Network Working Group G. Giaretta, Ed.
Request for Comments: 5026 Qualcomm
Category: Standards Track J. Kempf
DoCoMo Labs USA
V. Devarapalli, Ed.
Azaire Networks
October 2007
Mobile IPv6 Bootstrapping in Split Scenario
Status of This Memo
This document specifies an Internet standards track protocol for the
Internet community, and requests discussion and suggestions for
improvements. Please refer to the current edition of the "Internet
Official Protocol Standards" (STD 1) for the standardization state
and status of this protocol. Distribution of this memo is unlimited.
Abstract
A Mobile IPv6 node requires a Home Agent address, a home address, and
IPsec security associations with its Home Agent before it can start
utilizing Mobile IPv6 service. RFC 3775 requires that some or all of
these are statically configured. This document defines how a Mobile
IPv6 node can bootstrap this information from non-topological
information and security credentials pre-configured on the Mobile
Node. The solution defined in this document solves the split
scenario described in the Mobile IPv6 bootstrapping problem statement
in RFC 4640. The split scenario refers to the case where the Mobile
Node's mobility service is authorized by a different service provider
than basic network access. The solution described in this document
is also generically applicable to any bootstrapping case, since other
scenarios are more specific realizations of the split scenario.
Giaretta, et al. Standards Track [Page 1]
RFC 5026 MIP6 Bootstrapping in Split Scenario October 2007
Table of Contents
1. Introduction ....................................................3
2. Terminology .....................................................3
3. Split Scenario ..................................................4
4. Components of the Solution ......................................7
5. Protocol Operations .............................................9
5.1. Home Agent Address Discovery ...............................9
5.1.1. DNS Lookup by Home Agent Name ......................10
5.1.2. DNS Lookup by Service Name .........................10
5.2. IPsec Security Associations Setup .........................11
5.3. Home Address Assignment ...................................11
5.3.1. Home Address Assignment by the Home Agent ..........11
5.3.2. Home Address Auto-Configuration by the
Mobile Node ........................................12
5.4. Authorization and Authentication with MSA .................14
6. Home Address Registration in the DNS ...........................14
7. Summary of Bootstrapping Protocol Flow .........................16
8. Option and Attribute Format ....................................17
8.1. DNS Update Mobility Option ................................17
8.2. MIP6_HOME_PREFIX Attribute ................................19
9. Security Considerations ........................................20
9.1. HA Address Discovery ......................................20
9.2. Home Address Assignment through IKEv2 .....................22
9.3. SA Establishment Using EAP through IKEv2 ..................22
9.4. Backend Security between the HA and AAA Server ............22
9.5. Dynamic DNS Update ........................................23
10. IANA Considerations ...........................................24
11. Contributors ..................................................24
12. Acknowledgements ..............................................25
13. References ....................................................25
13.1. Normative References .....................................25
13.2. Informative References ...................................26
Giaretta, et al. Standards Track [Page 2]
RFC 5026 MIP6 Bootstrapping in Split Scenario October 2007
1. Introduction
Mobile IPv6 [1] requires the Mobile Node to know its Home Agent
Address, its own Home Address, and the cryptographic materials (e.g.,
shared keys or certificates) needed to set up IPsec security
associations with the Home Agent (HA) in order to protect Mobile IPv6
signaling. This is generally referred to as the Mobile IPv6
datatracker.ietf.org