Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'

Mojtaba Alizadeh, Mohammad Hessam Tadayon, Kouichi Sakurai, Sabariah Baharun, Hiroaki Anada, Mazdak Zamani, Akram Zeki, Shehzad Ashraf Chaudhry, Muhammad Khurram Khan

研究成果: 著書/レポートタイプへの貢献会議での発言

抄録

Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.

元の言語英語
ホスト出版物のタイトルProceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017
編集者Stefano Secci, Noel Crespi, Antonio Manzalini
出版者Institute of Electrical and Electronics Engineers Inc.
ページ112-116
ページ数5
ISBN(電子版)9781509036721
DOI
出版物ステータス出版済み - 4 13 2017
イベント20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017 - Paris, フランス
継続期間: 3 7 20173 9 2017

出版物シリーズ

名前Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017

その他

その他20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017
フランス
Paris
期間3/7/173/9/17

Fingerprint

Authentication
Network protocols
Mobile devices
Synchronization
Internet
Denial-of-service attack

All Science Journal Classification (ASJC) codes

  • Safety, Risk, Reliability and Quality
  • Computer Networks and Communications
  • Hardware and Architecture

これを引用

Alizadeh, M., Tadayon, M. H., Sakurai, K., Baharun, S., Anada, H., Zamani, M., ... Khan, M. K. (2017). Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'. : S. Secci, N. Crespi, & A. Manzalini (版), Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017 (pp. 112-116). [7899399] (Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICIN.2017.7899399

Comments and improvements of 'HOTA : Handover optimized ticket-based authentication in network-based mobility management'. / Alizadeh, Mojtaba; Tadayon, Mohammad Hessam; Sakurai, Kouichi; Baharun, Sabariah; Anada, Hiroaki; Zamani, Mazdak; Zeki, Akram; Chaudhry, Shehzad Ashraf; Khan, Muhammad Khurram.

Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017. 版 / Stefano Secci; Noel Crespi; Antonio Manzalini. Institute of Electrical and Electronics Engineers Inc., 2017. p. 112-116 7899399 (Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017).

研究成果: 著書/レポートタイプへの貢献会議での発言

Alizadeh, M, Tadayon, MH, Sakurai, K, Baharun, S, Anada, H, Zamani, M, Zeki, A, Chaudhry, SA & Khan, MK 2017, Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'. : S Secci, N Crespi & A Manzalini (版), Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017., 7899399, Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017, Institute of Electrical and Electronics Engineers Inc., pp. 112-116, 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017, Paris, フランス, 3/7/17. https://doi.org/10.1109/ICIN.2017.7899399
Alizadeh M, Tadayon MH, Sakurai K, Baharun S, Anada H, Zamani M その他. Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'. : Secci S, Crespi N, Manzalini A, 編集者, Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017. Institute of Electrical and Electronics Engineers Inc. 2017. p. 112-116. 7899399. (Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017). https://doi.org/10.1109/ICIN.2017.7899399
Alizadeh, Mojtaba ; Tadayon, Mohammad Hessam ; Sakurai, Kouichi ; Baharun, Sabariah ; Anada, Hiroaki ; Zamani, Mazdak ; Zeki, Akram ; Chaudhry, Shehzad Ashraf ; Khan, Muhammad Khurram. / Comments and improvements of 'HOTA : Handover optimized ticket-based authentication in network-based mobility management'. Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017. 編集者 / Stefano Secci ; Noel Crespi ; Antonio Manzalini. Institute of Electrical and Electronics Engineers Inc., 2017. pp. 112-116 (Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017).
@inproceedings{ed394c8000d048a8ac270ddcecd8c6b1,
title = "Comments and improvements of 'HOTA: Handover optimized ticket-based authentication in network-based mobility management'",
abstract = "Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.",
author = "Mojtaba Alizadeh and Tadayon, {Mohammad Hessam} and Kouichi Sakurai and Sabariah Baharun and Hiroaki Anada and Mazdak Zamani and Akram Zeki and Chaudhry, {Shehzad Ashraf} and Khan, {Muhammad Khurram}",
year = "2017",
month = "4",
day = "13",
doi = "10.1109/ICIN.2017.7899399",
language = "English",
series = "Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "112--116",
editor = "Stefano Secci and Noel Crespi and Antonio Manzalini",
booktitle = "Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017",
address = "United States",

}

TY - GEN

T1 - Comments and improvements of 'HOTA

T2 - Handover optimized ticket-based authentication in network-based mobility management'

AU - Alizadeh, Mojtaba

AU - Tadayon, Mohammad Hessam

AU - Sakurai, Kouichi

AU - Baharun, Sabariah

AU - Anada, Hiroaki

AU - Zamani, Mazdak

AU - Zeki, Akram

AU - Chaudhry, Shehzad Ashraf

AU - Khan, Muhammad Khurram

PY - 2017/4/13

Y1 - 2017/4/13

N2 - Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.

AB - Nowadays, various mobile devices are being an inseparable part of our normal life. Mobile users tend to be connected to the Internet seamlessly, which is provided by mobility management protocols. One of the latest mobility management protocol is Proxy Mobile IPv6 (PMIPv6), which is a network-based protocol. Authentication mechanism as a critical security procedure is not specified in PMIPv6, hence various authentication methods have been proposed. Lee and Bonin proposed a ticket-based authentication scheme for PMIPv6, which is called HOTA in 2013. Even though, HOTA offers some security protection mechanisms, but is vulnerable to DoS attack. Furthermore, we show other existing drawbacks to the scheme such as vulnerability against de-synchronization attack and Session Hijacking attack. In this paper, we propose an enhancement method to mitigate these security drawbacks. Finally, security and performance of the proposed method are analyzed and compared to HOTA method.

UR - http://www.scopus.com/inward/record.url?scp=85018885822&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85018885822&partnerID=8YFLogxK

U2 - 10.1109/ICIN.2017.7899399

DO - 10.1109/ICIN.2017.7899399

M3 - Conference contribution

AN - SCOPUS:85018885822

T3 - Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017

SP - 112

EP - 116

BT - Proceedings of the 2017 20th Conference on Innovations in Clouds, Internet and Networks, ICIN 2017

A2 - Secci, Stefano

A2 - Crespi, Noel

A2 - Manzalini, Antonio

PB - Institute of Electrical and Electronics Engineers Inc.

ER -