Transport Layer Security-based Mobile IPv6 Security Framework for Mobile Node to Home Agent Communication
draft-korhonen-mext-mip6-altsec-06

Document Type Replaced Internet-Draft (individual)
Last updated 2011-04-12 (latest revision 2010-10-19)
Replaced by draft-ietf-mext-mip6-tls
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
pdf htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-mext-mip6-tls
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-korhonen-mext-mip6-altsec-06.txt

Abstract

Mobile IPv6 signaling between the mobile node and home agent is secured using IPsec. The security association between a mobile node and the home agent is established using IKEv1 or IKEv2. The security model specified for Mobile IPv6, which relies on IKE/IPsec, requires interaction between the Mobile IPv6 protocol part of the IP stack and the IKE/IPsec part of the IP stack. The IPsec/IKEv2 based security architectures makes implementation and deployment of the protocol infeasible for numerous reasons. This document proposes an alternate security framework, which relies on Transport Layer Security for establishing keying material and other bootstrapping parameters required to protect Mobile IPv6 signaling and data traffic between the mobile node and home agent.

Authors

Jouni Korhonen (jouni.nospam@gmail.com)
Basavaraj Patil (basavaraj.patil@nokia.com)
Hannes Tschofenig (Hannes.Tschofenig@gmx.net)
Dirk Kroeselberg (Dirk.Kroeselberg@nsn.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)