Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'

Mojtaba Alizadeh, Mohammad Hessam Tadayon, Kouichi Sakurai, Sabariah Baharun, Hiroaki Anada, Mazdak Zamani, Akram Zeki, Shehzad Ashraf Chaudhry, Muhammad Khurram Khan

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.

Original languageEnglish
Title of host publicationProceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017
EditorsStefano Secci, Noel Crespi, Antonio Manzalini
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages112-116
Number of pages5
ISBN (Electronic)9781509036721
DOIs
Publication statusPublished - Apr 13 2017
Event20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017 - Paris, France
Duration: Mar 7 2017Mar 9 2017

Other

Other20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017
CountryFrance
CityParis
Period3/7/173/9/17

Fingerprint

Authentication
Network protocols
Mobile devices
Synchronization
Internet
Denial-of-service attack

All Science Journal Classification (ASJC) codes

  • Safety, Risk, Reliability and Quality
  • Computer Networks and Communications
  • Hardware and Architecture

Cite this

Alizadeh, M., Tadayon, M. H., Sakurai, K., Baharun, S., Anada, H., Zamani, M., ... Khan, M. K. (2017). Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'. In S. Secci, N. Crespi, & A. Manzalini (Eds.), Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017 (pp. 112-116). [7899399] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICIN.2017.7899399

Comments and improvements of 'HOTA : Handover optimized ticket-based authentication in network-based mobility management'. / Alizadeh, Mojtaba; Tadayon, Mohammad Hessam; Sakurai, Kouichi; Baharun, Sabariah; Anada, Hiroaki; Zamani, Mazdak; Zeki, Akram; Chaudhry, Shehzad Ashraf; Khan, Muhammad Khurram.

Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017. ed. / Stefano Secci; Noel Crespi; Antonio Manzalini. Institute of Electrical and Electronics Engineers Inc., 2017. p. 112-116 7899399.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Alizadeh, M, Tadayon, MH, Sakurai, K, Baharun, S, Anada, H, Zamani, M, Zeki, A, Chaudhry, SA & Khan, MK 2017, Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'. in S Secci, N Crespi & A Manzalini (eds), Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017., 7899399, Institute of Electrical and Electronics Engineers Inc., pp. 112-116, 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017, Paris, France, 3/7/17. https://doi.org/10.1109/ICIN.2017.7899399
Alizadeh M, Tadayon MH, Sakurai K, Baharun S, Anada H, Zamani M et al. Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'. In Secci S, Crespi N, Manzalini A, editors, Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017. Institute of Electrical and Electronics Engineers Inc. 2017. p. 112-116. 7899399 https://doi.org/10.1109/ICIN.2017.7899399
Alizadeh, Mojtaba ; Tadayon, Mohammad Hessam ; Sakurai, Kouichi ; Baharun, Sabariah ; Anada, Hiroaki ; Zamani, Mazdak ; Zeki, Akram ; Chaudhry, Shehzad Ashraf ; Khan, Muhammad Khurram. / Comments and improvements of 'HOTA : Handover optimized ticket-based authentication in network-based mobility management'. Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017. editor / Stefano Secci ; Noel Crespi ; Antonio Manzalini. Institute of Electrical and Electronics Engineers Inc., 2017. pp. 112-116
@inproceedings{ed394c8000d048a8ac270ddcecd8c6b1,
title = "Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'",
abstract = "Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.",
author = "Mojtaba Alizadeh and Tadayon, {Mohammad Hessam} and Kouichi Sakurai and Sabariah Baharun and Hiroaki Anada and Mazdak Zamani and Akram Zeki and Chaudhry, {Shehzad Ashraf} and Khan, {Muhammad Khurram}",
year = "2017",
month = "4",
day = "13",
doi = "10.1109/ICIN.2017.7899399",
language = "English",
pages = "112--116",
editor = "Stefano Secci and Noel Crespi and Antonio Manzalini",
booktitle = "Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
address = "United States",

}

TY - GEN

T1 - Comments and improvements of 'HOTA

T2 - Handover optimized ticket-based authentication in network-based mobility management'

AU - Alizadeh, Mojtaba

AU - Tadayon, Mohammad Hessam

AU - Sakurai, Kouichi

AU - Baharun, Sabariah

AU - Anada, Hiroaki

AU - Zamani, Mazdak

AU - Zeki, Akram

AU - Chaudhry, Shehzad Ashraf

AU - Khan, Muhammad Khurram

PY - 2017/4/13

Y1 - 2017/4/13

N2 - Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.

AB - Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.

UR - http://www.scopus.com/inward/record.url?scp=85018885822&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85018885822&partnerID=8YFLogxK

U2 - 10.1109/ICIN.2017.7899399

DO - 10.1109/ICIN.2017.7899399

M3 - Conference contribution

AN - SCOPUS:85018885822

SP - 112

EP - 116

BT - Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017

A2 - Secci, Stefano

A2 - Crespi, Noel

A2 - Manzalini, Antonio

PB - Institute of Electrical and Electronics Engineers Inc.

ER -