Presentation is loading. Please wait.

Presentation is loading. Please wait.

Overview of draft–16 for MIPv6 MIPv6 Design Team March 19 th, 2002.

Published byLydia Knight Modified over 8 years ago

Similar presentations

Presentation on theme: "Overview of draft–16 for MIPv6 MIPv6 Design Team March 19 th, 2002."— Presentation transcript:

1 Overview of draft–16 for MIPv6 MIPv6 Design Team March 19 th, 2002

2 Basics Submitted yesterday, not in I-D directories yet For the moment can be accessed at: http://www.piuha.net/~jarkko/publications/mipv6/ draft-ietf-mobileip-ipv6-pre16.txt (I-D format) mipv6-modified-parts-pre16.pdf (modified parts) Modifications based on the security discussions and decisions The document is in debt to various Internet Drafts that have been issued around this subject Still needs some work (expect draft–17 soon)

3 What’s new Now securely usable on a global scale Routing topology has changed –Due to HAO restrictions Message sequences have changed –Due to RR, the new security mechanism Signalling formats have changed –Due to desire to allow IPsec usage on MN-HA and tunneled RR signaling Terminology has changed –Mainly due to formatting modifications, options => messages, sub-options => parameters, … Many changed sections

4 Still, it looks kind of familiar… New messages added but old ones intact Messages carried by new protocol instead of DO, but format still largely the same Route Optimization and Bidirectional tunneling functionally intact

5 Document modifications 4.1. Overview 4.x. New protocols 4.4. Security Design (was authentication) 5.1. Mobility Header (was BU, BA, BR) 5.4. HAO 5.x. Routing Header Type 2 7.2. Requirements for all IPv6 Nodes 8. CN Behaviour 9.x. Protecting RR packets 10. MN Behaviour X. Future Enhancements 11. IANA Considerations 13. Security Considerations A.1. Modifications

6 Overview of functionality Return Routability procedure Home Address Option processing New role for Binding Request Message Formats

7 RR messaging MN CN HA 3. Binding Update 4. Binding Ack 2b. Care-of Test 2a. Home Test 1b. Care-of Test Init 1a. Home Test Init

8 RR details and math 1a.HOTI: MN(HoA) -> CN: HoA 1b.COTI: MN(CoA) -> CN: CoA 2a.HOT: CN -> MN(HoA): K0, j 2b.COT: CN -> MN(CoA): K1, i 3.BU: MN(CoA) -> CN: HoA, CoA, MAC, j, i 4.BA: CN -> MN(CoA): MAC CN is stateless until a good BU is received K0 and K1 are cookies derived from a key known by CN BU and BA MACs are based the cookies The MACs are calculated over the messages CN is assured that BU is from someone on path

9 RR details and math - with CN liveness and BM verification through COTI/COT 1a.HOTI: MN(HoA) -> CN: P0, HoA 1b.COTI: MN(CoA) -> CN: P1, CoA, [HoA] 2a.HOT: CN -> MN(HoA): K0, j, P0 2b.COT: CN -> MN(CoA): K1, i, P1, [MAC] 3.BU: MN(CoA) -> CN: P2, HoA, CoA, MAC, j, i 4.BA: CN -> MN(CoA): MAC 5.BM: CN -> MN(CoA): CN is stateless until a good BU is received K0 and K1 are cookies derived from a key known by CN BU and BA MACs are based the cookies The MACs are calculated over the messages (and P2 in step 4) CN is assured that BU is from someone on path

10 Usage of HAO - and related messaging MN CN HA BCE expired: HAO Binding Missing Bidir tunneling: no HAO Regular answer BCE exists: HAO Regular answer

11 New role for Binding Request Detection of mobile nodes may not be possible anymore for the CN! –Bidirectional tunneling hides the fact that the node is mobile Binding Request in draft-16 has become a kind of a “Binding Refresh Request” Responsibility for starting Route Optimisation on the MN side

12 Mobility Header format... IPv6 header... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |Payload Proto | Header Len | MH Type | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Checksum | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | |... Message Data... | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ Messages carried in this format: –Binding Request –Home Test Init, Home Test, Care-of Test Init, Care-of Test –Binding Update, Binding Ack –Binding Missing

13 Home Test message data +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Reserved | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ + | Home Nonce Index | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | + + | Home Cookie (128 bits) | + + | | + + | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | |... Parameters... | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

14 Binding Update message data +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ |A|H|S|D| Reserved | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Sequence # | Reserved | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Lifetime | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | + + | | + Home Address (?) + | | + + | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | |. Parameters.... (Mandatory carried parameters for CN Bus: Nonce Indices,. | Authentication Data) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

15 Nonce Indices parameter +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Type = 4 | Len = 6 | Home Nonce Index | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Care-of Nonce Index | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

16 Authentication Data parameter +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | 5 | 18 | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | SPI, always zero in draft-16 (?) | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | | + Authenticator + | | + (calculated from RR specific rules, different from draft–15) + | | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+

17 Summary Main new things: RR, HAO, formats Questions, comments? Some open issues remain and will be discussed later

Download ppt "Overview of draft–16 for MIPv6 MIPv6 Design Team March 19 th, 2002."

Similar presentations

Security Issues In Mobile IP

Security Issues In Mobile IP
Mobile IPv6: An Overview Dr Martin Dunmore, Lancaster University.

Mobile IPv6: An Overview Dr Martin Dunmore, Lancaster University.
1 Introduction to Mobile IPv6 IIS5711: Mobile Computing Mobile Computing and Broadband Networking Laboratory CIS, NCTU.

1 Introduction to Mobile IPv6 IIS5711: Mobile Computing Mobile Computing and Broadband Networking Laboratory CIS, NCTU.
Mobility Support in IPv6 Advanced Internet, 2004 Fall 8 November 2004 Sangheon Pack.

Mobility Support in IPv6 Advanced Internet, 2004 Fall 8 November 2004 Sangheon Pack.
MIP Extensions: FMIP & HMIP

MIP Extensions: FMIP & HMIP
Auto Configuration and Mobility Options in IPv6 By: Hitu Malhotra and Sue Scheckermann.

Auto Configuration and Mobility Options in IPv6 By: Hitu Malhotra and Sue Scheckermann.
1Nokia Siemens Networks Presentation / Author / Date University of Twente On the Security of the Mobile IP Protocol Family Ulrike Meyer and Hannes Tschofenig.

1Nokia Siemens Networks Presentation / Author / Date University of Twente On the Security of the Mobile IP Protocol Family Ulrike Meyer and Hannes Tschofenig.
Mobile IPv6 趨勢介紹 1. Mobile IP and its Variants Mobile IPv4 (MIPv4) – MIPv4 – Low-Latency Handover for MIPv4 (FMIPv4) – Regional Registration for MIPv4.

Mobile IPv6 趨勢介紹 1. Mobile IP and its Variants Mobile IPv4 (MIPv4) – MIPv4 – Low-Latency Handover for MIPv4 (FMIPv4) – Regional Registration for MIPv4.
1 DSMIP6 Support QUALCOMM Inc. Jun Wang, George Cherian, Masa Shirota Notice.

1 DSMIP6 Support QUALCOMM Inc. Jun Wang, George Cherian, Masa Shirota Notice.
資 管 Lee Lesson 12 IPv6 Mobility. 資 管 Lee Lesson Objectives Components of IPv6 mobility IPv6 mobility messages and options IPv6 mobility data structures.

資 管 Lee Lesson 12 IPv6 Mobility. 資 管 Lee Lesson Objectives Components of IPv6 mobility IPv6 mobility messages and options IPv6 mobility data structures.
Mobile IPv6 - NSIS Interaction for Firewall traversal draft-thiruvengadam-nsis-mip6-fw-04 S. Thiruvengadam Hannes Tschofenig Franck Le Niklas Steinleitner.

Mobile IPv6 - NSIS Interaction for Firewall traversal draft-thiruvengadam-nsis-mip6-fw-04 S. Thiruvengadam Hannes Tschofenig Franck Le Niklas Steinleitner.
1 Dual Stack Support in Mobile IPv6 for Hosts and Routers OR IPv4 traversal for Mobile IPv6 ! draft-ietf-mip6-nemo-v4traversal-00 H. Soliman, G. Tsirtsis,

1 Dual Stack Support in Mobile IPv6 for Hosts and Routers OR IPv4 traversal for Mobile IPv6 ! draft-ietf-mip6-nemo-v4traversal-00 H. Soliman, G. Tsirtsis,
1 © NOKIA NSIS MIPv6 FW/ November 8 th 2004 Mobile IPv6 - NSIS Interaction for Firewall traversal draft-thiruvengadam-nsis-mip6-fw-01 S. Thiruvengadam.

1 © NOKIA NSIS MIPv6 FW/ November 8 th 2004 Mobile IPv6 - NSIS Interaction for Firewall traversal draft-thiruvengadam-nsis-mip6-fw-01 S. Thiruvengadam.
Authentication In Mobile Internet Protocol version 6 Liu Ping Supervisor: professor Jorma Jormakka.

Authentication In Mobile Internet Protocol version 6 Liu Ping Supervisor: professor Jorma Jormakka.
NISNet Winter School Finse 2008 1 Internet & Web Security Case Study 2: Mobile IPv6 security Dieter Gollmann Hamburg University of Technology

NISNet Winter School Finse Internet & Web Security Case Study 2: Mobile IPv6 security Dieter Gollmann Hamburg University of Technology
1 Route Optimization based on ND-Proxy for Mobile Nodes in IPv6 Mobile Networks Jaehoon Jeong, Kyeongjin Lee, Jungsoo Park, Hyoungjun Kim ETRI

1 Route Optimization based on ND-Proxy for Mobile Nodes in IPv6 Mobile Networks Jaehoon Jeong, Kyeongjin Lee, Jungsoo Park, Hyoungjun Kim ETRI
MOBILITY SUPPORT IN IPv6

MOBILITY SUPPORT IN IPv6
Protocol for Hiding Movement of Mobile Nodes in Mobile IPv6 draft-qiu-mip6-hiding-movement-00.txt F. BAO, R. DENG, J. Kempf, Y. QIU and J.Y ZHOU.

Protocol for Hiding Movement of Mobile Nodes in Mobile IPv6 draft-qiu-mip6-hiding-movement-00.txt F. BAO, R. DENG, J. Kempf, Y. QIU and J.Y ZHOU.
Slide 1, Dr. Wolfgang Böhm, Mobile Internet, © Siemens AG 2001 Dr. Wolfgang Böhm Siemens AG, Mobile Internet Dr. Wolfgang.

Slide 1, Dr. Wolfgang Böhm, Mobile Internet, © Siemens AG 2001 Dr. Wolfgang Böhm Siemens AG, Mobile Internet Dr. Wolfgang.
1 Chapter06 Mobile IP. 2 Outline What is the problem at the routing layer when Internet hosts move?! Can the problem be solved? What is the standard solution?

1 Chapter06 Mobile IP. 2 Outline What is the problem at the routing layer when Internet hosts move?! Can the problem be solved? What is the standard solution?

Similar presentations

Ads by Google