility David Bush. Correspondent Node Operation DEF: Correspondent node is any node that is trying to communicate with a mobile node. This node.

Similar presentations

Ads by Google