Introduction To Mobile IP: Golden G. Richard III, Ph.D. University of New Orleans)
Introduction To Mobile IP: Golden G. Richard III, Ph.D. University of New Orleans)
Introduction To Mobile IP: Golden G. Richard III, Ph.D. University of New Orleans)
Talk Overview
Will cover:
– Why IP routing breaks under mobility
– Mobile IPv4 basics
– Some Mobile IP security issues
Won't cover:
– Details of IP routing
– IPv6 in detail
– Low-level protocol details (message formats, headers,
etc.)
– All of the Mobile IP-related security issues
– Any of the other problems with mobile computing!
6
137.30.2.*
.200
router
139.20.3.*
Why this hierarchical approach? Answer: Scalability!
Millions of network addresses, billions of hosts!
8
IP-in-IP Tunneling
Packet to be forwarded is encapsulated in
a new IP packet
In the new header:
– Destination = care-of-address
– Source = address of home agent
– Protocol number = IP-in-IP
IP header IP header
data IP header
data
13
Routing Inefficiency
Route Optimizations
Possible Solution:
– Home agent sends current care-of address to
correspondent host
– Correspondent host caches care-of address
– Future packets tunneled directly to care-of address
But!
– An instance of the cache consistency problem arises...
– Cached care-of address becomes stale when the mobile
host moves
– Potential security issues with providing care-of address to
correspondent (ask me about this when we talk about
security!)
16
Devil, Cont.
Redundancy: What if the home agent
doesn't answer a registration request?
– Registration request to broadcast address
– Rejection carries new home agent ID
"Ingress" filtering
– Routers which see packets coming from a
direction from which they would not have
routed the source address are dropped
19
Hehehehe!!
registration request
Madame Evil home agent
22
Authentication
To fix this problem, authenticate
registration attempts
Use private key encryption to generate a
message digest
Home agent applies private key to
message to see if message digest is
identical
23
Authentication, Cont.
private key
… care-of address…
digest
???
home agent
24
diges
t
home agent
"…mooohahahahahahahaha!!!!!"
25
Abrupt Conclusions...
Great potential for mobile application deployment using
Mobile IP
Minimizes impact on existing Internet infrastructure
Security issues being looked at
(Complicated) firewall solutions proposed
Several working implementations (e.g., Monarch project
at CMU)
Some things still need work: e.g., integration of Mobile
IP and 802.11 wireless LANs
Lots of research to do on mobile computing!