Authenticating address ownership using care-of address (COA) binding protocol
First Claim
1. A method comprising:
- producing a random number, encrypting the random number using a secret key shared by a home agent and a mobile node, piggybacking the encrypted random number in a binding acknowledge message, and transmitting the binding acknowledge message having the encrypted random number to the mobile node by the home agent upon the mobile node piggybacking a list of correspondent nodes requiring registration of a Care-of-Address (CoA) in a binding update message to register the CoA with the home agent and transmitting the binding update message having the list of correspondent nodes to the home agent;
obtaining public keys of the corresponding correspondent nodes based on the list of correspondent nodes, encrypting first information required for authentication of the mobile node using the public keys, piggybacking the encrypted first information in data to be tunneled to the correspondent nodes, and transmitting the data having the encrypted first information to the correspondent nodes by the home agent; and
decrypting the first information received from the home agent using a secret key of the correspondent node and comparing the first information received from the home agent with a second information received from the mobile node to authenticate ownership of the corresponding mobile node by the correspondent node upon the mobile node piggybacking the second information required for ownership authentication in the binding update message to register the CoA with the correspondent node and transmitting the binding update message having the second information to the correspondent node.
1 Assignment
0 Petitions
Accused Products
Abstract
A method of authenticating address ownership using a Care-of Address (CoA) binding protocol includes: producing a random number, encrypting the random number using a secret key shared by a home agent and a mobile node, piggybacking the encrypted random number in a binding acknowledge message, and transmitting the binding acknowledge message having the encrypted random number to the mobile node by the home agent upon the mobile node piggybacking a list of correspondent nodes requiring registration of a Care-of-Address (CoA) in a binding update message to register the CoA with the home agent and transmitting the binding update message having the list of correspondent nodes to the home agent; obtaining public keys of the corresponding correspondent nodes based on the list of correspondent nodes, encrypting first information required for authentication of the mobile node using the public keys, piggybacking the encrypted first information in data to be tunneled to the correspondent nodes, and transmitting the data having the encrypted first information to the correspondent nodes by the home agent; and decrypting the first information received from the home agent using a secret key of the correspondent node and comparing the first information received from the home agent with a second information received from the mobile node to authenticate ownership of the corresponding mobile node by the correspondent node upon the mobile node piggybacking the second information required for ownership authentication in the binding update message to register the CoA with the correspondent node and transmitting the binding update message having the second information to the correspondent node.
-
Citations
15 Claims
-
1. A method comprising:
-
producing a random number, encrypting the random number using a secret key shared by a home agent and a mobile node, piggybacking the encrypted random number in a binding acknowledge message, and transmitting the binding acknowledge message having the encrypted random number to the mobile node by the home agent upon the mobile node piggybacking a list of correspondent nodes requiring registration of a Care-of-Address (CoA) in a binding update message to register the CoA with the home agent and transmitting the binding update message having the list of correspondent nodes to the home agent;
obtaining public keys of the corresponding correspondent nodes based on the list of correspondent nodes, encrypting first information required for authentication of the mobile node using the public keys, piggybacking the encrypted first information in data to be tunneled to the correspondent nodes, and transmitting the data having the encrypted first information to the correspondent nodes by the home agent; and
decrypting the first information received from the home agent using a secret key of the correspondent node and comparing the first information received from the home agent with a second information received from the mobile node to authenticate ownership of the corresponding mobile node by the correspondent node upon the mobile node piggybacking the second information required for ownership authentication in the binding update message to register the CoA with the correspondent node and transmitting the binding update message having the second information to the correspondent node. - View Dependent Claims (2, 3, 4)
-
-
5. A method comprising:
-
piggybacking a list of correspondent nodes requiring registration of a Care-of-Address (CoA) in a binding update message transmitted to a home agent to register the CoA with the home agent and transmitting the list of correspondent nodes;
piggybacking information on a random number encrypted by a secret key shared by the home agent and a mobile node in a binding acknowledge message and receiving the piggybacked information from the home agent; and
requesting a correspondent node to perform authentication of the address ownership of the corresponding mobile node using a zero knowledge technique, the corresponding node piggybacking result values processing the CoA, the random number and the secret key by hash functions in the binding update message transmitted to the corresponding correspondent node to register the CoA with the correspondent node, transmitting the piggybacked result values, encrypting the result values processed by the hash functions, and receiving the encrypted result values from the home agent.
-
-
6. A method comprising:
-
receiving a list of correspondent nodes piggybacked in a binding update message for registering a care-of address (CoA) from the mobile node;
producing a random number, encrypting the random number by a secret key shared by a home agent and a mobile node, piggybacking the random number in a binding acknowledge message, and transmitting the binding acknowledge message having the random number to the mobile node; and
obtaining public keys of corresponding correspondent nodes based on the list of correspondent nodes and comparing the information received from the mobile node to authenticate ownership of the corresponding mobile node in the correspondent node, encrypting information required for authentication of the mobile node using the public keys, piggybacking the encrypted information in data tunneled to the correspondent nodes and transmitting the piggybacked information upon the mobile node piggybacking information required for ownership authentication in a binding update message to register the CoA with the correspondent node and transmitting the piggybacked information.
-
-
7. A method comprising:
-
transmitting a public key to a home agent upon the home agent of a mobile node requesting the public key from a correspondent node from while communicating with the mobile node;
decrypting encrypted result values using a secret key of the correspondent node upon result values processed by hash functions and encrypted by the public key being received together with data of the mobile node tunneled from the home agent of the mobile node;
receiving result values, processed by hash functions, piggybacked in a binding update message and transmitted from the mobile node communicating with the correspondent node; and
comparing the hash-function-processed result values received from the home agent to the hash-function-processed result values received from the mobile node to authenticate ownership of a corresponding Care-of Address (CoA) of the mobile node transmitting a binding update message containing the CoA.
-
-
8. A method comprising:
-
producing a random number, encrypting the random number by a secret key shared by the home agent and the mobile node, and transmitting the encrypted random number to the mobile node by a home agent upon a mobile node transmitting a list of correspondent nodes requiring registration of a Care-of Address (CoA);
obtaining public keys of corresponding correspondent nodes based on the list of correspondent nodes and encrypting a first information required for authentication of the mobile node using the public keys, and transmitting the encrypted first information to the correspondent nodes by the home agent; and
decrypting the first information received from the home agent by using a secret key of the correspondent node, and comparing the first information with a second information received from the mobile node to authenticate ownership of the corresponding mobile node by the correspondent node upon the mobile nodes transmitting the second information required for authentication of CoA ownership to the correspondent node. - View Dependent Claims (9, 10)
-
-
11. A method comprising:
-
transmitting a list of correspondent nodes requiring registration of a Care-of Address (CoA) to a home agent;
receiving information from the home agent on a random number encrypted by a secret key shared by the home agent and a mobile node; and
transmitting result values processing the CoA, the random number and the secret key by hash functions to the correspondent node and requesting the correspondent node to authenticate address ownership of the corresponding mobile node using a zero knowledge technique, the correspondent node encrypting the hash-function-processed result values and receiving the encrypted result values from the home agent.
-
-
12. A method comprising:
-
receiving a list of correspondent nodes requiring registration of a Care-of Address (CoA) from a mobile node;
producing a random number, encrypting the random number by a secret key shared by a home agent and the mobile node, and transmitting the encrypted random number to the mobile node; and
obtaining public keys of the corresponding correspondent nodes based on the list of correspondent nodes to facilitate the correspondent node comparing the information received from the mobile to authenticate ownership of the corresponding mobile node, encrypting information required for authentication of the mobile node using the public keys, and transmitting the encrypted information upon the mobile node transmitting information required for CoA ownership authentication to the correspondent node.
-
-
13. A method comprising:
-
transmitting a public key to a home agent upon a home agent of a mobile node requesting a public key from a correspondent node while communicating with the mobile node;
receiving result values processed by hash functions and encrypted by the public key from the home agent of the mobile node and decrypting the encrypted result values using a secret key of the correspondent node;
receiving result values processed by hash functions from the mobile node communicating with the correspondent node; and
comparing the hash-function-processed result values received from the home agent to the hash-function-processed result values received from the mobile node to authenticate ownership of a corresponding Care-of Address (CoA) of the mobile node upon a binding message containing the CoA being transmitted.
-
-
14. A system comprising:
-
a mobile node;
a home agent of the mobile node; and
at least one correspondent node adapted to communicate with the mobile node;
wherein the mobile node is adapted to piggyback a list of correspondent nodes requiring registration of a Care of Address (CoA) in a binding update message to register the CoA with a home agent and to transmit the binding update message having the list of correspondent nodes to the home agent;
wherein the home agent is adapted to produce a random number, to encrypt the random number using a secret key shared by the home agent and the mobile node, to piggyback the encrypted random number in a binding acknowledge message, and to transmit the binding acknowledge message having the encrypted random number to the mobile node;
wherein the home agent is adapted to obtain public keys of corresponding correspondent nodes based on the list of correspondent nodes, to encrypt first information required for authentication of the mobile node using the public keys, to piggyback the encrypted first information in data tunneled to the correspondent nodes, and to transmit the data having the encrypted first information to the correspondent nodes;
wherein the mobile node is adapted to piggyback second information required for ownership authentication in the binding update message to register the CoA with the correspondent node and to transmit the binding update message having the second information to the correspondent node; and
wherein the correspondent node is adapted to decrypt the first information received from the home agent using a secret key of the correspondent node and to compare the first information to the second information received from the mobile node to authenticate ownership of the corresponding mobile node.
-
-
15. A system comprising:
-
a mobile node;
a home agent of the mobile node; and
at least one correspondent node is adapted to communicate with the mobile node;
wherein the mobile node is adapted to transmit a list of the correspondent nodes requiring registration of a Care-of Address (CoA);
wherein the home agent is adapted to produce a random number and to encrypt the random number by a secret key shared by the home agent and the mobile node, and to transmit the encrypted random number to the mobile node;
wherein the home agent is adapted to obtain public keys of corresponding correspondent nodes based on the list of correspondent nodes and to encrypt first information required for authentication of the mobile node using the public keys, and to transmit the encrypted first information to the correspondent nodes;
wherein the mobile nodes is adapted to transmit second information required for authentication of CoA ownership to the correspondent node; and
wherein the correspondent node is adapted to decrypt the first information received from the home agent using a secret key of the correspondent node, and to compare the first information to the second information received from the mobile node to authenticate ownership of the corresponding mobile node.
-
Specification