Special Offers
- IGI Global’s New Emerging Topic e-Book Collections
  Acquire highly focused and affordable Cutting-Edge Peer-Reviewed Research Content through a selection of 17 topic-focused e-Book Collections discounted up to 90%, compared to list prices. Collection topics include Artificial Intelligence, Data Science, Language Learning, Marketing and Customer Relations, Sustainability, and many more. Hosted on the InfoSci^® platform, these collections feature no DRM, no additional cost for multi-user licensing, no embargo of content, full-text PDF & HTML format, and more.
  Learn More
- Open Access Book (Free Access) - Encyclopedia of Information Science and Technology, Sixth Edition (ISBN: 9781668473665)
  The Encyclopedia of Information Science and Technology, Sixth Edition) continues the legacy set forth by the first five editions by providing comprehensive coverage and up-to-date definitions of the most important issues, concepts, and trends pertaining to technological advancements and information management within a variety of settings and industries. The entire book is being published under open access.
  Read Now
- Open Access Book (Free Access) - Food Sustainability, Environmental Awareness, and Adaptation and Mitigation Strategies for Developing Countries (ISBN: 9781668456293)
  Food Sustainability, Environmental Awareness, and Adaptation and Mitigation Strategies for Developing Countries provides information on the recent technology, mitigation, and environmental protection that must be applied for food sustainability in developing countries. This book is being published under Platinum Open Access through funding from Diponegoro University, Indonesia.
  Read Now
- Open Access Book (Free Access) - New Models of Higher Education: Unbundled, Rebundled, Customized, and DIY (ISBN: 9781668438091)
  The Walmart Corporation and the Lumina Foundation have provided funding to make New Models of Higher Education: Unbundled, Rebundled, Customized, and DIY fully open access, completely removing any paywall between scholars in education and the latest research on new models for the future of higher education.
  Read Now
- Open Access Book (Free Access) - Handbook of Research on the Global View of Open Access and Scholarly Communications (ISBN: 9781799898054)
  Through a collaboration between IGI Global and the University of North Texas, the Handbook of Research on the Global View of Open Access and Scholarly Communications has been published as fully open access, completely removing any paywall between researchers of any field, and the latest research on the equitable and inclusive nature of Open Access and all of its complications.
  Read Now
Books
- - Books by Subject
  - Business, Administration, & Management
  - Scientific, Technical, & Medical (STM)
  - Education
  - Books by Field
Journals
- - Journals
  - OnDemand Journal Articles
  - Journals by Subject
  - Business, Administration, & Management
  - Scientific, Technical, & Medical (STM)
  - Education
  - Journals by Field
e-Collections
Open Access
- View All Open Access Opportunities
  Search across all of IGI Global’s available open access publishing opportunities to unleash your research potential.
  Find an Open Access Journal for Your Next Manuscript
  Search across all of IGI Global’s available open access publishing opportunities to unleash your research potential.
  Submit an Open Access Book Proposal
  Learn more about open access book publishing and how it can propel your research forward in the field.
  Convert Your Work to Open Access
  Already published? You can convert your work to open access to increase its impact through IGI Global’s Restrospective Open Access Program.
  Utilize Open Access Collection Database
  Open up your research potential by utilizing our open access content or integrating the open access collection into your library
  Consider Open Access Agreements
  For Libraries: consider no-cost or investment-level open access agreements with IGI Global to support your faculty's research endeavors.
  Search Funding Resources
  Looking for additional funding resources to support your open accesss endeavors? View industry resources compiled by our open access team.
  Review Open Access Policies & Ethical Guidelines
  Considering IGI Global to publish your work under open access? Review IGI Global’s open access policies and ethical guidelines
Publish with Us
Resources
- - Instructors
  - Course Adoption
  - Teaching Cases
  - K-12 Online Learning Collection
  - Authors and Editors
  - eEditorial Discovery^® System
  - Peer Review Process
  - Ethics and Malpractice
  - COPE Membership
  - Fair Use Policy
  - Open Access Publishing
  - FAQ
Catalogs
About Us
Newsroom

Secure Routing and Mobility in Future IP Networks

Kaj Grahn, Jonny Karlsson, Göran Pulkkis

Source Title: Handbook of Research on Mobility and Computing: Evolving Technologies and Ubiquitous Impacts

DOI: 10.4018/978-1-60960-042-6.ch059

OnDemand:

(Individual Chapters)

Available

$37.50

Current Special Offers

No Current Special Offers

Abstract

The evolution of computer networking is moving from static wired networking towards wireless, mobile, infrastructureless, and ubiquitous networking. In next-generation computer networks, new mobility features such as, seamless roaming, vertical handover, and moving networks are introduced. Security is a major challenge in developing mobile and infrastructureless networks. Specific security threats in next-generation networks are related to the wireless access mediums, routing, and mobility features. The purpose of this chapter is to identify these threats, and discuss the state of the art of security research and standardization within the area. Proposed security architectures for mobile networking are presented. A survey of security in routing is provided with special focus on mobile ad hoc networks (MANETs). The security of currently relevant protocols for management or node and network mobility, Mobile IP (MIP), Network Mobility (NEMO), Mobile Internet Key Exchange (MOBIKE), Host Identity Protocol (HIP), Mobile Stream Control Transmission Protocol (mSCTP), Datagram Congestion Control Protocol (DCCP), and Session Initiation Protocol (SIP), is described.

Chapter Preview

Top

Introduction

In mobile networking two fundamental features require new security solutions. The first fundamental feature is that the network infrastructure is no longer fixed. Home network protection can therefore no longer rely on network border defense, such as network traffic control in network gateways, since network borders can no longer be defined. Moreover, authentication and authorization solutions can no longer be based on network host location, for example defined by an IP address, since network host location changes cannot be predicted.

The second fundamental feature requiring new security solutions is the presence of wireless links in mobile networks. Secure communication in mobile networks can therefore no longer be based on protection and isolation of the communication media. The wireless links in mobile networks are not only end user node connections to the network. Also an entire network, for example a wired or wireless network in a train, can have changing wireless attachments to other networks. A network with a fixed structure to which mobile nodes and/or mobile networks are attached is called a mobile infrastructure network. Another mobile network type is a mobile ad hoc network (MANET) in which all network links are both wireless and changing.

This book chapter is a state of the art survey of

•
security requirements,
•
security architecture,
•
routing security, and
•
security of mobility management protocols

in present and future mobile networks.

Top

Security Requirements In Mobile Networks

Security is of most important concern when providing Internet mobility support. Any mobility solution must provide protection itself against attacks on and misuses of mobility features and mechanisms. Examples are stealing of legitimate addresses and flooding a node with a large amount of unwanted traffic. Complete and useful Internet mobility should address the security issues.

The following security requirements for a mobile infrastructure network type called 4G mobile networks with mobile end user devices are proposed in (Zheng et al., 2005), when end user devices called Mobile Equipment (ME) have location mobility and USIMs (Universal Subscriber Identity Module) as security modules:

1.
Security requirements on an ME/USIM:
- •
  It shall protect the integrity of the hardware, software and OS in the mobile platform
- •
  It shall control access to data in ME/USIM.
- •
  It shall ensure confidentiality and integrity of data stored in the ME/USIM or transported on the interface between ME and USIM.
- •
  It shall retain user’s identity as privacy to ME.
- •
  It shall prevent the stolen/compromised ME/USIM from being abused and/or used as an attack tool.
2.
Security requirements on radio interface and network operator:
- •
  Entity authentication: mutual authentication between user and network shall be implemented to ensure secure service access and provision.
- •
  Ensure confidentiality of data including user traffic and signaling data on wired or wireless interface.
- •
  Ensure integrity and origin authentication of user traffic, signaling data and control data.
- •
  Security of user identity: It shall protect user identity confidentiality, protect user location confidentiality and prevent user traceability.
- •
  Lawful interception: It shall be possible for law enforcement agencies to monitor and intercept every call in accordance with national laws.
3.
Security visibility, configurability and scalability:
- •
  The security features of the visited network should be transparent to the user.
- •
  The user can negotiate acceptable security lever with the visited network when user roams outside HE (home environment).
- •
  The security mechanism shall be scalable to support increase of user and/or network elements.

Key Terms in this Chapter

DCCP: Datagram Congestion Control Protocol is a congestion-controlled unreliable transport layer protocol that combines one or more transport connections into a single application-level entity.

MIP: Mobile Internet Protocol is a communication protocol providing device mobility at the Internet layer

MANET: Mobile Ad hoc Network is a self-configuring network of mobile devices connected by wireless links

Routing: Is a process of selecting paths for sending data between end nodes in a computer network

SIP: Session Initiation Protocol is a signalling protocol used for managing multimedia communication sessions over the Internet Protocol (IP)

Integrity: A security service, which verifies that stored or transferred information has remained unchanged.

Confidentiality: A cryptographic security service, which allows only authorized users or network nodes to access information content.

HIP: Host Identity Protocol provides host identification and device mobility by extracting the end-point identifier role of an IP addresses into a cryptographic name space known as Host Identity (HI)

Authentication: Verification of the identity of a user or network node who claims to be legitimate.

mSCTP: Mobile Stream Control Transmission protocol is a general purpose, connection-oriented, reliable, full-duplex, flow-controlled, and congestion-controlled transport layer protocol in the TCP/IP network protocol stack.

Complete Chapter List

Search this Book:

Reset

MLA

APA

Chicago

Export Reference