METHOD FOR BINDING UPDATE IN MOBILE IPV6 AND MOBILE IPV6 COMMUNICATION SYSTEM

US 20090213797A1
Filed: 02/27/2009
Published: 08/27/2009
Est. Priority Date: 08/31/2006
Status: Abandoned Application

First Claim

Patent Images

1. A mobile node (MN) in an IPv6 communication system, comprising:

a first return routability unit, adapted to perform a return routability procedure (RRP) comprising obtaining keygen tokens from a correspondent node (CN);

a binding management key (Kbm) unit, adapted to calculate and generate the Kbm based on the keygen tokens; and

a first binding update (BU) unit, adapted to send a BU message to the CN by using a substitute of home address (SHoA) to replace a home address (HoA) of the MN, and carry the HoA encrypted with the Kbm in the BU message.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for binding update in the mobile IPv6 is provided. After a binding management key is obtained in a return routability procedure, a home address (HoA) in a binding update (BU) packet is sent in a form of an encrypted option. In the BU process, an HoA index may also be bound. A corresponding mobile IPv6 communication system and a mobile node (MN), a correspondent node (CN), and a home agent (HA) in the communication system are also provided. Thus, the HoA appears only once in an encrypted form in a packet sent to the CN in the BU process, thereby improving the security of the HoA in the BU process.

12 Citations

View as Search Results

19 Claims

1. A mobile node (MN) in an IPv6 communication system, comprising:
- a first return routability unit, adapted to perform a return routability procedure (RRP) comprising obtaining keygen tokens from a correspondent node (CN);
  
  a binding management key (Kbm) unit, adapted to calculate and generate the Kbm based on the keygen tokens; and
  
  a first binding update (BU) unit, adapted to send a BU message to the CN by using a substitute of home address (SHoA) to replace a home address (HoA) of the MN, and carry the HoA encrypted with the Kbm in the BU message.
- View Dependent Claims (2, 3, 4)
- - 2. The MN in an IPv6 communication system according to claim 1, further comprising an SHoA unit adapted to generate the SHoA according to a shared key with a home agent (HA) and a message containing a care-of address (CoA) of the MN, the HoA, an address of the CN, and/or an address of the HA.
  - 3. The MN in an IPv6 communication system according to claim 1, wherein the BU message further comprises an HoA index, and each HoA of the MN is corresponding to each value of the HoA index.
  - 4. The MN in an IPv6 communication system according to 1, wherein the BU message further comprises a sequence number;
    - andthe MN further comprises a first sequence number unit adapted to obtain a current sequence number by adding a previous sequence number and a current sequence number increment, and the current sequence number increment is calculated according to the Kbm and the previous sequence number or a previous sequence number increment.

5. A method for binding update in the mobile IPv6, comprising:
- sending, by a mobile node (MN), a binding update (BU) message to a correspondent node (CN) from a substitute of home address (SHoA), wherein the BU message carries a home address (HoA) encrypted with a binding management key (Kbm), and the Kbm is generated based on keygen tokens received from the CN in a return routability procedure (RRP); and
  
  binding, by the CN, the SHoA, the HoA, and a care-of address (CoA) according to the BU message.
- View Dependent Claims (6, 7, 8, 9, 10, 11, 12, 13, 14)
- - 6. The method for binding update in the mobile IPv6 according to claim 5, wherein the keygen tokens received from the CN comprise a home keygen token;
    - andthe return routability procedure (RRP) comprises;
      
      forwarding, by a home agent (HA), a Home Test Init (HoTI) message from the MN to the CN, and carrying the SHoA in a destination option extension header of the HoTI message;
      
      calculating, by the CN, the home keygen token according to the SHoA, returning a Home Test (HoT) message containing the home keygen token to the HA, and carrying the SHoA in a Type-2 routing header of the HoT message; and
      
      searching, by the HA, for the corresponding HoA of the MN according to the SHoA in the Type-2 routing header, and forwarding the HoT message to the MN in a tunnel mode.
  - 7. The method for binding update in the mobile IPv6 according to claim 6, wherein the keygen tokens received from the CN further comprise a care-of keygen token;
    - andthe RRP further comprises;
      
      sending, by the MN, a Care-of Test Init (CoTI) message to the CN, and obtaining a Care-of Test (CoT) message containing the care-of keygen token returned by the CN.
  - 8. The method for binding update in the mobile IPv6 according to claim 5, wherein when the BU message is sent, the BU message further comprises an HoA index, and each value of the HoA index is corresponding to each HoA of the MN;
    - the binding by the CN according to the BU message, further comprises that the CN binds the SHoA, the HoA, the HoA index, and the CoA according to the BU message.
  - 9. The method for binding update in the mobile IPv6 according to claim 8, wherein each value of the HoA index is a position mark or an array subscript of each HoA in an HoA list stored in the MN.
  - 10. The method for binding update in the mobile IPv6 according to claim 5, wherein the SHoA is calculated according to a shared key between the MN and the HA and a message containing the CoA, the HoA, an address of the CN, and/or an address of the HA.
  - 11. The method for binding update in the mobile IPv6 according to claim 10, wherein the SHoA is obtained according to an expression as follows:
    - SHoA=First (M,PRF(Kmh,Message1))wherein the SHoA is the substitute of home address of the MN, the Kmh is the shared key between the MN and the HA, the Message1 is the message containing the CoA and the HoA of the MN, the address of the CN, and/or the address of the HA, the PRF is a pseudo-random function, the First is a cut-off function, and the M is a natural number smaller than or equal to 128.
  - 12. The method for binding update in the mobile IPv6 according to 5, wherein the BU message further comprises a sequence number, the sequence number is a sum of a previous sequence number and a sequence number increment, and the sequence number increment is calculated according to the Kbm and the previous sequence number or a previous sequence number increment.
  - 13. The method for binding update in the mobile IPv6 according to claim 12, wherein the sequence number increment is obtained according to an expression as follows:
    - seq_increment=First(N,PRF(Kbm,Message2))wherein the seq_increment is the sequence number increment, the Kbm is the binding management key, the Message2 is a message containing the previous sequence number or the previous sequence number increment, the HoA and the CoA of the MN, and/or the address of the CN, the PRF is a pseudo-random function, the First is a cut-off function, and the N is a natural number.
  - 14. The method for binding update in the mobile IPv6 according to claim 13, wherein if the sequence number increment is 0, another sequence number increment is calculated according to an expression as follows:
    - seq_increment=First(N,Kbm XOR HoA)wherein the HoA is the home address of the MN, and the XOR is an Exclusive-OR function.

15. A mobile IPv6 communication system, comprising a mobile node (MN), a correspondent node (CN), and a home agent (HA), wherein,the MN is adapted to send a Care-of Test Init (CoTI) message to the CN, send a Home Test Init (HoTI) message to the HA, receive a Care-of Test (CoT) massage containing a care-of keygen token returned by the CN, receive a Home Test (HoT) message containing a home keygen token forwarded by the HA, generate a binding management key (Kbm) based on the home keygen token and the care-of keygen token, add an encrypted home address (HoA) option carrying an HoA encrypted with the Kbm in a BU message, and send the BU message from a substitute of home address (SHoA) which is used to replace the HoA;
- the HA is adapted to forward the HoTI message to the CN, with carrying the SHoA in a destination option extension header containing an SHoA option of the HoTI message, receive the HoT message sent by the CN, search for the corresponding HoA of the MN according to the SHoA in a Type-2 routing header of the HoT message, and forward the HoT message to the MN in a tunnel mode; and
  
  the CN is adapted to receive the HoTI message forwarded by the HA, replace the HoA with the SHoA to generate the home keygen token, return the HoT message containing the home keygen token to the HA, and carrying the SHoA in the Type-2 routing header of the HoT message, and bind the SHoA, the HoA, and a care-of address (CoA) according to the BU message.

16. A correspondent node (CN) in an IPv6 communication system, comprising:
- a second return routability unit, adapted to perform a return routability procedure (RRP) comprising returning keygen tokens to a mobile node (MN) in the RRP;
  
  a binding management key (Kbm) unit, adapted to calculate and generate the Kbm based on the keygen tokens; and
  
  a second binding update (BU) unit, adapted to obtain a home address (HoA) of the MN encrypted with the Kbm from a BU message sent by the MN, and bind a substitute of home address (SHoA) of the MN, the HoA of the MN, and a care-of address (CoA) of the MN.
- View Dependent Claims (17, 18, 19)
- - 17. The CN in an IPv6 communication system according to claim 16, wherein the key tokens comprise a home keygen token and a care-of keygen token, the care-of keygen token is generated by the second return routability unit according to the CoA of the MN and is sent to the MN in a Care-of Test (CoT) message in the RRP, and the home keygen token is generated by the second return routability unit according to the SHoA of the MN and is sent to the MN in a Home Test (HoT) message in the RRP.
  - 18. The CN in an IPv6 communication system according to claim 16, wherein the BU message further comprises an HoA index corresponding to the HoA of the MN;
    - andthe second BU unit comprises an address index module adapted to bind a value of the HoA index, the SHoA, the HoA, and the CoA.
  - 19. The CN in an IPv6 communication system according to 16, wherein the BU message further comprises a sequence number;
    - andthe CN further comprises a second sequence number unit adapted to obtain a current sequence number by adding a previous sequence number and a current sequence number increment, and the current sequence number increment is calculated according to the Kbm and the previous sequence number or a previous sequence number increment.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Huawei Technologies Co., Ltd. (Huawei Investment & Holding Co., Ltd.)
Original Assignee
Huawei Technologies Co., Ltd. (Huawei Investment & Holding Co., Ltd.)
Inventors
Li, Chunqiang

Application Number

US12/395,178
Publication Number

US 20090213797A1
Time in Patent Office

Days
Field of Search
US Class Current

370/328
CPC Class Codes

H04L 63/0414   during transmission, i.e. p...

H04L 63/061   for key exchange, e.g. in p...

H04W 12/02   Protecting privacy or anony...

H04W 12/04   Key management, e.g. using ...

H04W 12/75   Temporary identity

H04W 36/0011   for data sessions of end-to...

H04W 36/0019   adapted for mobile IP [MIP]

H04W 36/0038   of security context informa...

H04W 60/00   Affiliation to network, e.g...

H04W 8/04   Registration at HLR or HSS ...

H04W 8/26   Network addressing or numbe...

H04W 80/04   Network layer protocols, e....

H04W 80/045   involving different protoco...

METHOD FOR BINDING UPDATE IN MOBILE IPV6 AND MOBILE IPV6 COMMUNICATION SYSTEM

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

12 Citations

19 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD FOR BINDING UPDATE IN MOBILE IPV6 AND MOBILE IPV6 COMMUNICATION SYSTEM

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

12 Citations

19 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links