Credit-Based Authorization for Concurrent Reachability Verification
draft-vogt-mobopts-simple-cba-00

Document Type Expired Internet-Draft (individual)
Last updated 2006-02-15
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
plain text pdf html
Stream Stream state (No stream defined)
Document shepherd No shepherd assigned
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-vogt-mobopts-simple-cba-00.txt

Abstract

Mobility and multi-homing protocols enable multi-addressed nodes to redirect ongoing communication sessions from one IP address to another. Most of these protocols verify a multi-addressed node's reachability at a claimed new IP address in order to prevent redirection-based flooding attacks. In view of reduced protocol latencies, such verification is preferably performed concurrently, i.e., while packets are already being sent to the new IP address. This document defines Credit-Based Authorization, a technique that facilitates concurrent reachability verification without compromise of security.

Authors

Christian Vogt (chvogt@tm.uka.de)
Jari Arkko (jari.arkko@piuha.net)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)