Mobile IPv6OverviewIPv6: OverviewAddress Auto ConfigurationMobile IPv4 vs. IPv6Binding UpdatesRoute OptimizationRoute Optimization (Cont)Return Routability ProcedureReturn Routability Procedure (Cont)Cryptographically Generated AddressesFast HandoverFast Handover (Cont)Hierarchical Mobile IPv6 (HMIPv6)SummaryReading AssignmentReading Assignment (Cont)13-1©2006 Raj JainCSE574sWashington University in St. LouisMobile IPv6Mobile IPv6Raj Jain Washington University in Saint LouisSaint Louis, MO [email protected] slides are available on-line at:http://www.cse.wustl.edu/~jain/cse574-06/13-2©2006 Raj JainCSE574sWashington University in St. LouisOverviewOverviewIPv6: Overview, Extension Headers, Neighbor Discovery, Address Auto configurationMobile IPv4 vs. IPv6Route OptimizationReturn Routability ProcedureCryptographically Generated Addresses (CGAs)Fast HandoverHierarchical Mobile IPv5 (HMIPv6)13-3©2006 Raj JainCSE574sWashington University in St. LouisIPv6: OverviewIPv6: Overview128 bit addresses: 64-bit Prefix + 64-bit Interface IDlsb of MSB = u = universal or local interface ID g = group IDRouters advertise network prefixColon-hex notation:3FFE:0200:0000:0000:0000:0012:F0C8:79CA3FFE:0200::0012:F0C8:79CA:: Unspecified AddressFlow Label: SA-DA-Label One flowScoped Addresses: Link-Local, Site-LocalExtension headers: Routing, Hop-by-Hop, Destination OptionsSubnet IDInterface ID64b 56b8b g u PrefixGlobal Routing Prefix13-4©2006 Raj JainCSE574sWashington University in St. LouisAddress Auto ConfigurationAddress Auto ConfigurationStateful:Using DHCPStateless:Hosts can make a global address using advertised network prefixInterface identifier should be uniqueStateless No one needs to keep record of what address was allocated13-5©2006 Raj JainCSE574sWashington University in St. LouisMobile IPv4 vs. IPv6Mobile IPv4 vs. IPv61. No need for a foreign agent2. Route optimization3. Secure Route optimization4. New extension header in place of tunneling Less overhead. Less state.5. Neighbor discovery in place of ARP More general L26. Dynamic home agent discovery returns a single reply13-6©2006 Raj JainCSE574sWashington University in St. LouisBinding UpdatesBinding UpdatesBinding Update RegistrationNew Mobility HeaderMH Type=5 Binding UpdateEach binding update has a Sequence Number.Mobile keeps track of last seq # for each destinationHome agent performs Duplicate Address Detection (DAD), updates binding cache, sends binding ackNew network prefix and default router unreachable Network change13-7©2006 Raj JainCSE574sWashington University in St. LouisRoute OptimizationRoute OptimizationShortest path in both directionsMobile sends a binding update to the correspondentNew Destination Option: Home Address (HoA) Option HoA option is used in all packets. Correspondent replaces SA with HoA before passing to upper layerHomeAgentCorrespondentMobileNodeHoACN TCP Pkt HoACN TCP PktCoACoACN TCP PktHoADest. Option HeaderOn media:Upper layers13-8©2006 Raj JainCSE574sWashington University in St. LouisRoute Optimization (Cont)Route Optimization (Cont)SA and destination option addresses are interchanged before transmission and after receptionIn the reverse direction:New header type: “Routing Header type 2” contains home addressDA and Routing header type 2 addresses are interchanged before transmission and after receptionBinding error message Sorry I don't have a binding for this HoAIP-in-IP tunneling will require 4 addresses instead of 3 with new headers13-9©2006 Raj JainCSE574sWashington University in St. LouisReturn Routability ProcedureReturn Routability ProcedureMobile must prove to correspondent that it owns both HoA and CoAMobile does not share any secret with correspondentCorrespondent send messages to HoA and CoA. Mobile responds correctly if it receives both.Home Adr Test Init (HOTI)Care-of Adr Test Init (COTI)COT: with one half of a keyHOT: with another half of keyBinding Update (Authenticated)Binding AckHOTIHOT: Here is another nonceMobile Correspondent Home Agent13-10©2006 Raj JainCSE574sWashington University in St. LouisReturn Routability Procedure (Cont)Return Routability Procedure (Cont)Mobile starts this test. Sends HoTI via HA with a cookie.CN generates “Home Keygen Token” = First(64, HMAC_SHA1(Kcn, HoA|nonce|0))CN returns HoT containing MN's cookie, Home keygen token, and CN's nonce indexMobile sends CoTI directly to CN with another cookieCN generates “Care-of Keygen Token” = First(64, HMAC_SHA1(Kcn, CoA|nonce|1))CN returns CoT containing MN's cookie, Co Keygen Token, CN's nonce indexMobile constructs a key and sends an encrypted binding updateKbm = Sha1(Home Keygen Token|Care-of Keygen Token)Auth_data = First(96, MAC(Kbm, Mobility_data))Mobility_data = CoA|final dest address|Mobility Header dataFinal Dest Address = CN's Home address if CN is mobile13-11©2006 Raj JainCSE574sWashington University in St. LouisCryptographically Generated AddressesCryptographically Generated AddressesIPv6 address includes 64 bit interface idA node can generate Interface ID using its public key on network prefix64-bit Interface ID = First(64, Hash(home_prefix|public key|context)&0xFCFF FFFF FFFF FFFF)C Universal and group bits on the interface id are zeroMobile node can sign the binding update using its private key.13-12©2006 Raj JainCSE574sWashington University in St. LouisFast HandoverFast HandoverMobileAP1AP2AR1AR2Proxy SolicitationProxy AdvertisementFast Binding UpdateBinding AckFast Neighbor AdvertisementNeighbor Advertisement AckHandover InitiateHandover AckWho is the router for AP2?AR2 is the router. N2 is prefix.Mobile wants an AdrUse AdrxUse AdrxWhat Address Can I use?Hi! This is AdrxWelcome to our network!13-13©2006 Raj JainCSE574sWashington University in St. LouisFast Handover (Cont)Fast Handover (Cont)Ask AR1 about router for AP2 Router Solicitation for Proxy w list of Access PointsAR1 returns Proxy Router Advertisement w at least one prefixAR1 sends Handover initiate (HI) message to AR2 and sets up a tunnelAR2 does DAD and send Handover Ack (Hack)Mobile sends Binding update to AR1AR1 sends Binding Ack to old CoA or new CoAMobile sends Fast Neighbor Advertisement (F-NA) to AR2AR2 returns Fast Neighbor Advertisement Ack to MobileMobile can use
View Full Document