Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'

Mojtaba Alizadeh; Mohammad Hessam Tadayon; Kouichi Sakurai; Sabariah Baharun; Hiroaki Anada; Mazdak Zamani; Akram Zeki; Shehzad Ashraf Chaudhry; Muhammad Khurram Khan

doi:10.1109/ICIN.2017.7899399

Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'

Mojtaba Alizadeh, Mohammad Hessam Tadayon, Kouichi Sakurai, Sabariah Baharun, Hiroaki Anada, Mazdak Zamani, Akram Zeki, Shehzad Ashraf Chaudhry, Muhammad Khurram Khan

Mathematical Informatics

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

1 Citation (Scopus)

Abstract

Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.

Original language	English
Title of host publication	Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017
Editors	Stefano Secci, Noel Crespi, Antonio Manzalini
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	112-116
Number of pages	5
ISBN (Electronic)	9781509036721
DOIs	https://doi.org/10.1109/ICIN.2017.7899399
Publication status	Published - Apr 13 2017
Event	20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017 - Paris, France Duration: Mar 7 2017 → Mar 9 2017

Publication series

Name	Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017

Other

Other	20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017
Country/Territory	France
City	Paris
Period	3/7/17 → 3/9/17

All Science Journal Classification (ASJC) codes

Safety, Risk, Reliability and Quality
Computer Networks and Communications
Hardware and Architecture

Access to Document

10.1109/ICIN.2017.7899399

Cite this

Alizadeh, M., Tadayon, M. H., Sakurai, K., Baharun, S., Anada, H., Zamani, M., Zeki, A., Chaudhry, S. A., & Khan, M. K. (2017). Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'. In S. Secci, N. Crespi, & A. Manzalini (Eds.), Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017 (pp. 112-116). [7899399] (Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICIN.2017.7899399

Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'. / Alizadeh, Mojtaba; Tadayon, Mohammad Hessam; Sakurai, Kouichi et al.
Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017. ed. / Stefano Secci; Noel Crespi; Antonio Manzalini. Institute of Electrical and Electronics Engineers Inc., 2017. p. 112-116 7899399 (Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Alizadeh, M, Tadayon, MH, Sakurai, K, Baharun, S, Anada, H, Zamani, M, Zeki, A, Chaudhry, SA & Khan, MK 2017, Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'. in S Secci, N Crespi & A Manzalini (eds), Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017., 7899399, Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017, Institute of Electrical and Electronics Engineers Inc., pp. 112-116, 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017, Paris, France, 3/7/17. https://doi.org/10.1109/ICIN.2017.7899399

Alizadeh M, Tadayon MH, Sakurai K, Baharun S, Anada H, Zamani M et al. Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'. In Secci S, Crespi N, Manzalini A, editors, Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017. Institute of Electrical and Electronics Engineers Inc. 2017. p. 112-116. 7899399. (Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017). doi: 10.1109/ICIN.2017.7899399

Alizadeh, Mojtaba ; Tadayon, Mohammad Hessam ; Sakurai, Kouichi et al. / Comments and improvements of 'HOTA : Handover optimized ticket-based authentication in network-based mobility management'. Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017. editor / Stefano Secci ; Noel Crespi ; Antonio Manzalini. Institute of Electrical and Electronics Engineers Inc., 2017. pp. 112-116 (Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017).

@inproceedings{ed394c8000d048a8ac270ddcecd8c6b1,

title = "Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'",

abstract = "Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.",

author = "Mojtaba Alizadeh and Tadayon, {Mohammad Hessam} and Kouichi Sakurai and Sabariah Baharun and Hiroaki Anada and Mazdak Zamani and Akram Zeki and Chaudhry, {Shehzad Ashraf} and Khan, {Muhammad Khurram}",

note = "Funding Information: Authors acknowledge the support from Iran Telecommunication Research Center and Iran National Elites Foundation (Bonyad Melli Nokhbegan). We would like to express our gratitude and appreciation to Malaysia-Japan International Institute of Technology (MJIIT) at Universiti Teknologi Malaysia, Japan Student Services Organization (JASSO), and Kyushu University, Fukuoka, Japan, for all supports. Publisher Copyright: {\textcopyright} 2017 IEEE.; 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017 ; Conference date: 07-03-2017 Through 09-03-2017",

year = "2017",

month = apr,

day = "13",

doi = "10.1109/ICIN.2017.7899399",

language = "English",

series = "Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "112--116",

editor = "Stefano Secci and Noel Crespi and Antonio Manzalini",

booktitle = "Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017",

address = "United States",

}

TY - GEN

T1 - Comments and improvements of 'HOTA

T2 - 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017

AU - Alizadeh, Mojtaba

AU - Tadayon, Mohammad Hessam

AU - Sakurai, Kouichi

AU - Baharun, Sabariah

AU - Anada, Hiroaki

AU - Zamani, Mazdak

AU - Zeki, Akram

AU - Chaudhry, Shehzad Ashraf

AU - Khan, Muhammad Khurram

N1 - Funding Information: Authors acknowledge the support from Iran Telecommunication Research Center and Iran National Elites Foundation (Bonyad Melli Nokhbegan). We would like to express our gratitude and appreciation to Malaysia-Japan International Institute of Technology (MJIIT) at Universiti Teknologi Malaysia, Japan Student Services Organization (JASSO), and Kyushu University, Fukuoka, Japan, for all supports. Publisher Copyright: © 2017 IEEE.

PY - 2017/4/13

Y1 - 2017/4/13

N2 - Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.

AB - Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.

UR - http://www.scopus.com/inward/record.url?scp=85018885822&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85018885822&partnerID=8YFLogxK

U2 - 10.1109/ICIN.2017.7899399

DO - 10.1109/ICIN.2017.7899399

M3 - Conference contribution

AN - SCOPUS:85018885822

T3 - Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017

SP - 112

EP - 116

BT - Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017

A2 - Secci, Stefano

A2 - Crespi, Noel

A2 - Manzalini, Antonio

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 7 March 2017 through 9 March 2017

ER -

Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this