Transport Layer Security-based Mobile IPv6 Security Framework for Mobile Node to Home Agent Communication

Document Type Replaced Internet-Draft (individual)
Authors Jouni Korhonen  , Basavaraj Patil  , Hannes Tschofenig  , Dirk Kroeselberg 
Last updated 2011-04-12 (latest revision 2010-10-19)
Replaced by RFC 6618
Stream (None)
Intended RFC status (None)
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-mext-mip6-tls
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


Mobile IPv6 signaling between the mobile node and home agent is secured using IPsec. The security association between a mobile node and the home agent is established using IKEv1 or IKEv2. The security model specified for Mobile IPv6, which relies on IKE/IPsec, requires interaction between the Mobile IPv6 protocol part of the IP stack and the IKE/IPsec part of the IP stack. The IPsec/IKEv2 based security architectures makes implementation and deployment of the protocol infeasible for numerous reasons. This document proposes an alternate security framework, which relies on Transport Layer Security for establishing keying material and other bootstrapping parameters required to protect Mobile IPv6 signaling and data traffic between the mobile node and home agent.


Jouni Korhonen (
Basavaraj Patil (
Hannes Tschofenig (
Dirk Kroeselberg (

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)