Enhancing MISP with Fast Mobile IPv6 Security

You, Ilsun; Lee, Jong‐Hyouk; Hori, Yoshiaki; Sakurai, Kouichi

doi:10.1155/2011/148959

Cited by 14 publications

(15 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Since introduced by Burrows, Abadi, and Needham, BANlogic has been widely applied to security analysis on many security protocols due to its simplicity, intuitive, and robust [33][34][35]. For BAN-logic-based security analysis, a security protocol is (i) translated into an idealization form, (ii) its assumptions and goals are defined, and (iii) the BAN-logic rules are repeatedly applied to the idealized protocol to evolve its beliefs until the goals are satisfied.…”

Section: Security Analysis Based On Ban-logicmentioning

confidence: 99%

5G wireless P2MP backhaul security protocol: an adaptive approach

Kim¹,

Choudhary²,

Heo³

et al. 2019

J Wireless Com Network

Self Cite

View full text Add to dashboard Cite

5G has introduced various emerging demands for new services and technologies that raised the bar for quality of service, latency, handovers, and data rates. Such diverse and perplexing network requirements bring numerous issues, among which security stands in the first row. The backhaul, which can be implemented as a wired or wireless solution, serves as a bridge between the radio access and core networks assuring connectivity to end users. The recent trends in backhaul usage rely on wireless technologies implemented using point-to-point (PTP) or point-to-multipoint (P2MP) configurations. Unfortunately, due to the nature of the transmission medium, the wireless backhaul is vulnerable and exposed to more various security threats and attacks than the wired one. In order to protect the backhaul, there have been several researches, whose authentication and key exchange scheme mainly depends on the existing security standards such as transport layer security (TLS), Internet Key Exchange version 1 (IKEv1), IKEv2, Host Identity Protocol (HIP), and Authentication and Key Agreement (AKA). However, such security standards cannot completely fulfil the security requirements including security policy update, key update, and balancing between security and efficiency, which are necessary for the emerging 5G networks. This is basically the motive behind why we study and propose a new security protocol for the backhaul link of wireless access network based on P2MP model. The proposed protocol is designed to be 5G-aware, and provides mutual authentication, perfect forward secrecy, confidentiality, integrity, secure key exchange, security policy update, key update, and balancing trade-off between efficiency and security while preventing resource exhaustion attacks. The protocol's correctness is formally verified by the well-known formal security analysis tools: BAN-logic and Scyther. Moreover, the derived lemmas prove that the security requirements are satisfied. Finally, from a comparison analysis, it is shown that the proposed protocol is better than other standard protocols.

show abstract

Section: Security Analysis Based On Ban-logicmentioning

confidence: 99%

5G wireless P2MP backhaul security protocol: an adaptive approach

Kim¹,

Choudhary²,

Heo³

et al. 2019

J Wireless Com Network

Self Cite

View full text Add to dashboard Cite

show abstract

“…In this section, SPAM is formally analyzed through the BAN logic [8], which has been one of the most popular and widely used tools for the formal verification of security protocols [9], [10]. The notations and rules of the BAN logic are shown in Figs.…”

Section: Formal Verificationmentioning

confidence: 99%

Comments on “SPAM: A Secure Password Authentication Mechanism for Seamless Handover in Proxy Mobile IPv6 Networks”

You

Leu

2015

IEEE Systems Journal

Self Cite

View full text Add to dashboard Cite

Recently, Chuang et al. have introduced a secure password authentication mechanism for seamless handover in Proxy Mobile IPv6 (SPAM). SPAM aimed at providing high-security properties while optimizing the handover latency and the computation overhead. However, it is still vulnerable to replay and malicious insider attacks, as well as the compromise of a single node. This paper formally and precisely analyzes SPAM based on the Burrows-Abadi-Needham logic, followed by its weaknesses and related attacks. Index Terms-Burrows-Abadi-Needham (BAN) logic, fast handover security, formal security analysis, Proxy Mobile IPv6 (PMIPv6). 1932-8184

show abstract

“…A DoS attack is capable of harming any user or server connected to the Internet. You et al [49] proposed fast mobile IPv6 security by minimizing an involvement of the authentication server. A huge amount of work [11,17,21,25] has been done to prevent or mitigate this type of attack.…”

Section: Objectives and Motivationmentioning

confidence: 99%

A Methodology to Counter DoS Attacks in Mobile IP Communication

Parvin

Hussain

Ali

2012

Mobile Information Systems

View full text Add to dashboard Cite

Similar to wired communication, Mobile IP communication is susceptible to various kinds of attacks. Of these attacks, Denial of Service (DoS) attack is considered as a great threat to mobile IP communication. The number of approaches hitherto proposed to prevent DoS attack in the area of mobile IP communication is much less compared to those for the wired domain and mobile ad hoc networks. In this work, the effects of Denial of Service attack on mobile IP communication are analyzed in detail. We propose to use packet filtering techniques that work in different domains and base stations of mobile IP communication to detect suspicious packets and to improve the performance. If any packet contains a spoofed IP address which is created by DoS attackers, the proposed scheme can detect this and then filter the suspected packet. The proposed system can mitigate the effect of Denial of Service (DoS) attack by applying three methods: (i) by filtering in the domain periphery router (ii) by filtering in the base station and (iii) by queue monitoring at the vulnerable points of base-station node. We evaluate the performance of our proposed scheme using the network simulator NS-2. The results indicate that the proposed scheme is able to minimize the effects of Denial of Service attacks and improve the performance of mobile IP communication.

show abstract

Enhancing MISP with Fast Mobile IPv6 Security

Cited by 14 publications

References 16 publications

5G wireless P2MP backhaul security protocol: an adaptive approach

5G wireless P2MP backhaul security protocol: an adaptive approach

Comments on “SPAM: A Secure Password Authentication Mechanism for Seamless Handover in Proxy Mobile IPv6 Networks”

A Methodology to Counter DoS Attacks in Mobile IP Communication

Contact Info

Product

Resources

About