共查询到20条相似文献,搜索用时 140 毫秒
1.
2.
AAA在移动IP中的应用探讨 总被引:2,自引:1,他引:1
移动IP解决了移动节点在不改变IP地址的情况下的漫游问题,移动节点在漫游时,外地域通过AAA 服务器对其进行安全认征、授权、计费。本文探讨了一种AAA下移动IP的认证注册方案。在注册过程中利用公钥和对称密钥实现移动节点和网络的双向认证。 相似文献
3.
目前很多研究都是针对解决切换过程中怎样提高效率,而对切换过程中如何保持注册安全研究得不够。由于缺乏安全措施,节点在切换时容易受到各种安全威胁和攻击。文章提出了一种基于IPSec的安全注册方案,方案结合快速移动IPv6信令,利用IPSec的安全关联保护切换过程中各种信令的交互,能够在不降低切换效率的前提下最大程度的保护注册安全。 相似文献
4.
代理移动IPv6(PMIPv6)是一种基于网络的移动性管理协议。在进行切换的时候,该协议虽在MIPv6的基础上有效地降低了切换延迟,但仍可进行更有效地调整以进一步降低切换延迟。文中提出在原有PMIPv6的基础上,将切换过程中的移动节点的身份认证和移动接入网关在本地移动锚点的注册同步起来,即AR-PMIPv6,引入有效地双缓存机制避免接收数据的丢失和乱序问题,降低了切换延迟和信令开销。实验仿真可知,通过认证注册同步的过程后,AR-PMIPv6在原有PMIPv6的基础上有效地降低了切换延迟,对网络服务质量有显著的提高。 相似文献
5.
6.
论文首先对AAA架构及其移动IPv6应用扩展进行阐述,给出基于移动IPv6的AAA解决方案,在此基础上对AAA实体间的消息进行了优化,并根据需要对接入路由器进行了AAA功能的扩展,从而实现了对移动节点的访问控制,并且减少了移动节点的切换延迟。 相似文献
7.
分析了软交换网络安全认证的特点和相关协议,结合工程实践提出了基于媒体网关控制器(Media GatewayControllor,MGC)的软交换网络安全认证机制,并对该机制实现的基本原理、使用协议和认证信息流程分别进行了阐述和说明,实现了软交换系统设备注册、动态接入识别、用户授权访问等安全认证功能。 相似文献
8.
在移动IPv6和层次移动IPv6中,移动节点通过无线接入点(AP)接入网络并且自动配置地址,缺乏必要的安全认证和地址管理机制。针对这一问题,文章结合IPv6的动态主机配置协议(DHCPv6)和认证,授权,计费(AAA,Authentication,Authorization,Accounting)协议设计出一套安全可靠的接入认证机制,并给出了实验结果。结果表明该接入认证方案能够有效实现对移动节点的合法性进行验证,认证成功的同时也为移动节点(MN)配置了合法IP地址,能够满足实际应用的需要。 相似文献
9.
以证书认证机制为基础,讨论了WLAN的移动台在固定区域内和切换过程中的认证以及接入点对移动台授权的过程.为了保证授权过程的安全,设计了一种散列码标识的方案,作为接入点识别移动台的根据,同时采用提前认证等手段提高切换过程的速度. 相似文献
10.
本文针对移动IPv6家乡注册和通信节点注册这两个过程的安全问题,以及目前的解决方案IPSec和RRP在应用中的一些问题,提出了一种改进的绑定更新方案,利用802.1x和AAA技术实现了该方案的一部分。 相似文献
11.
Zohar Naor 《Ad hoc Networks》2013,11(7):2136-2145
A layer-3 mobility management scheme for an all-IP Wireless Access Network (WAN), and in particular for vehicular networks, is developed in this paper. The proposed method enables fast and reliable handoff. This feature is extremely important for high speed vehicular networks. Since vehicles are characterized by likely-predictable path, as well as very high speed, handoff events can and should be predicted in order to achieve fast and reliable handoff. As it is shown in this study, the proposed scheme can significantly reduce the packet loss ratio caused by frequent handoff events experienced by high speed vehicles. This scheme is topology-independent in the sense that it does not assume any network topology. The key idea is to use a topology-learning algorithm that enables to perform localized mobility management, by efficiently re-selecting a Mobility Anchor Point (MAP) node. The goal of the proposed scheme is to maintain a continues connection subject to user-dependent delay constraints, while minimizing the signaling cost and packet loss ratio associated with handoff events. This scheme is consistent with the existing mobility management schemes currently used in Mobile IP (MIP) and cellular networks, and it fits into the Hierarchical Mobile IPv6 (HMIPv6) scheme defined in Mobile IPv6 (MIPv6) for integrating mobile terminals with the Internet wired backbone. 相似文献
12.
Neng-Chung Wang Yung-Kuei Chiang Ji-Shuen Wong 《Wireless Personal Communications》2014,75(4):2181-2200
The research and development of next generation networks results in continuously growing in heterogeneity of wireless systems. Those systems also offer users the increasing possibility of roaming between different networks, which undoubtedly needs seamless integration. As mobile users continue to expand their requirements for seamless roaming, a good handoff mechanism is necessary especially for cellular networks and wireless local area networks. The most critical problem faced in the handoff mechanism is that users may need immediate data transmission. However, immediate data transmission is always obstructed because handoff latency occurs. In this paper, we propose a Hierarchical Mobile IPv6 handoff scheme using active measurement-foreign mobility agent to measure the residual bandwidth of each access point (AP) for handoff decision. As a result, the proposed scheme prevents whole efficiency from being affected by the registration time and improves immediate data transmission. In addition, a dual-threshold of the received signal strength is used to avoid the ping-pong effect. Simulation results show that the proposed scheme outperforms the traditional Mobile IPv6 and enhanced multilayer Hierarchical Mobile IPv6. 相似文献
13.
Adaptive Route Optimization in Hierarchical Mobile IPv6 Networks 总被引:1,自引:0,他引:1
By introducing a mobility anchor point (MAP), Hierarchical Mobile IPv6 (HMIP6) reduces the signaling overhead and handoff latency associated with Mobile IPv6. However, if a mobile node (MN)'s session activity is high and its mobility is relatively low, HMIPv6 may degrade end-to-end data throughput due to the additional packet tunneling at the MAP. In this paper, we propose an adaptive route optimization (ARO) scheme to improve the throughput performance in HMIPv6 networks. Depending on the measured session-to-mobility ratio (SMR), ARO chooses one of the two different route optimization algorithms adaptively. Specifically, an MN informs a correspondent node (CN) of its on-link care-of address (LCoA) if the CN's SMR is greater than a predefined threshold. If the SMR is equal to or lower than the threshold, the CN is informed with the MN's regional CoA (RCoA). We analyze the performance of ARO in terms of balancing the signaling overhead reduction and the data throughput improvement. We also derive the optimal SMR threshold explicitly to achieve such a balance. Analytical and simulation results demonstrate that ARO is a viable scheme for deployment in HMIPv6 networks. 相似文献
14.
By introducing a mobility anchor point (MAP), Hierarchical Mobile IPv6 (HMIPv6) reduces the signaling overhead and handoff
latency associated with Mobile IPv6. In this paper, we propose a mobility-based load control (MLC) scheme, which mitigates
the burden of the MAP in fully distributed and adaptive manners. The MLC scheme combines two algorithms: a threshold-based
admission control algorithm and a session-to-mobility ratio (SMR)-based replacement algorithm. The threshold-based admission
control algorithm gives higher priority to ongoing mobile nodes (MNs) than new MNs, by blocking new MNs when the number of
MNs being serviced by the MAP is greater than a predetermined threshold. On the other hand, the SMR-based replacement algorithm
achieves efficient MAP load distribution by considering MNs’ traffic and mobility patterns. We analyze the MLC scheme using
the continuous time Markov chain in terms of the new MN blocking probability, ongoing MN dropping probability, and binding
update cost. Also, the MAP processing latency is evaluated based on the M/G/1 queueing model. Analytical and simulation results
demonstrate that the MLC scheme outperforms other schemes and thus it is a viable solution for scalable HMIPv6 networks. 相似文献
15.
16.
Yuh‐Shyan Chen Wei‐Han Hsiao Kau‐Lin Chiu 《International Journal of Communication Systems》2009,22(12):1515-1541
In wireless/mobile networks, users freely and frequently change their access points (APs) while they are communicating with other users. To support the mobility of mobile nodes (MNs), Mobile IPv6 (MIPv6) is used to inform the information of MN's home address and current care‐of‐address (CoA) to its home agent. MIPv6 suffers from a long delay latency and high packet losses (PLs) because MIPv6 does not support micromobility. A Hierarchical Mobile IPv6 (HMIPv6) is proposed which provides micromobility and macromobility to reduce handoff latency (HL) by employing a hierarchical network structure. In this paper, we propose a cross‐layer partner‐based fast handoff mechanism based on HMIPv6, called the PHMIPv6 protocol. Our PHMIPv6 protocol is a cross‐layer, layer‐2 + layer‐3, and cooperative approach. A cooperative node, called a partner node (PN), is adopted in the PHMIPv6 protocol. A new layer‐2 trigger scheme used in the PHMIPv6 protocol accurately predicts the next AP and then invites a cooperative PN in the area of the next AP. With the cooperation of the PN, the CoA can be pre‐acquired and duplicate address detection operation can be pre‐executed by the PN before the MN initializes the handoff request. The PHMIPv6 protocol significantly reduces the handoff delay time and PLs. In the mathematical analysis, we verified that our PHMIPv6 protocol offers a better HL than the MIPv6, HMIPv6, and SHMIPv6 protocols. Finally, the experimental results also illustrate that the PHMIPv6 protocol actually achieves performance improvements in the handoff delay time, PL rate, and handoff delay jitter. Copyright © 2009 John Wiley & Sons, Ltd. 相似文献
17.
《中国邮电高校学报(英文版)》2008
In order to reduce the cost and decrease the delay caused by combining the AAA function while guaranteeing the fast handover performance, we bring out an enhanced secure fast handover scheme. Our research focuses on improving the security and reducing the delay during the handover process of mobile IPv6, the most important thing is to minimize the authentication latency in AAA processing. According to the scheme referred above, the performance evaluation is analyzed in terms of pedestrian and vehicle, and the results of simulation show that the proposed mechanism reduces the handoff and authentication latency evidently compared to the previous simple traditional combination modeling. 相似文献
18.
《Selected Areas in Communications, IEEE Journal on》2006,24(9):1725-1737
Network mobility introduces far more complexity than host mobility. Therefore, host mobility protocols such as Mobile IPv6 (MIPv6) need to be extended to support this new type of mobility. To address the extensions needed for network mobility, the IETF NEMO working group has recently standardized the network mobility basic support protocol in RFC 3963. However, in this RFC, it is not mentioned how authentication authorization and accounting (AAA) issues are handled in NEMO environment. Also, the use of IPsec to secure NEMO procedures does not provide robustness against leakage of stored secrets. To address this security issue and to achieve AAA with mobility, we propose new handover procedures to be performed by mobile routers and by visiting mobile nodes. This new handover procedure is based on leakage resilient-authenticated key establishment (LR-AKE) protocol. Using analytical models, we evaluate the proposed handover procedure in terms of handover delay which affects the session continuity. Our performance evaluation is based on transmission, queueing and encryption delays over wireless links. 相似文献
19.
20.
Seung‐Hee Hwang Bo‐Kyung Lee Youn‐Hee Han Chong‐Sun Hwang 《Wireless Communications and Mobile Computing》2004,4(2):233-245
The Hierarchical Mobile IPv6 (HMIPv6), which is based on the Mobile IPv6 (MIPv6), has been proposed by IETF to reduce registration control signaling. It separates micro‐mobility from macro‐mobility with the help of an intermediate mobility agent, called the mobility anchor point (MAP), and exploits a Mobile Node's (MN's) spatial locality. However, all packets from a Correspondent Node (CN) to an MN are delivered through the MAP. That causes delay in packets delivery and the congestion of packets in the MAP so that it results in deterioration of network capability. To alleviate these problems, we propose a Hierarchical Mobile IPv6 protocol using not only spatial locality but also temporal locality. We introduce a profile for management of these locality information. According to the information in the profile, some packets are directly delivered to an MN, if MN seems to reside for a long time in the current subnet. Also, we introduce a handover scheme with the help of an L2 trigger, so that the proposed scheme takes nearly the same handover delay time as HMIPv6. The other contribution of this paper is to suggest a mathematical modeling and analysis of network traffic costs, MAP processing costs and handover latency for both HMIPv6 and the proposed scheme. Copyright © 2004 John Wiley & Sons, Ltd. 相似文献