JP2009529266A - Mobile IPv6 optimized reverse tunneling for multihomed terminals - Google Patents

Abstract

The present invention relates to a method for packet-switched data transmission between a multi-homed mobile node and a correspondent node in a mobile communication system comprising a plurality of mobile networks. The method includes the step of selecting by the mobile node one of its home addresses used for communication with the correspondent node. The mobile node registers at least one of a plurality of addresses assigned to the target network interface as a care-of address with the home agent of the mobile node responsible for the selected home address. . The home agent of the correspondent node and the home agent of the mobile node receive and store candidate proxy home agent addresses. The home agent of the correspondent node sends a request to the correspondent node. The correspondent node registers at least one of a plurality of addresses assigned to the target network interface as a care-of address in the home agent of the correspondent node. At least one of the proxy home agent address, one of the care-of address of the mobile node, and one of the care-of address of the correspondent node are the home agent of the mobile node and the home of the correspondent node. To switch tunnels so that the two endpoints of the tunnel selected by both agents are one of the selected proxy home agent address and the care-of address of the selected mobile node The mobile node is triggered by the mobile node's home agent, and the correspondent node is triggered by the correspondent node's home agent.
[Selection] Figure 2

Description

  The present invention relates to a mobile communication system. More particularly, the present invention relates to location privacy and route optimization for mobile communications based on the Mobile Internet Protocol (Mobile IP) or similar protocol.

  The present invention will be described with reference to the Mobile Internet Protocol version 6 (Mobile IPv6) example. However, the present invention is also applicable to other protocols that define equivalent entities corresponding to the described Mobile IP entities.

  Mobile IPv6 currently defines two modes of operation: bidirectional tunneling and route optimization. In the former mode, all data packets need to be routed through the home agent of the sending mobile node, whereas the latter uses a direct path between the mobile node and the correspondent node.

  When a mobile node (MN) moves between subnets, its IP address must be changed to a topologically correct one. The reason is due to the hierarchical routing structure of the Internet, i.e. the IP address not only serves for identification purposes but also contains location information. However, since the connection in the upper layer such as TCP is defined by the IP address (and port) of the communication node, for example, when one of the nodes changes its IP address due to movement, this connection is disconnected. The

  Mobile IPv6 (D. Johnson, C. Perkins, J. Arkko, “Mobility Support in IPv6”, IETF RFC 3775, June 2004) is a mobile node (MN) that is transparent to the upper layer, that is, upper layer connection Layer 3 mobility protocol that allows movement between subnets without disconnecting. Therefore, the MN uses two IP addresses, a care-of address (CoA) and a home address (HoA). The upper layer of the MN uses HoA for communication with the correspondent node (CN). This address is not changed and serves to identify the MN. Topologically, this address belongs to the home network (HN) of the MN. In contrast, the CoA changes with every move that results in a subnet change and is used as a locator for the routing infrastructure. Topologically, this belongs to the network that the MN is currently visiting. One of the set of home agents (HA) located on the home link maintains a mapping of the MN's CoA to the MN's HoA and redirects incoming traffic for the MN to its current location. Instead of a single HA, a set of HAs can be used for redundancy and load balancing.

  Mobile IPv6 currently defines two modes of operation: bidirectional tunneling and route optimization. If bi-directional tunneling is used, data packets sent by the CN and addressed to the MN's HoA are intercepted by the HA in the home network and tunneled to the MN's CoA. Data packets sent by the MN are reverse-tunneled to the HA that decapsulates the packets and sends them to the CN. For this operation, the MN's CoA must be notified only to the HA. Therefore, the MN sends a binding update (BU) message to the HA. These messages are sent and authenticated via an IPsec security relationship. Since the CN does not recognize the MN's CoA, it cannot derive the location of the MN and is given location privacy. However, if the MN is far away from the home network and the CN is close to the MN, the communication path becomes unnecessarily long, resulting in inefficient routing and large packet delay.

  Note that different types of location privacy can be distinguished. One goal of the present invention is to hide the location of MN (and hence CoA) from CN. Another type is to hide the location from the eavesdropper or prevent tracking of the location of the MN.

  The route optimization mode can prevent the above-described inefficiency by using a direct path between the CN and the MN. Thus, the MN sends a BU message to the CN, which can then tunnel the packet directly to the MN (actually a type 2 routing header is used rather than an IP-in-IP tunnel). Of course, the CN must support mobile IPv6 route optimization. In order to authenticate the BU message, the MN and CN perform a so-called return routability procedure that tests the reachability of the MN with the HoA and CoA and generates a shared session key. However, since CN learns the MN's CoA using the BU message, its location can be derived, i.e., location privacy is not given.

  Because interactive applications such as VoIP require low packet delay, a mechanism that provides both location privacy and route optimization is definitely desirable. Various approaches can be used to achieve this goal, some of which are designed for other purposes. However, they all introduce new infrastructure components (or require changes to existing components) in the visited network. If the currently visited network does not provide such components, location privacy and route optimization are disabled, meaning that privacy-protected interactive communication may not be possible. This global placement of new components may take a long time or even never be implemented in each access network. Other solutions only provide one-way location privacy, i.e. if both communication partners are mobile, the location information is only revealed to at least one node. Some other solutions have scalability issues when deployed on a large scale. A solution that does not require the introduction of new or modified components in the visited network, works even when both communication partners are mobile, and is scalable with respect to deployment is desirable. The present invention describes such a solution.

  Techniques for introducing new infrastructure components include Hierarchical Mobile IPv6 (HMIP), Access Router Encapsulation Cache (AREC), Optimized Route Cache (ORC), Global • Home Agent to Home Agent Protocol (GlobalHAHA), WO03031358, WO2004010668, and US2005041675. These methods are briefly described below.

  HMIP (Hesham Soliman, Claud Catcelluccia, Karim El Malki, Ludovic Bellier, “Herarchical Mobile IPv6 mobility management (HMIPv6)”, IETF i. Developed to reduce latency and signaling overhead caused by BU messages sent to the HA (remotely). Therefore, local mobility processing is proposed by introducing a hierarchy of mobility anchor points (MAPs) in the visited network. The MN only needs to register its CoA with the local MAP. An additional CoA, the so-called region CoA (RCoA), is obtained from the MAP subnet and is used by the MAP to hide the mobility of the MN within the MAP region from the HA (or CN for route optimization). Since the HA or CN still knows the RCoA, full location privacy support is not given. However, since the geographical area derivable from RCoA is larger than the area derivable from actual CoA, this can be considered as limited location privacy support.

  AREC (WO 2004055533) (G. Krishnamurthi, H. Chaskar, R. Siren, “Providing End-to-End Location Privacy in IP-based Mobile Communication”, IEEE WCNC, 2004, Visited WCNC, 2004 Requires modification at the access router (AR). Assuming that binding information is provided to the CN and MN's current AR, respectively, data packets can be tunneled between both ARs without the involvement of the HA, CN or MN. In this way, the direct or shortest route is used between the MN and the CN to support location privacy. A very similar approach is presented in WO2004010668.

  ORC (Ryuji Wakikawa, “Optimized Route Cache Protocol (ORC)”, Internet Draft draft-wakikawa-nemo-orc-01.txt, October 2004 for development in mobile network (NEMO) And requires modification to the edge routers of the visited network, including providing binding information. MN tunnels data packet to edge router of CN's current network (assuming CN is mobile), CN tunnels data packet to edge router of MN's current visited network can do. In order to allow tunneling of packets to the edge router, each node needs to know the IP address of the corresponding edge router, which again reveals location information about the corresponding MN.

  Global HAHA (P.Thubert, R. Wakikawa, V. Devapalli, “Global HA to HA protocol”, IETF Internet Draft draft-thumb-a-200 Distributing the HA in the Internet, usually bound to the home link, by letting it know the route from the topological location to the home network prefix. The MN can bind to the closest HA that acts as a proxy HA, resulting in an optimized route. Location privacy is provided when bi-directional tunneling is used. However, if every visited network advertises routes to all other networks (all that are home networks for some MNs), there is no further routing hierarchy, because no more address hierarchies are given. It can happen. In addition, distributed home networks must be configured manually as well. Secure on-demand configuration is not supported.

  In WO03031358, a so-called location privacy agent (LPA) and location privacy server (LPS) are introduced in every network. The MN sends a location privacy request message to its LPA, which then selects an LPA that is close to the CN. This LPA's address is then given to the MN, which then sends a BU message to this LPA. Therefore, this approach is similar to the ORC approach, since the LPA is close to the CN's network, the location of the CN is known to some extent, and if the CN is a mobile, location privacy support is interrupted.

  In US2005041675 and WO2004043010, location privacy is achieved by a cryptographically modified prefix of the IP address. Since prefixes are typically used by routers to route IP packets, this approach requires modification of all routers in the Internet.

  In WO03044626, a multicast address is used as CoA. Since they do not contain any location information, location privacy support is provided even in route optimization mode. However, this solution does not scale with the number of MNs because large routing results in flat routing in the Internet.

  If the MN is multihomed, it can have multiple network interfaces, HoA, HA, and CoA. Multiple paths across different network interfaces may exist between MN and CN (see FIG. 14). For optimal system performance, the best of all available interfaces and paths should be selected and used for route optimized communication. The “best path” can be, for example, the shortest path or the path with the minimum delay. This path selection and setup is the main problem to be solved. Since there is no single central entity to decide on the path to be used (MNs and CNs can register with different administrative domains, for example, which can have different roaming agreements) Must be implemented in a distributed manner.

Finding the best among multiple paths between two nodes in a network can be viewed as a classic problem in networking. Distributed routing protocols such as RIP (Routing Information Protocol) or OSPF (Open Shortest Path First) are used to find the shortest path in the Internet domain. However, those protocols cannot be applied to systems under development for several reasons:
The network is an overlay network where the network node is Mobile IPv6 and the HA and host are multihomed Mobile IPv6 MNs. The link is a multi-hop (ie overlay) link. The cost of the link is partial. In order to preserve location privacy, CNs and MNs must not know the distance to other MNs and their (topologically correct) addresses. This solution is efficient and ORT And compatible with the Mobile IPv6 protocol. This suggests that only minor changes are made to these protocols.

Another issue to consider is that the home links are distributable, ie multiple HAs on different links manage bindings for the same multihomed host, which bindings have the same HoA, CoA is different. This is not supported by Mobile IPv6 (MIPv6), but there are extensions such as (HAHA) that support this case.
WO03041358 WO2004010668 US2005041675 WO2004055993 WO2004043010 WO03044626 D. Johnson, C.I. Perkins, J.M. Arkko, “Mobility Support in IPv6”, IETF RFC 3775, June 2004 Hesham Soliman, Claud Cataluccicia, Karim El Maker, Ludobi Bellier, “Herarchical Mobile IPv6 mobility management (HMIPv6)”, IETF Internet. txt, December 2004 G. Krishnamurthi, H .; Chaskar, R.A. Siren, “Providing End-to-End Location Privacy in IP-based Mobile Communication”, IEEE WCNC, March 2004 Ryuji Wakikawa, “Optimized Route Cache Protocol (ORC)”, Internet Draft draft-wakikawa-nemo-orc-01. txt, October 2004 P. Thubert, R.A. Wakikawa, V.A. Devapalli, “Global HA to HA protocol”, IETF Internet Draft draft-hubert-nemo-global-haha-00, October 2004. Aura, T .; , “Cryptographically Generated Addresses (CGA)”, Internet-Draft draft-ietf-send-cga-06, April 2004. J. et al. Arkko, J. et al. Kempf, B.M. Somerfeld, B.M. Zill, P.A. Nikander, “SECure Neighbor Discovery (SEND)”, IETF Internet Draft draft-ietf-send-ndopt-06, July 2004 M.M. Liebsch, A.M. Singh, H .; Chaskar, D.C. Funato, E .; Shim, “Candidate Access Router Discovery”, IETF Internet Draft draft-ietf-samoby-card-protocol-08. txt, September 2004 Nikander, P.A. , "Mobile IP version 6 Route Optimization Security Design Background", October 2004

  The object of the present invention is to provide location privacy and route optimization for packet switched protocols such as Mobile IPv6 without requiring the introduction of new or modified infrastructure components in every visited network. It is. This solution shall also work when both communication partners are mobile and shall be scalable with respect to deployment, ie the number of MNs using this solution. It is also assumed that the same level of security as that of standard mobile IPv6 is provided, and that it can be applied to multi-home terminals.

  These objects are solved by the subject matter of the independent claims. Advantageous embodiments of the invention are the subject matter for the dependent claims.

  To achieve these objectives, the present invention provides a method, system, and method for packet-switched data transmission between a multi-homed mobile node and a correspondent node in a mobile communication system comprising a plurality of mobile networks. An apparatus and a computer readable medium are provided. The mobile node selects one of its home addresses used to communicate with the correspondent node, and selects at least one of a plurality of addresses assigned to the target network interface. Register as a care-of address with the home agent of the mobile node that is responsible for the given home address. The home agent of the correspondent node and the home agent of the mobile node receive and store candidate proxy home agent addresses. The home agent of the correspondent node sends a request to the correspondent node. The correspondent node registers at least one of a plurality of addresses assigned to the target network interface as a care-of address in the home agent of the correspondent node. Next, the home agent of the mobile node and the home agent of the correspondent node are at least one of the stored proxy home agent addresses, one of the care-of addresses of the mobile node, and the correspondent node Select one of the care-of addresses. The mobile node's home agent switches the tunnel so that the two end points of the tunnel are one of the selected proxy home agent address and the care-of address of the selected mobile node. Trigger the mobile node to The home agent of the correspondent node switches the tunnel so that the two end points of the tunnel are one of the selected proxy home agent address and the care-of address of the selected mobile node. Trigger the correspondent node.

  In an advantageous embodiment, the request is an optimized reverse tunneling start request.

  In another embodiment, the address of the candidate proxy home agent stored at the mobile node is transmitted to the home agent of the mobile node and the home agent of the correspondent node; and stored at the correspondent node. Transmitting the address of the proxy home agent as a candidate to the home agent of the mobile node and the home agent of the correspondent node, and the correspondent node is assigned to the target network interface. This is executed before registering at least one of the addresses as a care-of address with the home agent of the correspondent node.

  In an advantageous embodiment, the step of sending the address of the candidate proxy home agent stored at the mobile node to the home agent of the mobile node and the home agent of the correspondent node is a candidate proxy home. Sending an optimized reverse tunneling start request including the agent's address by the mobile node to its home agent; and receiving an optimized reverse tunneling start request by the mobile node's home agent A proxy home agent address of the mobile node, a home agent of the mobile node that finds a home agent that manages the binding for the home address of the correspondent node, The node's home agent sends an optimized reverse tunneling request to the partner node's home agent where it was found, and proposes a candidate proxy home agent address to the node's home agent. Including.

  In another advantageous embodiment, the step of sending the address of the candidate proxy home agent stored at the correspondent node to the home agent of the mobile node and the home agent of the correspondent node is a candidate. Sending an optimized reverse tunneling start response containing the address of the proxy home agent to its home agent by the correspondent node and receiving an optimized reverse tunneling start response by the correspondent node home agent The candidate proxy home agent address is stored, and the home node of the correspondent node sends an optimized reverse tunneling response to the home agent of the mobile node. And a step of proposing a home agent address to the home agent of the mobile node.

  In a variation of the previous embodiment, the step of sending the address of the candidate proxy home agent stored at the mobile node to the home agent of the mobile node and the home agent of the correspondent node is a candidate. Sending a proxy home agent address by the mobile node to the home agent; receiving and storing a candidate proxy home agent address by the mobile node home agent; and The step of finding the home agent that manages the binding related to the home address of the partner node by the mobile node, and the home agent of the correspondent node that has found the optimized reverse tunneling request by the mobile node Sent to preparative, and a step of proposing a proxy home agent addresses that are candidates to the home agent of the correspondent node.

  In another advantageous embodiment, the step of sending the address of the candidate proxy home agent stored at the correspondent node to the home agent of the mobile node and the home agent of the correspondent node is a candidate. Transmitting the address of the proxy home agent by the correspondent node to the home agent; receiving and storing candidate proxy home agent addresses by the home agent of the correspondent node; , Finding a home agent that manages the binding for the mobile node's home address by the correspondent node, and the correspondent node to send an optimized reverse tunneling response to the mobile node's home agent. And Shin, comprising the steps of a known home agent as a proxy home agent addresses that are candidates to propose a home agent of the mobile node.

  In another advantageous embodiment of the invention, at least one of the stored proxy home agent addresses, one of the mobile node's care-of address, and the mobile node's home agent and correspondent node The step of selecting one of the care-of addresses of correspondent nodes at both of the home agents is performed to find the shortest path.

  In a variation on the above, at least one of the stored proxy home agent addresses, one of the mobile node's care-of address, and the home agent of the mobile node and the home agent of the correspondent node. The step of selecting one of the care-of addresses of the correspondent nodes at both is performed to select the path with the least delay.

  In another advantageous embodiment, one of the correspondent node's home addresses is selected before the correspondent node's home agent sends a request to the correspondent node.

  In another advantageous embodiment, the mobile node's home agent rejects untrusted proxy home agents.

  In another advantageous embodiment, the correspondent node's home agent rejects untrusted proxy home agents.

  Another embodiment of the invention is assigned to a selection means adapted to select one of the home addresses used for communicating with the correspondent node and to the target network interface. A mobile node comprising storage means adapted to register at least one of a plurality of addresses as a care-of address with a home agent of a mobile node responsible for a selected home address.

  Another embodiment of the invention comprises a transmission means adapted to send a start request to a correspondent node, a receiving means adapted to receive a home agent address that is a proxy candidate, and a proxy candidate Storage means adapted to store the home agent address to be, at least one of the proxy home agent address, one of the mobile node's care-of address, and the correspondent node's care-of The selection means adapted to select one of the addresses, and the two end points of the tunnel are one of the selected proxy home agent address and the care-of address of the correspondent node Trigger means adapted to trigger the correspondent node to switch tunnels About the home agent of the correspondent node to obtain.

  Another embodiment of the present invention is a storage adapted to register at least one of a plurality of addresses assigned to a target network interface with a home agent of a correspondent node as a care-of address. The present invention relates to a communication partner node having means.

  Another embodiment of the invention selects at least one of the proxy home agent address, one of the mobile node's care-of address, and one of the correspondent nodes' care-of address. And a mobile node to switch the tunnel so that the two end points of the tunnel are one of the selected proxy home agent address and the care-of address of the correspondent node. A mobile node home agent comprising trigger means adapted to trigger

  In another advantageous embodiment, the mobile node, the correspondent node's home agent, the correspondent node, and the mobile node's home agent comprise a computer readable medium having instructions stored thereon.

  The accompanying drawings are incorporated into and form a part of the specification to illustrate the principles of the invention. This drawing should not be construed to limit the invention to the examples shown and described as to how the invention can be made and used. Other features and advantages illustrated in the accompanying drawings will become apparent from the following more specific description of the invention.

  Exemplary embodiments of the invention are described with reference to the drawings, in which like elements and structures are indicated with like reference numerals.

  Optimized reverse tunneling (ORT), first, involves several initial steps between MN or MN HA and CN or CN HA to negotiate MN and CN privacy and route optimization requirements. Requires signaling. Based on this signaling and additional distance information, candidate scenarios and subsequent candidate proxy HAs are determined. After the route length through each candidate proxy HA is determined, it is determined whether the proxy HA tunnel is switched and which proxy HA tunnel is switched to. Binding information is then sent and the tunnel is switched to the selected target proxy HA. Due to mobility, the route length is dynamic and the process must be repeated at specific temporal instances.

  In the following, individual procedures, ie negotiation of requirements and candidate scenarios, discovery of candidate proxy HAs, determination of target proxy HA based on distance information / route length, secure binding information in target proxy HA Establishment and tunnel switching will be described. The procedure can be realized by either MN control or HA control. Finally, how the route can be adapted when mobility exists is described.

  It is assumed that the HA is assigned to the CN either by the CN being mobile or by registering with the HA to support ORT even if the CN is at home. Otherwise, the ORT is rejected during the initial negotiation phase.

Negotiation of requirements and candidate scenarios The starting scenario is always standard Mobile IP in bidirectional tunneling mode. FIGS. 1 and 4 show the data path in this mode between the MN 101 and the CN 102, both in the external networks 107 and 108. FIG. The MN reverse tunnels all data packets addressed to CN's HoA to its HA 103 and decapsulates and forwards them. The routing infrastructure routes the packets to CN's home network 106 where CN's HA (CHA) 104 intercepts them and tunnels to CN's CoA. Data packets in the other direction are processed accordingly.

  1 and 4 show the same routing configuration for different distances between the respective networks. In FIG. 1, the home network 105 from the MN visit network 107 is closer than the CN visit network 108 to the CN home network 106. In FIG. 4, both MN and CN are closer to each other than to their home networks. It should also be noted that the visited network may be identical to the home network in special cases. If this is the case for one MN, the situation is as shown in FIG. If both MN and CN are in their home networks, ORT cannot provide shorter routing than traditional Mobile IP routing. However, for location privacy purposes, at least from the MN and CN perspective, the entire routing procedure must be the same in all cases.

If the MN or HA requests an ORT, the process begins with route optimization and negotiation of privacy requirements. The former can, for example, specify the maximum route length in hops, and the latter can specify whether privacy is required and what kind of privacy is required (the location of the MN). Hide to CN or eavesdropper or prevent location tracking). Based on this information and the additional distance information, the CN and MN's original HA selects a scenario that is a candidate for route optimization. Without limiting the overall concept to these scenarios, consider the following scenarios for different proxy HA locations:
a) Two unidirectional tunneling proxies HA 103 and 104 located in the home networks 105 and 106 of the MN 101 and CN 102, respectively (see FIG. 2)
b) One bidirectional tunneling proxy HA 103 or 104 (see FIG. 3) located in the home network 105 or 106 of the MN 101 or CN 102, respectively.
c) Two bi-directional tunneling proxies HA 501 and 502 (see FIG. 5) located in the current visited networks 107 and 108 of MN 101 and CN 102, respectively.
d) One common bidirectional tunneling proxy HA 601 in the current visited network 107 or 108 of the MN 101 or CN 102, respectively (see FIG. 6)
e) One common bidirectional tunneling proxy HA 701 in the network 702 between the MN 101 and the CN 102 (see FIG. 7)

  Scenarios a) and b) are most advantageously applicable in distance situations as shown in FIG. In the situation as shown in FIG. 4, scenarios c), d), and e) may lead to shorter routes.

  An ordered list of candidate scenarios can be constructed based on distance information and other information. The following principle can be used to select a target scenario. Scenarios a) and b) may not achieve optimal route length if both MN and CN are far from home. If scenarios a) and b) do not achieve the desired degree of route optimization, scenarios c) and d) can be considered. However, they can only be used if the visiting network supports this solution. Scenario d) is a privacy requirement because one of the nodes (a node with a common proxy in the network) knows the prefix of this network from the tunneled packet received by the other node. It can be used only when it does not have. Scenario e) can only be used if both visiting networks do not support ORT and both MN and CN have privacy requirements. However, the problem is to determine the network between visited networks that can provide a proxy HA.

  Note that scenarios b), d), and e) may not achieve full location privacy if the MN and CN know that the respective scenario is currently active. For example, in FIG. 3, CN 102 has some location information about MN 101, and CN knows that the path through MN's HA 103 must be shorter than the path through CN's HA 104, and MN's HA and Know the distance of CN to HA. It can therefore be concluded whether the MN is closer to the MN's HA or the CN's HA. The solution is either that both the MN and the CN must not know which scenario is currently active, or an additional proxy HA on the path must be used as a relay.

  Note also that a mobility anchor point (MAP) in a network that supports HMIP can place a proxy HA in the same location.

  Examples of initial negotiation in the modified examples of HA control and MN control are shown in FIGS. 8 and 9, respectively.

  In either case, security relationships 801 and 802 already exist between each mobile node and its HA.

  In the HA control variant shown in FIG. 8, the MN 101 can optionally send an ORT initialization request 803 to the HA. This request comprises the home address of the MN and CN. The MN's HA 103 then sends both the mobile node's home address with the MN's privacy and route optimization (ie, maximum route length) requirements, the MN's HA identifier, such as an IP address, and the HA in its network. To the CN's HA 104 with a signed ORT request 804 with authorization credentials to prove that it is authorized to act as CN. Upon receiving this request, CN's HA 104 optionally sends an ORT initialization request 805 to CN 102 and receives an ORT initialization response 806 including a status code from CN 102. The CN's HA 104 then returns an ORT response 807 to the request 804 to the MN's HA 103. This response is also signed and comprises CN privacy and route optimization requirements, along with CN HA 104 identifier and authorization credentials. When the MN transmits the ORT initialization request 803, the response 808 including the status code is received from the HA 103 next. If the security relationship 810 does not exist between both HA 103 and 104, it is established at step 809 using, for example, Internet Key Exchange (IKE) and the private and public keys of both entities. Some kind of security relationship 110 is required for the integrity protection exchange of binding update information between both HAs in step 811. This can also be achieved by directly signing the BU message with the corresponding public key. Next, each HA 103, 104 determines the distance to each other HA, as well as the distance to both MN 101 and CN 102, in steps 812 and 813, and in 814 and 815, the results are sent to the other HA, respectively. Report. This information is used in step 816 to determine a scenario that is a candidate for HA.

  In the variant of MN control in FIG. 9, an ORT request 901 that includes the home addresses of both mobile nodes is mandatory. This is reverse tunneled through the MN's HA to the CN's HA. The CN's HA 104 and CN 102 may exchange an ORT initialization request 805 and optionally a response 806 thereto. In either case, CN's HA 104 then returns to MN 101 a response 902 to ORT request 901 that includes CN's HA 104 identifier, authorization credentials, and status information as to whether the request has been accepted. If this request is accepted, the HA 104 of the MN 101 and CN executes a return routability procedure 903. Thereafter, a security relationship 904 exists between the MN 101 and the CN's HA 104. The MN sends privacy and route optimization requirements 905 and BU information 906 to the CN's HA. For the routing of data packets from the CN to the MN's HA, steps 907 to 912 that are symmetrical to steps 901 to 906 are performed. For MN control, MN 101 and CN 102 determine the routing distance to both HAs 103 and 104 at steps 913 and 914, respectively, and report this information to both HAs at steps 915-918. This information is used at step 816 to determine candidate scenarios in the HA.

Discovery of candidate proxy HAs After candidate scenarios are determined, candidate proxy HAs are discovered. First, you must know these HA prefixes. In scenarios a) and b), the prefix can be derived from the MN and CN's HoA, and in scenarios c) and d) it can be derived from the MN and CN's CoA. In scenario e), it is more difficult to determine the prefix. One option is to trigger a traceroute procedure between the HA in the MN and the CN's visited network to discover the intermediate network prefix. Another option is to construct a list of candidate proxy HA prefixes within each HA and find a suitable candidate from this list. Since this requires a significant amount of signaling and has a high probability of not succeeding, scenario e) should be used only when all other scenarios are not applicable.

  If the prefix is known, the IP address of a specific candidate proxy HA must be determined. In the special case where the prefix matches the current visited network, the proxy HA can be discovered by local means, for example using information contained in router advertisement (RA) messages. Other methods can use DNS, but since this requires all HA addresses, their prefixes are stored in the DNS. Currently this is not the case. Another option is to use a modified version of Dynamic Home Agent Address Discovery (DHAAD) described in RFC 3775, which uses anycasting. Note that if multiple HAs exist on a link, a specific HA must be found on that link that is currently the destination of the tunnel for the specific MN or CN. In scenarios a) and b), this can be achieved, for example, by sending a request message to the CN's HoA and allowing the CN's HA request to be intercepted.

Selection of Target Proxy HA After a candidate proxy HA is determined, a specific target proxy HA must be selected. This can be done based on distance information, for example, when changing from a scenario with two proxies to a scenario with one proxy, and the one that provides the shorter route is selected . Thus, when pHA1 and pHA2 are candidate proxy HAs, the distances MN <-> pHA1, CN <-> pHA1, MN <-> pHA2, and CN <-> pHA2 are determined by MN, CN, and HA. Measured. The distance can be expressed in number of hops, but can also be defined by other metrics such as packet delay. The number of hops can be passively derived from a hop limit field in the IP header of a signaling message or tunneled data packet, or can be actively measured by sending a probe message. In the case of a passive approach, for example, as a new mobility option, the initial hop limit value used by the sender may be unknown to the receiver, so this value needs to be included in the message There is. The probe message can be sent by the MN and / or HA. However, it must be taken into account that this distance should not be obvious to the MN, since the distance involved in the CN allows the MN to derive some CN location. The MN and CN (original) HAs collect all distance information and determine which pHA provides the shorter route, but (MN <-> pHA1) + (pHA1 <-> CN) <(MN In the case of <-> pHA2) + (pHA2 <-> CN), pHA1 is preferred for route optimization, and pHA2 is preferred otherwise. The distance information can also be cached in the HA to save signaling work in future ORT sessions of other nodes.

  An example of a signaling flow for collecting distance information is shown in the initial negotiation flow of FIGS. 8 and 9 and described above.

Establishing binding information in the target proxy HA Once the address of the target proxy HA is known, the binding update (BU) message is sent to this address by the MN in the MN control variant or by the HA in the HA control variant. Can be sent. Note that after receiving the binding information, the proxy HA does not send a proxy neighbor notification for the MN. The proxy function only describes tunneling instead of the MN's original HA.

  In order to transmit the binding information securely, various problems must be considered. First, it is necessary to prevent a malicious node from injecting a route to the Internet router (here, the proxy HA). Otherwise, this node may redirect the traffic to other malicious nodes, for example, to analyze or tamper with the traffic and send it back to the victim. An attacker, for example, has a low-bandwidth Internet connection and may redirect traffic to a victim who cannot handle a large amount of traffic.

  To prevent this, the BU sender must authenticate with the proxy HA, and in the case of the MN controlled variant, it must prove that it actually owns the claimed HoA. Additional reachability tests can be performed to check if the MN actually owns the claimed CoA. Authentication and sender address ownership proof can be achieved by public / private key and ID certificate, where the ID certificate binds the public key to the sender address and the BU is signed using the private key. An alternative to ID proof is Cryptographically Generated Addresses (CGA) (Aura, T., “Cryptographically Generated Addresses (CGA)”, Internet-Draft Draft-Draft-Draft-Draft0-Fraction-Draft-Draft-Draft0 , April 2004). Since the CGA only authenticates the HoA interface identifier, additional reachability tests should be performed to prove that the address prefix is correct. Since the allocation of keys and certificates requires a large amount of management work that increases with the number of allocations, this approach should only be applied to the HA control variant. In this case, the key and certificate need only be allocated to the HA, not to all MNs.

  For the MN controlled variant, CoA and HoA checks and BU message authentication can be achieved by utilizing the return routability procedure used in the route optimization mode described in RFC3775. However, it is well known that the return routability procedure in RFC 3775 is not resistant to attackers who can eavesdrop on both MN-CN and MN-HA-CN paths. In RFC3775, the path between MN and HA is protected by IPSec SA. Therefore, only the path between HA and CN is important. In addition, the attacker is usually at the edge of the network because the routing infrastructure is well secured by the network operator. Therefore, the important point for the attacker is the connection point of CN. Since the route is not only entered into the host (eg CN) but also into the Internet router (here, the proxy HA), this problem is particularly problematic in the present invention to give the attacker more options. Fortunately, in contrast to RFC 3775, the procedure in the present invention is not performed between the MN and the proxy HA, usually located in the network or routing infrastructure, rather than between the MN and the CN. The Therefore, return routability procedures targeting proxy HA (as implemented in the present invention) are more secure than targeting CN (as implemented in RFC3775). It is regarded.

  Another challenge is that it should not be possible for a MN to successfully masquerade as a proxy HA to find another MN's CoA (and its location). For this reason, the receiver of the BU message must prove that it is a valid (proxy) HA of the network operator. This can be accomplished using authorization credentials issued by the network operator. Such proofs are (J. Arkko, J. Kempf, B. Somerfeld, B. Zill, P. Nikander, “SECure Neighbor Discovery (SEND)”, IETF Internet Draft Draft-det-det-6-dend-6-dent-det-6-send-det-6-sent-4 Month) or (M. Liebsch, A. Singh, H. Chaskar, D. Funato, E. Shim, "Candidate Access Router Discovery", IETF Internet Draft draft-ietf-samobi-card-ro. (September). Two certificates, an authorization and an ID certificate, allow the HA to act as the HA for the network operator and bind the public key to the HA address. In order to secure the exchange of BU information in a variant of HA control using a public key, an IPsec security relationship between HAs can be initialized. Instead of establishing an IPsec security relationship, the signaling message can also be signed directly using a private key.

  These messages can prevent attack limitations by adding a nonce and / or timestamp to the ORT request / response message only then. DoS attacks that exhaust resources are another security issue. To prevent memory exhaustion, no state should be established in the HA before proving that the initiator of the ORT is authenticated. In a variant of HA control, the ORT request is signed and includes a proof that can provide this evidence. In a variant of MN control, the ORT request does not establish a state in the HA. The state is established only after a return routability procedure that provides this evidence. However, the verification of the proof and the signature of the public key require a large amount of CPU resources, which may be used for attacks that exhaust the CPU. In the MN control variant, this attack only affects the HA in the HA control variant, since the MN only needs to verify the proof after sending the request message. It is possible to take a measure of first checking whether the target address is the address of the CN managed by the receiving side HA when the ORT request is received. If this is not the case, the request can be rejected without checking the proof. In this method, the attacker must first have some knowledge of the victim's binding cache. The ORT response message shall be processed only if the corresponding request (indicated by the serial number) with a valid certificate has been sent beforehand. Another measure is to set a limit on the amount of resources that the recipient of the ORT request message uses for verification. This technique is also used as a countermeasure against a similar attack on the Mobile IPv6 route optimization mode (“Unnecessary Binding Update Attack”) (Nikander, P., “Mobile IP version 6 Route Optimization Design Background Backround”, (See October 2004).

  Reflex attacks utilizing amplification are prevented by ensuring that the response / acknowledgement is always responded with a single packet of approximately the same or small size and sent to the requesting sender's address.

  It is noted that any signaling message sent between the MN and the proxy HA, for example, the moved BU message, should be authenticated and sent using a previously established security relationship. I want. In the MN control variant, the MN and the proxy HA have a direct security relationship, but this is not the case in the HA control variant. Thus, all signaling messages must go through the MN's original HA to the current proxy HA. If the MN moves, it still sends the BU to its original HA. In a variant of HA control, the original HA then forwards the BU to the proxy HA. In a variant of MN control, the MN itself sends a BU to both its original and its proxy HA.

  Examples of signaling flows for achieving scenarios c) -e) with variations of HA control and MN control are shown in FIGS. If the target scenario is a) or b), the binding information has already been sent to the proxy HA during the initial negotiation.

Switching between the tunnel end point and the target proxy HA After the binding information is established in the target proxy HA, switch the tunnel end point to this target proxy for path optimization be able to. Since an individual IP-in-IP tunnel is always unidirectional, it has an entry point or source and an exit point or destination. Establishing or deleting an IP-in-IP tunnel typically requires only action at the tunnel entry point. However, the egress point should be notified because the source of the tunneled packet can be compared with the expected tunnel entry point. The general mechanism for IPv6 tunneling is specified in RFC 2473.

Two types of tunnel switching can be distinguished:
1) Tunnel source is moved from one proxy HA to the other 2) Tunnel destination is moved from one proxy HA to the other

  A tunnel establishment request message is sent to the new source of the tunnel, and a tunnel delete request message is sent to the current source of the tunnel. Further, the tunnel switch notification message is transmitted to the new tunnel destination. All tunnel request messages include the address of the corresponding end point of the tunnel. Usually, the proxy HA is the source of the tunnel of one node and the destination of the tunnel of the other node. If possible, messages can be aggregated with other messages. To prevent packet loss across the MN-CN path, every tunnel switch (eg, MN-pHA) should be synchronized with the correspondent node tunnel switch (eg, pHA-CN). Therefore, every request / notification message must be responded with an acknowledgment message containing a status code. This status code can only indicate a successful tunnel establishment if both the incoming and outgoing tunnels of the proxy HA are set up. Furthermore, the MN and CN must not switch their outgoing tunnels before the situation indicates a successful setup of the entire MN-CN path.

  Note that data packets that arrive from or are sent to other nodes are still routed through the original HA by default. Since tunnel switching applies only to a specific MN-CN communication session, the forwarding function of the proxy HA should also consider the source address in the IP header.

  An example of the signaling flow for a variation of HA control and MN control is shown in FIG. 10 for scenarios a) and b) and in FIGS. 11 and 12 for scenarios c) -e), respectively.

Path adaptation in the presence of mobility In general, ORT can always run in the background. It can be triggered immediately after the connection is established by the communication partner or later on demand. Since the MN may be a mobile, the optimized route length may not be optimal after a while, and the ORT needs to be re-executed. However, because some signaling is required, the procedure should be repeated as often as possible and only if the communication session lasts for a long period of time. Furthermore, if the benefit is low, i.e. the path is not shortened or only slightly shortened, the procedure should not be executed.

  Benefits can be determined by iterating the procedure of measuring route length through candidate proxy HAs. Potentially, the target scenario must also change. One approach is to periodically repeat the distance measurement procedure described in detail above. This is considered efficient if both MNs are constantly moving and if the difference between the current path and the optimized path increases almost linearly. Another method is to trigger a re-execution every handover or every N handovers. This is considered efficient when mobility is low and handovers are rare.

  FIG. 13 shows the basic structure of a network server 1300 that can be configured to act as a home agent for an MN in a packet-switched mobile communication system. It can also be configured to perform the above-described method steps as the (first) MN HA, CN HA, or any proxy HA. In a very common implementation, the server is configured to support some or all of the aforementioned tasks and alternatives.

  The network server 1300 comprises a processing unit 1301, a random access memory 1302, and at least one network interface 1303 for connecting to a packet switched network. Further, a non-volatile semiconductor memory 1304 and / or a magnetic or optical hard disk drive 1305 may be provided. Optionally, a reader for any type of magnetic, optical, or semiconductor storage medium can be included for initial program loading or program update. The network server 1300 may further comprise optional components not shown here, such as a display screen or a keyboard.

  Binding caches 1307, 1308, and 1309 for storing bindings between the MN's HoA and CoA are reserved memory spaces in one or several of RAM 1302, NVM 1304, and hard disk 1305. be able to.

  The network server 1300 can be configured to perform the above-described method steps by executing program instructions stored on the RAM 1302, NVM 1304, and / or hard disk 1305 on its CPU 1301. These instructions can be stored for download to these memory locations on any other computer readable storage medium 1310 readable by the media reader 1306. Such a medium can be a CD (compact disc), a DVD (digital versatile disc), a floppy disk, or a semiconductor memory card.

  The present invention can also be applied to other mobility management protocols and systems in which data packets are routed through some kind of mobility agent that is responsible for mapping the MN's locator to a persistent identifier. .

Multi-Home Terminal In the following, multi-home support related to a modification of ORT HA control and MN control is described in detail. An example scenario using a subset of possible data paths is shown in FIG. 14, where the MN has multiple HoAs and CoAs, and the CN has multiple CoAs and one HoA.

  The complexity of ORT / ROTA is that there can be multiple HAs on the link for load balancing and redundancy reasons, and of them (as all tunnel segments are connected) Only one of the can be selected as being on the path. Otherwise, because the proxy HA does not perform proxy neighbor discovery for the proxied HoA (since the HoA prefix does not match one of the link prefixes), the data packet is destined for that destination. The optimized route will not be used. For example, if the MN selects pHA1 as the proxy HA and the CN selects pHA2, which is another HA other than pHA1 located on the same link, as the proxy HA, the CN reverses the data packet to pHA2. Although tunneling, only pHA1 can tunnel packets to the MN. Thus, the packet will be routed to the MN's HA via a non-optimized path. Note that the packet is not intercepted by pHA1 because pHA1 cannot perform proxy neighbor discovery to the MN's HoA (the address does not have an on-link prefix).

  The main idea is that each MN and CN choose one of their HoAs and register at least one CoA with the corresponding HA for each interface used (this is one HA This suggests that multiple CoAs can be assigned to one HoA in the binding cache of In addition, the MN and CN notify the HA about known HAs (eg, assigned to other interfaces) that are considered candidate proxy HAs. The MN and CN HAs can then separately select the CoA and proxy HA combination that provides the best path and then negotiate to reach a common solution. The selection algorithm can be based on distance information that can be determined passively from received packets or actively by probing.

  In the first step, the MN selects one of its HoAs used for communication with the CN, and if the CN is multihomed and the MN recognizes multiple HoAs of the CN, the CN as the destination address Select one of the HoAs. The (primary) HAs corresponding to HoA are referred to below as MN HA and CN HA.

  In order to be able to send and receive data on a particular interface using a reverse tunnel to the HA, the MN may use at least one of the addresses assigned to this interface as a CoA to the MN's HA. sign up.

  The MN then initiates ORT (optimized reverse tunneling) by sending an ORT initialization request to the MN's HA including the MN's HoA and CN's HoA. In addition, the mobile node can propose to the MN's HA all or a subset of the registered HAs as candidate proxy HAs. This information is delivered, for example, by including their addresses in a new “candidate proxy HA mobility option” that can be executed by a binding update message or an ORT initialization request message.

  Upon receiving the ORT initialization request, the MN's HA can store candidate proxy HA addresses. If some of the candidate proxy HAs are unreliable, the corresponding address should be screened and marked as such. The MN's HA then discovers the HA that manages the binding for the CN's HoA using, for example, an extended DHAAD procedure. If the CN's home network is distributed, this discovery can result in multiple HAs. In this case, the MN's HA selects one of them and sends an ORT request to this HA (hereinafter referred to as the CN's HA). In addition, candidate proxy HAs can be proposed to the CN's HA (eg, using a candidate proxy HA option to be executed by an ORT request), thereby selecting untrusted candidates.

  The CN's HA sends an ORT initialization request to the CN. Upon receiving this request, the CN registers at least one address for each interface used as CoA in CN's HA. Next, all or a subset of the HA with which the CN is registered is proposed to the CN's HA as a candidate proxy HA (eg, using the candidate proxy HA option performed by the ORT initialization response) can do. After screening untrusted candidate proxy HAs, the CN HA then makes all or a subset of them additional candidates (eg, using candidate proxy HA options performed by the ORT response). It is possible to propose to the MN's HA as a proxy HA, which makes it possible to re-select untrusted candidates.

  Next, the proxy HA and CoA selection procedures are performed separately on the MN and CN HAs. This selection can be based on distance information, among other information. Some distance information can be pre-configured or cached from previous sessions, and some can be passively measured based on, for example, received ORT or Mobile IPv6 signaling messages. For example, the distance from the MN to the CN's HA or from the MN / CN to the MN / CN's HA may already be known by peaking the hop limit field of the received packet. This information may be sufficient in some scenarios, for example if the MN or CN's HA is already providing a sufficiently short path when acting as a proxy HA, no further distance information is needed It is.

  In other cases, BU information can be exchanged between the MN's HA, the CN's HA, and the candidate proxy HA, and the distance information is actively measured or requested by other nodes. Is possible. Link costs between candidate proxy HAs and between a candidate proxy HA and a MN or CN CoA can be measured using active probing. If an optimal route is found, it must know the length of all path segments, i.e. the length between all proxy HAs and to the CoA of all MN / CN. Once the path length requirements are known, the proxy HA and CoA selection can be aborted if a path that meets the requirements (sub-optimal) is found before considering all possible paths. Also, if a scenario using one proxy HA on the path in the selection is considered, there is no need to measure the distance between proxy HAs.

  In either case, the selection procedure should end with the same result on either HA. One option is to ensure that both HAs have the same inputs (address and distance information) for their selection and use the same selection algorithm to meet this requirement. However, if both HAs have to consider more local information such as policy information in the selection procedure (ie if both HAs have different outputs), or both HAs may have different selection algorithms If so, additional negotiation is required between the MN and the CN's HA to reach an agreement result. This can be achieved by an additional ORT request / response exchange between HAs. Those exchanges must be marked with a special flag (eg, a “negotiation” flag) to distinguish them from session initiation exchanges. In each exchange, a path (ie, a combination of proxy HA address and CoA) is proposed to the other HA in a request message and accepts or rejects this path in a response message. It is also possible to include a ranked list of paths in the request message so that the recipient can select one of the paths in the response message.

  If no agreed outcome is found after all possible paths have been proposed, or if a predefined threshold of allowed exchanges is exceeded, the ORT is aborted and the standard bidirectional Tunneling is used. On the other hand, if the selection procedure is successfully completed and a common result is found, the tunnel end point is finally switched as described above and the optimized route can be used for data communication.

  FIG. 15 is a diagram illustrating an initial signaling flow regarding multi-homed MN and CN in a modified example of HA control.

  In Fig. 19a, Fig. 19b and Fig. 19c, a variant of HA control is shown in the form of a flowchart. In step 1902, the MN selects one of its HoAs to use for communication with the CN. If the CN is multihomed at 1904, the MN recognizes multiple HoAs for the CN at 1906, and then the MN selects one of the CN's HoAs at step 1908.

  In step 1910, the mobile node registers at least one of the addresses assigned to the target interface as CoA in the MN's HA. Before the MN can propose all or a subset of the HAs registered with that HA as candidate proxy HAs at step 1918, the MN sends an ORT initialization request to the MN's HA at step 1912.

  In step 1920, the MN's HA receives the ORT initialization request and stores the candidate proxy HA. At 1922, if the CN's home network is distributed, the MN's HA discovers multiple HAs that manage bindings on CN's HoA at 1924, and the MN at step 1926 selects one of the multiple HAs. Select one. If the CN's home network is not distributed, the MN's HA discovers, in step 1928, the HA that manages the binding for CN's HoA.

  In step 1930, the MN's HA can send an ORT request to the CN's HA and propose the HA to the CN's HA as a candidate proxy HA. If the CN's HA receives an ORT request from the MN's HA, the CN's HA must screen for untrusted proxy HAs. After the CN's HA sends an ORT initialization request to the CN at step 1932, the CN registers at least one address for each interface used as a CoA with the CN's HA at step 1934.

  At step 1936, the CN may send an ORT initialization response to propose a candidate proxy HA for the CN's HA. At step 1938, the CN's HA may send an ORT response to propose additional candidate proxy HAs to the MN's HA to screen for untrusted HAs. In step 1944, the ORT initialization response is sent to the MN by the MN's HA.

  If the BU information about the MN's HA, the CN's HA, and the candidate proxy HA are not known from the previous session at 1948, the BU between the MN's HA, the CN's HA, and the candidate proxy HA at 1950 Information is exchanged. At step 1952, the path segment length is established, including establishing the path segment length from the MN HA and CN HA to the candidate proxy HA and CoA. At step 1953, proxy HA and CoA selection is performed separately on the MN's HA and CN's HA.

  If the same input and same selection algorithm is used on the MN's HA and CN's HA at step 1954, tunnel end point switching is initiated at step 1958, otherwise additional negotiation is performed at step 1956 Is done.

  The procedure in the MN controlled variant is executed accordingly, with the difference that the ORT request / response is exchanged between the MN and CN HA or the CN and MN HA, respectively. As with the HA control variant, the mobility option performed by the ORT request / response message can be proposed to the candidate proxy HA. In addition, the MN and CN send candidate proxy HAs to their own HA, for example using mobility options performed by BU messages.

  FIG. 16 shows an initial signaling flow for multi-homed MNs and CNs in a variation of MN control, and FIG. 17 shows a signaling flow for requesting distance information reports from candidate proxy HAs.

  In the case of mobility, the specific combination of CoA and proxy HA that provides the best path may change. Therefore, the selection procedure should be repeated. This can include updating binding information at the proxy HA and new distance measurements.

  The frequency of repetition of this procedure can be selected as described above. Due to the increased overhead resulting from multihoming, measures must be taken according to the repetition frequency. Further reduction in signaling can be achieved if only a subset of the interfaces are used, or if the proxy HA selection is aborted when a sufficiently good path is found.

  The present invention is applicable (with some changes) to other mobility management protocols and location privacy protocols with similar characteristics as Mobile IPv6 and ORT.

FIG. 18 shows an example scenario where the MN has two interfaces (IF), two HoAs, and three CoAs. The CN has 3 interfaces, 2 HoAs, and 3 CoAs. Home links are not distributed. In this scenario, an example procedure for finding an optimal path using a variation of HA control is described below.
The MN selects HoA2 _MN as the source and HoA2 _CN as the destination address for communication with the CN.
The MN registers <HoA2 _MN , CoA1 _MN , CoA2 _MN > in HA2, requests an ORT from HA2 to the communication session <HoA2 _MN , HoA2 _CN > using the ORT initialization request message, and becomes a candidate Use the proxy HA option to notify HA2 about the HA1 address as a candidate proxy HA address.
• HA2 discovers the HA that manages the binding for HoA2 _CN using, for example, the mechanism described above. This results in an HA4 address.
HA2 requests ORT from HA4 using an ORT request message and informs HA4 about HA1 as a candidate proxy HA using a candidate proxy HA option.
• HA4 requests an ORT from the CN using an ORT initialization request message.
· CN registers the _{<HoA2 CN, CoA1 CN, CoA2} CN, CoA3 CN> in HA4, in response to HA4 using ORT initialization response message and a proxy HA option as a candidate, the candidate and As a proxy HA, HA4 is notified of HA3.
HA4 sends an ORT response to HA2 and informs HA2 about HA3 as a candidate proxy HA using the candidate proxy HA option.
· HA2 transmits the binding information to _{HA4 <HoA2 MN, CoA1 MN,} CoA2 MN>.
· HA4 sends binding information to _{HA2 <HoA2 CN, CoA1 CN,} CoA2 CN, CoA3 CN>.
· HA2 until _{CoA (CoA1 CN, CoA2 CN,} CoA3 CN, CoA1 MN, CoA2 MN), and measures the distance to the proxy HA as a candidate at option (HA4, HA3, HA1), the distance information HA1 Request.
· HA1 until _{CoA (CoA1 CN, CoA2 CN,} CoA3 CN, CoA1 MN, CoA2 MN), and measures the distance to the proxy HA as a candidate at option (HA4, HA3, HA2), HA2 on the distance information report Send.
· HA4 until _{CoA (CoA1 CN, CoA2 CN,} CoA3 CN, CoA1 MN, CoA2 MN), and the distance to the proxy HA as a candidate at option (HA3, HA1, HA2) were measured, the distance information to HA3 Request.
· HA3 measures the distance CoA to _{(CoA1 CN, CoA2 CN, CoA3} CN, CoA1 MN, CoA2 MN), and a candidate Option to proxy HA (HA4, HA1, HA2), the distance information report to HA4 Send.
HA2 and HA4 exchange distance information and initiate a selection procedure to determine the proxy HA and CoA combination that provides the shortest path.
HA4 and HA2 send tunnel establishment request / notification to MN / CN.

  Next, the ORT method will also be described.

Method for packet-switched data transmission between a first mobile node (101) and a correspondent mobile node (102) in a mobile communication system comprising a plurality of mobile networks (105, 106, 107, 108) Because
a) allocating a respective home network (105, 106) to each of the first mobile node and the correspondent mobile node;
b) providing each of the first mobile node and the correspondent mobile node with a network server (103, 104) as a home agent in the respective home network;
c) via the first data tunnel (201, 301) from the first mobile node to any first one of the home agents and the first of the home agents The data from the first mobile node to the correspondent mobile node via the second data tunnel (202, 302) from one to the correspondent mobile node without passing through each other home agent. Routing packets,
Including methods.

The first home agent is the home agent (103) of the first mobile node (101);
d) via the third data tunnel (203) from the correspondent mobile node to the home agent (104) of the correspondent mobile node and from the home agent of the correspondent mobile node to the first mobile node From the correspondent mobile node (102) to the first mobile node (101) without passing through the home agent (103) of the first mobile node via the fourth data tunnel (204) The above method further comprising the step of routing the data packet.

The first home agent is the home agent (103) of the first mobile node (101), the first (301) and second (302) data tunnels are bidirectional tunnels,
e) The above method further comprising routing the data packet from the correspondent mobile node (102) to the first mobile node (101) via the second data tunnel and the first data tunnel. .

Prior to step c)
f) determining (812) the distances from the home agent (103) of the first mobile node to the first mobile node (101) and to the correspondent mobile node (102);
g) determining the distance from the home agent (104) of the correspondent mobile node to the first mobile node (101) and the correspondent mobile node (102) (813);
h) using the determined distance to select one of two home agents as an end point of the first tunnel and as a start point of the second tunnel (817); ,
Including the above method.

  The above method, further comprising exchanging distance information (814, 815) between both home agents after step g) and before step h).

  The above method wherein steps f) to h) are repeated at predetermined time intervals or after a predetermined number of handovers.

  The method as described above, further comprising, after step h), sending a tunnel establishment request or notification message (1001) from the home agent of the first mobile node to the first mobile node.

Prior to step c) and, if applicable, prior to step f),
j) sending a message (804) from the home agent (103) of the first mobile node to the home agent (104) of the correspondent mobile node, the message comprising the first mobile node and Providing the home address of the correspondent mobile node;
k) sending a signed response (807) from the home agent (104) of the correspondent mobile node to the home agent (103) of the first mobile node, the response being the correspondent mobile node Providing a home agent authentication identifier and authorization credentials;
l) establishing (809) a security relationship (810) between the home agent of the first mobile node and the home agent of the correspondent mobile node;
m) Using the above security relation, the binding update information (811) including the care-of address and home address of the first mobile node is sent from the home agent of the first mobile node to the home Transmitting to the agent, storing binding update information in the home agent of the correspondent mobile node, and
Further comprising the above method.

Prior to step c) and, if applicable, prior to step f),
n) a step of transmitting a message (901) from the first mobile node (101) to the home agent (104) of the correspondent mobile node, the message comprising the first mobile node and the correspondent mobile node Providing a home address of
o) sending a signed response (902) from the home agent of the correspondent mobile node to the first mobile node, the response comprising the authentication identifier and authorization certificate of the home agent of the correspondent mobile node Comprising the steps of:
p) establishing a security relationship (904) between the first mobile node and the home agent of the correspondent mobile node;
q) Using the security relationship established in step p), the binding update information (906) including the care-of address and home address of the first mobile node is obtained from the first mobile node to the communication partner mobile node. Transmitting to the home agent; storing binding update information in the home agent of the correspondent mobile node; and
Further comprising the above method.

  The method as described above, further comprising the step of executing a return routability procedure (903) between the first mobile node (101) and the home agent (104) of the correspondent mobile node before step p) .

u) using the proxy home agent storing the binding information of the mobile node each allocated to a network different from the network of each proxy home agent, and the first mobile node and the correspondent mobile node; During packet exchange and vice versa, for packet-switched data transmission,
i) from the first mobile node to the proxy home agent in the visited network of the first mobile node, to the proxy home agent in the visited network of the correspondent mobile node, and to the correspondent mobile node; A bidirectional data tunnel that does not pass through the home agent of either the first mobile node or the correspondent mobile node, wherein at least one of the proxy home agents is not an access router; Tunnel,
ii) the first mobile node and communication partner from the first mobile node to the proxy home agent in the visited network of either the first mobile node or the correspondent mobile node and to the correspondent mobile node A bidirectional data tunnel that does not pass through any of the mobile node's home agents;
iii) from the first mobile node to the proxy home agent in the network located between the visited network of the first mobile node and the visited network of the correspondent mobile node, and to the correspondent mobile node; With a bidirectional data tunnel that does not pass through the home agent of either the first mobile node or the correspondent mobile node
Providing at least one of the routing options;
v) selecting (816) between at least two of the routing options described above and in substeps i) to iii);
Further comprising the above method.

  The method as described above, wherein steps v) and f) to h) are repeated at predetermined time intervals or after a predetermined number of handovers.

  In a mobile communication system including a plurality of mobile networks (105, 106, 107, 108), a home agent (103) for a first mobile node (101) that transmits a data packet to a correspondent mobile node (102). A network server (1300) configured to perform the act of acting as a) to forward data packets received from the first mobile node to the correspondent mobile node A network configured to perform establishing a data tunnel (202, 302) directly to the correspondent mobile node without passing through the home agent (104) of the correspondent mobile node; server.

  Furthermore, establishing the data tunnel as a bidirectional data tunnel (202), receiving a data packet from the correspondent mobile node (102) via the data tunnel, and receiving the received data The network server (1300) configured to establish forwarding a packet to the first mobile node (101).

further,
Determining the distance to the first mobile node (101) and to the correspondent mobile node (102);
Receiving information about the distance from the home agent of the correspondent mobile node to the correspondent mobile node and to the first mobile node from the home agent (104) of the correspondent mobile node;
Using the determined distance to select one of the two home agents for forwarding the data packet;
The network server (1300) configured as described above.

A binding cache (1307, 1308, 1309),
further,
Sending a message to the home agent (104) of the correspondent mobile node, the message comprising the home addresses of the first mobile node (101) and the correspondent mobile node (102);
Receiving a signed response from the home agent of the correspondent mobile node, the response comprising the authentication identifier and authorization certificate of the home agent of the correspondent mobile node;
Establish a security relationship for the home agent of the correspondent mobile node,
From the home agent of the correspondent mobile node, the binding update information including the care-of address and home address of the correspondent mobile node is received using the above security relationship, and the binding update information is stored in the binding cache. To
The network server (1300) configured as described above.

  Further, the network server (1300) above configured to perform sending a tunnel establishment request or notification message to the first mobile node (101).

further,
A message is received from the home agent (104) of the correspondent mobile node, the message comprising the home addresses of the first mobile node (101) and the correspondent mobile node (102),
Sending a signed response to the correspondent mobile node's home agent, the response comprising the identifier and authorization certificate of the correspondent mobile node's home agent;
Establish a security relationship for the home agent of the correspondent mobile node,
Sending the binding update information comprising the care-of address and home address of the correspondent mobile node to the home agent of the correspondent mobile node using the above security relationship.
The network server (1300) configured as described above.

A binding cache (1307, 1308, 1309),
further,
Establish a security relationship with the correspondent mobile node (102),
From the correspondent mobile node, using the above security relationship, receive binding update information comprising the care-of address and home address of the correspondent mobile node, and store the binding update information in the binding cache;
The network server (1300) configured as described above.

  Furthermore, the network server (1300) as described above, configured to execute a return routability procedure using the correspondent mobile node (102).

  When executed on the processor (1301) of the network server (1300), in a mobile communication system comprising a plurality of mobile networks (105, 106, 107, 108), data is transmitted to the correspondent mobile node (102). To act as a home agent (103) for the first mobile node (101) that transmits the packet and to forward the data packet received from the first mobile node to the correspondent mobile node Computer readable storing instructions that cause a network server to establish a data tunnel directly to the correspondent mobile node without passing through the home agent (104) of the correspondent mobile node Storage medium (1304, 1305, 1310).

Abbreviation List AR Access Router BU Binding Update CN Communication Node CoA Care-of Address CHA Home Agent CGA Cryptographically Generated Addresses of Communication Node
DHAAD Dynamic Home Agent Address Discovery
DNS Domain Name System HA Home Agent HMIP Hierarchical Mobile Internet Protocol Version 6
HN Home Network HoA Home Address IKE Internet Key Exchange LPA Location Privacy Agent LCS Location Privacy Server MAP Mobility Anchor Point MN Mobile Node ORC Optimized Route Cache Protocol ORT Optimized Reverse Tunneling pHA Proxy Home Agent RA Router Notification RCoA Area Care-of Address RO Route Optimization SEND Secure Neighbor Discovery
VoIP Voice over Internet Protocol

Diagram showing data path between MN and CN without proxy HA in bi-directional tunneling mode Diagram showing a data path with two unidirectional tunneling proxies HA in the home network (Scenario a) Diagram showing a data path with one bi-directional tunneling proxy HA in the MN's home network (scenario b) FIG. 2 is a diagram illustrating the same scenario as in FIG. 1 with different distances between entities. Diagram showing data path with two unidirectional tunneling proxies HA in MN and CN visiting networks (scenario c) Diagram showing a data path with one common bidirectional tunneling proxy HA located in the visited network of the MN (scenario d) Diagram showing data path with one common bidirectional tunneling proxy HA located in the network between the MN and CN visiting networks (scenario e) The figure which shows the signaling flow regarding the initial negotiation in scenario a) -e) in the modification of HA control. The figure which shows the signaling flow regarding the initial negotiation in scenarios a) -e) in the modification of MN control The figure which shows the signaling flow regarding the tunnel switch in scenario a) and b) of HA control and MN control The figure which shows the signaling flow regarding BU exchange and tunnel switching in scenario c) -e) of HA control The figure which shows the signaling flow regarding BU exchange and tunnel switching in scenario c) -e) of MN control The figure which shows the structure of the network server which can be used as HA FIG. 6 illustrates an example scenario with a subset of possible data paths when the MN has multiple HoAs and CoAs, and the CN has multiple CoAs and one HoA. Diagram showing signaling flow for multihomed MN and CN in a variant of HA control (new part of the invention is italic) Diagram showing signaling flow for multi-homed MN and CN in a variant of MN control (new part of the invention is italic) It is a figure which shows the signaling flow for requesting a distance information report from a proxy HA that is a candidate. Diagram showing an example scenario where the MN has two HoAs with non-distributed home links and the CN has one HoA with distributed home links and multiple CoAs (italicized entries in the binding cache) Is a new entry) Flow diagram showing the process of optimized reverse tunneling for multihomed terminals Flow diagram showing the process of optimized reverse tunneling for multihomed terminals Flow diagram showing the process of optimized reverse tunneling for multihomed terminals

Claims (24)

A method for packet-switched data transmission between a multi-homed mobile node and a correspondent node in a mobile communication system comprising a plurality of mobile networks, comprising:
a) selecting by the mobile node one of its home addresses used for communication with the correspondent node (1902);
b) The mobile node is aware of at least one of a plurality of addresses assigned to the target network interface by the mobile node to the home agent of the mobile node responsible for the selected home address. Registering as an address (1910);
c) receiving and storing candidate proxy home agent addresses by the communicating node's home agent and the mobile node's home agent;
d) sending a request to the correspondent node by the home agent of the correspondent node (1932);
e) registering at least one of a plurality of addresses assigned to a target network interface by the correspondent node as a care-of address with the home agent of the correspondent node (1934);
f) At least one of the stored proxy home agent addresses and one of the mobile node's care-of addresses at both the mobile node's home agent and the correspondent node's home agent. And (1946) selecting one of the care-of addresses of the correspondent node,
g) The mobility so that the two end points of the tunnel are one of the selected proxy home agent address selected in step f) and the care-of address of the selected mobile node. Triggering (1958) the mobile node to switch the tunnel by a home agent of the node;
h) the communication so that the two end points of the tunnel are one of the selected proxy home agent address selected in step f) and the care-of address of the selected mobile node. Triggering (1958) the correspondent node to switch the tunnel by the home agent of the correspondent node;
Including methods.   The method of claim 1, wherein the request in step d) is an optimized reverse tunneling start request. Before step d)
The step of i) transmitting the address of a candidate proxy home agent stored in the mobile node to the home agent of the mobile node and the home agent of the correspondent node is executed. the method of. Before step d)
3) The step of transmitting the address of the candidate proxy home agent stored in the correspondent node to the home agent of the mobile node and the home agent of the correspondent node is executed. The method described. Step i)
Sending (1912) an optimized reverse tunneling initiation request by the mobile node to its home agent;
Receiving the optimized reverse tunneling initiation request by the mobile node's home agent and storing a candidate proxy home agent address (1920);
The home agent of the mobile node finds a home agent that manages the binding related to the home address of the correspondent node (1924, 1926, 1928);
Sending (1930) an optimized reverse tunneling request by the mobile node's home agent to the home node of the found correspondent node;
The method of claim 3 comprising. Step j)
Sending (1912) an optimized reverse tunneling start response to the home agent by the correspondent node;
Receiving the optimized reverse tunneling start response by the home agent of the correspondent node and storing a candidate proxy home agent address (1920);
Sending (1930) an optimized reverse tunneling response to the mobile node's home agent by the correspondent node's home agent;
The method of claim 4 comprising. Step i)
Sending (1912) the address of a candidate proxy home agent to the home agent by the mobile node;
Receiving and storing candidate proxy home agent addresses by the mobile node's home agent (1920);
Finding (1924, 1926, 1928) a home agent that manages the binding related to the home address of the correspondent node by the mobile node;
Sending (1930) an optimized reverse tunneling request by the mobile node to a home agent of the found correspondent node;
The method of claim 3 comprising. Step j)
Sending (1912) the address of a candidate proxy home agent to the home agent by the correspondent node;
Receiving (1920) and storing a candidate proxy home agent address by the home agent of the correspondent node;
Finding (1924, 1926, 1928) a home agent that manages the binding related to the home address of the mobile node by the correspondent node;
Sending (1930) an optimized reverse tunneling response to the mobile node's home agent by the correspondent node;
The method of claim 4 comprising.   9. A method as claimed in any one of claims 5 to 8 wherein, following the step of sending an optimized tunneling request or response, a candidate proxy home agent address is proposed to the respective home agent.   10. A method according to any one of claims 1 to 9, wherein step f) is performed to select the shortest path.   10. A method according to any one of the preceding claims, wherein step f) is performed to select the path with the least delay. Before step d)
12. The method according to any one of claims 1 to 11, further comprising the step (1908) of selecting by the mobile node one of the home addresses of the correspondent nodes as a destination address.   13. The method according to any one of claims 1 to 12, further comprising the step of rejecting an untrusted proxy home agent by the mobile node's home agent.   14. The method according to any one of claims 1 to 13, further comprising the step of rejecting an untrusted proxy home agent by the correspondent node's home agent. A mobile node of a mobile communication system for packet-switched data transmission between a multi-homed mobile node and a correspondent node,
Selecting means adapted to select one of its home addresses used for communication with said correspondent node;
Adapted to register at least one of a plurality of addresses assigned to the target network interface as a care-of address with the home agent of the mobile node responsible for the selected home address Stored means,
A mobile node comprising A home agent of a correspondent node of a mobile communication system for packet-switched data transmission between a multi-homed mobile node and a correspondent node,
Transmission means adapted to send a request to the correspondent node;
A receiving means adapted to receive a home agent address as a proxy candidate;
Storage means adapted to store a home agent address as a proxy candidate;
Selection means adapted to select at least one of the proxy home agent address, one of the mobile node's care-of address, and one of the correspondent nodes' care-of address;
Trigger the correspondent node to switch the tunnel so that the two end points of the tunnel are one of the selected proxy home agent address and the care-of address of the correspondent node Trigger means adapted to
The home agent of the correspondent node provided. A communication partner node of a mobile communication system for packet-switched data transmission between a multi-homed mobile node and a communication partner node,
A communicating party node comprising storage means adapted to register at least one of a plurality of addresses assigned to a target network interface as a care-of address in a home agent of the communicating node. A mobile node home agent of a mobile communication system for packet-switched data transmission between a multi-homed mobile node and a correspondent node,
Selection means adapted to select at least one of the proxy home agent address, one of the mobile node's care-of address, and one of the correspondent nodes' care-of address;
Trigger the mobile node to switch the tunnel so that the two end points of the tunnel are one of the selected proxy home agent address and the care-of address of the correspondent node Trigger means adapted to
The mobile node's home agent. A mobile communication system for packet-switched data transmission between a multi-homed mobile node and a correspondent node, the mobile communication system comprising:
A mobile node according to claim 15, a correspondent node according to claim 17, a home agent of the correspondent node according to claim 16, and a home agent of the mobile node according to claim 18. A mobile communication system provided.   20. A mobile communication system according to claim 19 adapted to perform the method according to claims 2-14. When executed by the mobile node processor:
Selecting one of its home addresses used for communication with the correspondent node;
Registering at least one of a plurality of addresses assigned to a target network interface as a care-of address with a home agent of a mobile node responsible for the selected home address. ,
A computer readable medium storing instructions for causing the mobile node to perform optimized reverse tunneling for a multihomed terminal. When executed by the home agent processor of the correspondent node:
Sending a request to the correspondent node;
Receiving a home agent address as a proxy candidate;
Storing a home agent address as a proxy candidate;
Selecting at least one of the proxy home agent address, one of the care-of address of the mobile node, and one of the care-of address of the correspondent node;
Trigger the correspondent node to switch the tunnel so that the two end points of the tunnel are one of the selected proxy home agent address and the care-of address of the correspondent node And the steps to
A computer readable medium storing instructions for causing the home agent of the correspondent node to perform optimized reverse tunneling for a multihomed terminal. When executed by the processor of the correspondent node,
Optimized reverse tunneling for multihomed terminals by registering at least one of a plurality of addresses assigned to a target network interface as a care-of address with a home agent of the correspondent node A computer-readable medium storing a command for causing the communication partner node to execute. When executed by the mobile node's home agent processor:
Selecting at least one of the proxy home agent address, one of the mobile node's care-of address, and one of the correspondent nodes' care-of address;
Trigger the mobile node to switch the tunnel so that the two end points of the tunnel are one of the selected proxy home agent address and the care-of address of the correspondent node Step by step
A computer readable medium storing instructions for causing the mobile agent's home agent to perform optimized reverse tunneling for a multihomed terminal.