Presentation is loading. Please wait.

Presentation is loading. Please wait.

CMSC 628 - Presentation An End-to-End Approach to Host Mobility An End-to-End Approach to Host Mobility Alex C. Snoeren and Hari Balakrishnan Alex C. Snoeren.

Published byDale Edgar Price Modified over 8 years ago

Similar presentations

Presentation on theme: "CMSC 628 - Presentation An End-to-End Approach to Host Mobility An End-to-End Approach to Host Mobility Alex C. Snoeren and Hari Balakrishnan Alex C. Snoeren."— Presentation transcript:

1 CMSC 628 - Presentation An End-to-End Approach to Host Mobility An End-to-End Approach to Host Mobility Alex C. Snoeren and Hari Balakrishnan Alex C. Snoeren and Hari Balakrishnan

2 Overview ► Introduction ► Mobile IP ► Other IP layer approaches to mobility ► Transport layer approaches ► Proposed architecture ► Issues ► Conclusions

3 Introduction ► Routing issue with legacy TCP/IP stack ► Host location and hand-off support ► End-End Vs other approaches ► Keeping mobility transparent from the transport layer

4 Mobile IP ► Essentially, mobility handled by ‘third party’ ► Triangle routing and tunneling ► Pure routing solution ► Only IP substrate changed

5 Other network layer approaches ► For the most part, enhancements of Mobile IP ► Cache care-of address of mobile host ► IPv6 mobility support

6 Transport layer approaches ► Migration NOT transparent to TCP ► Proxy approaches: transparent to sender ► Current approach

7 The End-to-End architecture ► Addressing ► Host location ► TCP connection migration ► Security

8 Host Location ► In case of fixed servers, no special service required ► In case of mobile servers, use dynamic DNS updates ► Set TTL of DNS cache entries to zero ► Problems with fast mobility

9 TCP connection migration ► Use secure tokens to identify TCP connections ► Token negotiated during handshake ► Migrate-permitted option to negotiate token ► Migrate option to migrate a connection

10 TCP connection migration

11 ► Migrate Permitted option

12 TCP connection migration ► SYN from client contains client’s public key ► Likewise for SYN from the server ► Shared secret key computed from the above ► Token computed as a hash of the shared key and initial sequence numbers

13 TCP connection migration ► Migrate option

14 TCP connection migration ► Migrate option used in the SYN after migration ► ReqNo used to order migrate requests ► Token identifies the connection ► Request is an authentication mechanism ► Essentially, hash of the initial sequence numbers, shared key, request number, and the migrate SYN segment

15 TCP connection migration ► At the other end, compare token ► Check if ReqNo is one greater than prev ► Compute request hash and compare ► Update destination address and port ► The Migrate-Wait state

16 Security ► Denial of Service ► Connection Hijacking ► Key security

17 Performance

18 Limitations ► Slow start begins after migration ► Both hosts cannot move simultaneously ► Address caching

19 Conclusions ► End-to-End architecture ► Transport layer aware of mobility ► Hosts have choice over approach used, hence more flexible ► Pretty secure ► Some limitations

Download ppt "CMSC 628 - Presentation An End-to-End Approach to Host Mobility An End-to-End Approach to Host Mobility Alex C. Snoeren and Hari Balakrishnan Alex C. Snoeren."

Similar presentations

An End-to-End Approach to Host Mobility Alex C. Snoeren and Hari Balakrishnan MIT Laboratory for Computer Science.

An End-to-End Approach to Host Mobility Alex C. Snoeren and Hari Balakrishnan MIT Laboratory for Computer Science.
Computer Networks20-1 Chapter 20. Network Layer: Internet Protocol 20.1 Internetworking 20.2 IPv4 20.3 IPv6.

Computer Networks20-1 Chapter 20. Network Layer: Internet Protocol 20.1 Internetworking 20.2 IPv IPv6.
資 管 Lee Lesson 12 IPv6 Mobility. 資 管 Lee Lesson Objectives Components of IPv6 mobility IPv6 mobility messages and options IPv6 mobility data structures.

資 管 Lee Lesson 12 IPv6 Mobility. 資 管 Lee Lesson Objectives Components of IPv6 mobility IPv6 mobility messages and options IPv6 mobility data structures.
Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.

Module 5: TLS and SSL 1. Overview Transport Layer Security Overview Secure Socket Layer Overview SSL Termination SSL in the Hosted Environment Load Balanced.
Chapter 7: Transport Layer

Chapter 7: Transport Layer
Univ. of TehranComputer Network1 Special Topics on Wireless Ad-hoc Networks University of Tehran Dept. of EE and Computer Engineering By: Dr. Nasser Yazdani.

Univ. of TehranComputer Network1 Special Topics on Wireless Ad-hoc Networks University of Tehran Dept. of EE and Computer Engineering By: Dr. Nasser Yazdani.
1 Mobile IP Myungchul Kim Tel: 042-866-6127.

1 Mobile IP Myungchul Kim Tel:
1 Network Architecture and Design Advanced Issues in Internet Protocol (IP) IPv4 Network Address Translation (NAT) IPV6 IP Security (IPsec) Mobile IP IP.

1 Network Architecture and Design Advanced Issues in Internet Protocol (IP) IPv4 Network Address Translation (NAT) IPV6 IP Security (IPsec) Mobile IP IP.
ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.

ECE 454/CS 594 Computer and Network Security Dr. Jinyuan (Stella) Sun Dept. of Electrical Engineering and Computer Science University of Tennessee Fall.
IP Security. Overview In 1994, Internet Architecture Board (IAB) issued a report titled “Security in the Internet Architecture”. This report identified.

IP Security. Overview In 1994, Internet Architecture Board (IAB) issued a report titled “Security in the Internet Architecture”. This report identified.
ConnectionMigration 818L Network Centric Computing Spring 2002 Ishan Banerjee.

ConnectionMigration 818L Network Centric Computing Spring 2002 Ishan Banerjee.
Computer Communication 2004-51 Digital Communication in the Modern World Transport Layer Multiplexing, UDP

Computer Communication Digital Communication in the Modern World Transport Layer Multiplexing, UDP
K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.

K. Salah 1 Chapter 31 Security in the Internet. K. Salah 2 Figure 31.5 Position of TLS Transport Layer Security (TLS) was designed to provide security.
MOBILITY SUPPORT IN IPv6

MOBILITY SUPPORT IN IPv6
CLIENT / SERVER ARCHITECTURE AYRİS UYGUR & NİLÜFER ÇANGA.

CLIENT / SERVER ARCHITECTURE AYRİS UYGUR & NİLÜFER ÇANGA.
Anycast Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.

Anycast Jennifer Rexford Advanced Computer Networks Tuesdays/Thursdays 1:30pm-2:50pm.
1 CCNA 2 v3.1 Module 10. 2 Intermediate TCP/IP CCNA 2 Module 10.

1 CCNA 2 v3.1 Module Intermediate TCP/IP CCNA 2 Module 10.
Mobile IP Polytechnic University Anthony Scalera Heine Nzumafo Duminda Wickramasinghe Edited by: Malathi Veeraraghavan 12/05/01.

Mobile IP Polytechnic University Anthony Scalera Heine Nzumafo Duminda Wickramasinghe Edited by: Malathi Veeraraghavan 12/05/01.
1 IPv6 Address Management Rajiv Kumar. 2 Lecture Overview Introduction to IP Address Management Rationale for IPv6 IPv6 Addressing IPv6 Policies & Procedures.

1 IPv6 Address Management Rajiv Kumar. 2 Lecture Overview Introduction to IP Address Management Rationale for IPv6 IPv6 Addressing IPv6 Policies & Procedures.
CN2668 Routers and Switches Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+

CN2668 Routers and Switches Kemtis Kunanuraksapong MSIS with Distinction MCTS, MCDST, MCP, A+

Similar presentations

Ads by Google