Professional Documents
Culture Documents
Introduction To Mobile IP: Golden G. Richard III, Ph.D. University of New Orleans)
Introduction To Mobile IP: Golden G. Richard III, Ph.D. University of New Orleans)
Solomon, Prentice Hall. "Mobility Support in IPv6," C. Perkins and D. Johnson, Proceedings of the Second Annual International Conference on Mobile Computing and Networking (MobiCom '96). "Supporting Mobility in MosquitoNet," M. Baker et al, Proceedings of the 1996 USENIX Technical Conference. "Mobile Networking Through Mobile IP," C. Perkins, http://www.computer.org/internet/v2n1/perkins.htm
mobile hosts
Laptop computers PDAs Electronic books
Impacts: Tourism (electronic tour guides) Field research Collaborative applications Lots more Computing in your garden!!
connectivity across host movement Protocol to enable mobility must not require massive changes to router software, etc. Must be compatible with large installed base of IPv4 networks/hosts Confine changes to mobile hosts and a few support hosts which enable mobility
Talk Overview
Will cover: Why IP routing breaks under mobility Mobile IPv4 basics Some Mobile IP security issues
Won't cover: Details of IP routing IPv6 in detail Low-level protocol details (message formats, headers, etc.) All of the Mobile IP-related security issues Any of the other problems with mobile computing!
address
Hosts are assumed to be wired, immobile Intermediate routers look only at network address Mobility without a change in IP address results in un-route-able packets
Force)
Standards development body for the Internet
Mobile IP allows a mobile host to move about
without changing its permanent IP address Each mobile host has a home agent on its home network Mobile host establishes a care-of address when it's away from home
packets to the mobile host Correspondent host sends packets to the mobile hosts IP permanent address These packets are routed to the mobile hosts home network Home agent forwards IP packets for mobile host to current care-of address Mobile host sends packets directly to correspondent, using permanent home IP as source IP
10
correspondent host
home agent
11
12
IP-in-IP Tunneling
Packet to be forwarded is encapsulated in
13
packet, which is then fed to the mobile host Aside: Any thoughts on advantages of foreign agent vs. co-located (foreign IP) address?
14
Routing Inefficiency
Mobile host and correspondent host might even be on the same network!!
correspondent host
home agent
15
Route Optimizations
Possible Solution: Home agent sends current care-of address to correspondent host Correspondent host caches care-of address Future packets tunneled directly to care-of address But! An instance of the cache consistency problem arises... Cached care-of address becomes stale when the mobile host moves Potential security issues with providing care-of address to correspondent (ask me about this when we talk about security!)
16
17
IP?
Router advertisements, DHCP, manual...
How can a mobile host tell where it is? Am I at home? Am I visiting a foreign network? Have I moved? What if I'm in two places at once?
18
Devil, Cont.
Redundancy: What if the home agent
"Ingress" filtering Routers which see packets coming from a direction from which they would not have routed the source address are dropped
19
correspondent host
home agent
20
21
Hehehehe!!
22
Authentication
To fix this problem, authenticate
registration attempts Use private key encryption to generate a message digest Home agent applies private key to message to see if message digest is identical
23
Authentication, Cont.
care-of address
private key
digest
???
home agent
24
home agent
"mooohahahahahahahaha!!!!!"
25
requests un-replayable Add estimate of local time or a pseudo-random number to registration request/reply If time estimate or random number is not the expected number, provide info in "NO!" reply for resynchronization Insufficient information to help malicious host
26
Abrupt Conclusions...
Great potential for mobile application deployment
using Mobile IP Minimizes impact on existing Internet infrastructure Security issues being looked at (Complicated) firewall solutions proposed Several working implementations (e.g., Monarch project at CMU) Some things still need work: e.g., integration of Mobile IP and 802.11 wireless LANs Lots of research to do on mobile computing!