1 / 6

Alpesh Patel Kent Leung Kuntal Chowdury Mohammad Khalil Hasseb Akthar

Authentication option for MIPv6 Status Update draft-ietf-mip6-auth-protocol-00.txt 3 rd August, 2004. Alpesh Patel Kent Leung Kuntal Chowdury Mohammad Khalil Hasseb Akthar. Wireless Access. Solution. AAA Server. IPv6 Network. BTS. AR. HA. Obtain a CoA.

dugan
Download Presentation

Alpesh Patel Kent Leung Kuntal Chowdury Mohammad Khalil Hasseb Akthar

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Authentication option for MIPv6Status Updatedraft-ietf-mip6-auth-protocol-00.txt3rd August, 2004 Alpesh Patel Kent Leung Kuntal Chowdury Mohammad Khalil Hasseb Akthar

  2. Wireless Access Solution AAA Server IPv6 Network BTS AR HA Obtain a CoA BU with new Mobility Options (MN Identification option, MN-HA/MN-AAA Authentication option) AAA Auth Request AAA Reply BA with new Mobility Options (MN Identification option, MN-HA Authentication option) Data Session

  3. Changes from last version • Removed encryption of selective fields to support route optimization • Current version supports authentication of BU/BA messages only • Added subtype for MN-AAA authentication option

  4. MN-HA/AAA Authentication Option 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Option Type | Option Length | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Subtype | SPI | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | SPI | Authenticator . . . +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ Subtype * MN-HA authentication * MN-AAA authentication

  5. Identification Option 0 1 2 3 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Option Type | Option Length | +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ | Identification ... +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+ Identification: * Provide replay protection * 64-bits

  6. Next Steps • Need to refine the draft on the following aspects: • Add clarifying text in security considerations • Clarify usage of MN-AAA authentication option • Clarify the usage/details of the identification option

More Related