共查询到20条相似文献,搜索用时 78 毫秒
1.
2.
3.
在移动IPv6和层次移动IPv6中,移动节点通过无线接入点(AP)接入网络并且自动配置地址,缺乏必要的安全认证和地址管理机制。针对这一问题,文章结合IPv6的动态主机配置协议(DHCPv6)和认证,授权,计费(AAA,Authentication,Authorization,Accounting)协议设计出一套安全可靠的接入认证机制,并给出了实验结果。结果表明该接入认证方案能够有效实现对移动节点的合法性进行验证,认证成功的同时也为移动节点(MN)配置了合法IP地址,能够满足实际应用的需要。 相似文献
4.
扩展移动IPv6以实现网络的移动 总被引:1,自引:0,他引:1
本文在深入研究和分析移动IPv6工作原理的基础上,指出了移动IPv6只支持单个节点移动这一局限性,针对这一局限性,提出了扩展移动IPv6协议以实现网络的移动,并对这种网络移动机制的原理和实现做了详细的论述。 相似文献
5.
本在深入研究和分析移动IPv6工作原理的基础上,指出了移动IPv6只支持单个节点移动这一局限性,针对这一局限性,提出了扩展移动IPv6协议以实现网络的移动,并对这种网络移动机制的原理和实现做了详细的论述。 相似文献
6.
论文主要介绍了移动IPv6的地址隐私性问题,提出了一种移动IPv6的简单隐私性扩展解决方法,这种方法可以很好地防止窃听者通过家乡地址追踪移动节点,增强了移动IPv6的通信安全性。 相似文献
7.
介绍了移动IPv4和移动IPv6的工作原理,比较了两者的技术优劣。有了移动IPv6后,移动节点可以跨越不同的网段实现网络层面的移动,即使移动节点漫游到了一个新的网段上,它仍能保持IPv6地址不变并与其它节点进行通信。移动IPv6继承了移动IPv4的许多基本特征,并吸取了IPv6的优点,它必将替代移动IPv4。 相似文献
8.
对可扩展认证协议(EAP)和远程用户拨入认证系统(RADIUS)协议进行了阐述,给出了基于移动IPv6的AAA(认证、授权、计费)体系架构。针对移动IPv6移动用户接入认证问题,提出了基于EAP/RADIUS的移动IPv6接入认证构架,通过EAP与RADIUS服务器协作的方式实现对移动用户的接入认证。 相似文献
9.
用NS-2.1b6+Mobiwan进行仿真实验,给出了移动IPv6三角路由和优化路由之间的性能比较分析。在仿真实验中,检测了移动节点在广域IPv6网移动时通信对端节点和移动节点之间的端到端分组时延。实验结果表明,移动IPv6优化路由的性能明显优于三角路由。 相似文献
10.
11.
代理移动IPv6为移动节点提供了基于网络的移动性管理方法,移动节点不参与管理移动性信令.为了在移动互联网络中应用代理移动IPv6协议,需要定义安全有效的认证协议.目前还没有见到关于代理移动IPv6认证协议方面的研究,本文提出了一种代理移动IPv6的认证协议,该认证协议可以提供接入认证功能,并可防止重放攻击和密钥暴露.为了分析该认证协议的性能,本文给出了认证费用和认证延迟分析的解析模型,分析了移动性和流量参数对认证费用和认证延迟的影响.研究结果表明提出的代理移动IPv6认证协议安全有效. 相似文献
12.
Mobile IPv6 is only adapted to the mobile’s movements within its own administrative domain. As Mobile IPv6 is expected to be the basis for beyond 3G networks, a solution for inter-domain security is required allowing the visited domain to authenticate any mobile to grant it access. As such, new concepts known as AAA for Authentication, Authorization, Accounting were defined by the IETF. The IETF is currently defining the Diametr protocol to support those three functions in a Mobile IPv4 environment. Today’s difficulty is to adapt the Diameter protocol to Mobile IPv6. After introducing the Mobile IPv6, IPsec and Diameter protocols, this paper presents our solution (IETF draft of December 2001), and an IETF alternative for adapting Diameter to Mobile IPv6. It gives a comparison and describes our prototype. 相似文献
13.
14.
移动IPv6中通信主机绑定更新的安全策略 总被引:1,自引:0,他引:1
移动IPv6的安全策路是移动IPv6体系的一个重要组成部分。针对现有的移动IPv6安全策略,着重研究通信主 机绑定更新过程的安全性。通过对主机绑定更新过程的分析,指出其存在的安全隐患,并针对移动主机可能 受到拒绝服务攻击的问题提出相应的改进策略,提高通信主机绑定更新过程的安全性。 相似文献
15.
The LTE (Long Term Evolution) technologies defined by 3GPP is the last step toward the 4th generation (4G) of radio technologies designed to increase the capacity and speed of mobile telephone networks. Mobility management for supporting seamless handover is the key issue for the next generation wireless communication networks. The evolved packet core (EPC) standard adopts the proxy mobile IPv6 protocol (PMIPv6) to provide the mobility mechanisms. However, the PMIPv6 still suffers the high handoff delay and the large packet lost. Our protocol provides a new secure handover protocol to reduce handoff delay and packet lost with the assistance of relay nodes over LTE networks. In this paper, we consider the security issue when selecting relay nodes during the handoff procedure. During the relay node discovery, we extend the access network discovery and selection function (ANDSF) in 3GPP specifications to help mobile station or UE to obtain the information of relay nodes. With the aid of the relay nodes, the mobile station or UE performs the pre-handover procedure, including the security operation and the proxy binding update to significantly reduce the handover latency and packet loss. The simulation results illustrate that our proposed protocol actually achieves the performance improvements in the handoff delay time and the packet loss rate. 相似文献
16.
17.
移动节点在两个不同子网之间移动时产生切换。移动节点的切换技术是保证实时业务服务质量的关键问题之一。目前比较经典的三种切换机制是快速移动IPv6、层次型移动IPv6和快速层次移动IPv6。在简单介绍了三种机制原理并分析了它们的不足后,提出了一种自适应移动IPv6切换时延优化方案。 相似文献
18.
19.
移动VPN技术用于支持离开企业的员工同企业内部进行安全无缝的移动通信。随着IPv6的发展,互联网不再是单一的IPv4网络,网络环境的复杂化使得移动VPN面临更多的困难。论文从IPv6网络环境入手,通过向下兼容IPv4为手段,提供了一种新的既能够支持IPv6单一网络又能够同时支持IPv4/v6混合网络的移动VPN解决方案。 相似文献
20.
《Selected Areas in Communications, IEEE Journal on》2006,24(9):1725-1737
Network mobility introduces far more complexity than host mobility. Therefore, host mobility protocols such as Mobile IPv6 (MIPv6) need to be extended to support this new type of mobility. To address the extensions needed for network mobility, the IETF NEMO working group has recently standardized the network mobility basic support protocol in RFC 3963. However, in this RFC, it is not mentioned how authentication authorization and accounting (AAA) issues are handled in NEMO environment. Also, the use of IPsec to secure NEMO procedures does not provide robustness against leakage of stored secrets. To address this security issue and to achieve AAA with mobility, we propose new handover procedures to be performed by mobile routers and by visiting mobile nodes. This new handover procedure is based on leakage resilient-authenticated key establishment (LR-AKE) protocol. Using analytical models, we evaluate the proposed handover procedure in terms of handover delay which affects the session continuity. Our performance evaluation is based on transmission, queueing and encryption delays over wireless links. 相似文献