WO2005025174A1 - Location privacy in a communication system - Google Patents

Location privacy in a communication system Download PDF

Info

Publication number
WO2005025174A1
WO2005025174A1 PCT/FI2004/000515 FI2004000515W WO2005025174A1 WO 2005025174 A1 WO2005025174 A1 WO 2005025174A1 FI 2004000515 W FI2004000515 W FI 2004000515W WO 2005025174 A1 WO2005025174 A1 WO 2005025174A1
Authority
WO
WIPO (PCT)
Prior art keywords
mobile node
node
address update
update process
correspondent
Prior art date
Application number
PCT/FI2004/000515
Other languages
French (fr)
Inventor
Risto Mononen
Sandro Grech
Original Assignee
Nokia Corporation
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nokia Corporation filed Critical Nokia Corporation
Priority to JP2006525845A priority Critical patent/JP4477003B2/en
Priority to DE602004015123T priority patent/DE602004015123D1/en
Priority to EP04767029A priority patent/EP1661364B1/en
Publication of WO2005025174A1 publication Critical patent/WO2005025174A1/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0407Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the identity of one or more communicating identities is hidden
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/02Processing of mobility data, e.g. registration information at HLR [Home Location Register] or VLR [Visitor Location Register]; Transfer of mobility data, e.g. between HLR, VLR or external networks
    • H04W8/08Mobility data transfer
    • H04W8/082Mobility data transfer for traffic bypassing of mobility servers, e.g. location registers, home PLMNs or home agents
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • H04L63/061Network architectures or network communication protocols for network security for supporting key management in a packet data network for key exchange, e.g. in peer-to-peer networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/20Network architectures or network communication protocols for network security for managing network security; network security policies in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/02Processing of mobility data, e.g. registration information at HLR [Home Location Register] or VLR [Visitor Location Register]; Transfer of mobility data, e.g. between HLR, VLR or external networks
    • H04W8/08Mobility data transfer
    • H04W8/16Mobility data transfer selectively restricting mobility data tracking
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/26Network addressing or numbering for mobility support
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W80/00Wireless network protocols or protocol adaptations to wireless operation
    • H04W80/04Network layer protocols, e.g. mobile IP [Internet Protocol]

Definitions

  • the invention relates generally to location privacy in a communication system. More particularly, the invention relates to a mechanism that allows a communicating party to prevent its whereabouts from being deduced by the opposite communicating party.
  • the mechanism is mainly intended for Mobile Internet Protocol (IP) networks.
  • IP Mobile Internet Protocol
  • the protocols related to IP networks are developed by the Internet Engineering Task Force (IETF).
  • IETF Internet Engineering Task Force
  • the IETF has also been developing support for mobile IP nodes for both versions of IP (i.e. for IPv4 and IPv6).
  • the main results of this work are the two Mobile IP protocols, Mobile IPv4 (RFC 2002) and Mobile IPv6 (work in progress, assumed to reach RFC status soon).
  • Mobile IP defines a mechanism by which a mobile node can change its IP address without interrupting any ongoing sessions with communicating peers.
  • the mobile node obtains a new IP address facilitated by an access router.
  • the mobile node then informs its home agent (HA) and, optionally, also the correspondent node (CN) about the change in the address by sending the new address (so-called care-of address) in a message called Binding Update (BU) to the home agent and optionally also to the correspondent node.
  • HA home agent
  • CN correspondent node
  • BU Binding Update
  • DNS data integrity cannot be trusted in today's Internet.
  • the correspondent node does not necessarily have a DNS name at all. This is the situation when a mobile correspondent node is away from its home network, for example.
  • the invention provides a mobile node with reliable information for location privacy decisions in connection with an address update process that gives the correspondent node a chance to deduce the location of the mobile node.
  • an authentication process is introduced into the beginning of the correspondent registration process so that a mobile node (on the end-user's behalf), or the end-user, is given a chance to prevent the sending of the new address to the correspondent node, if the authentication process indicates that the correspondent node is not necessarily a trusted party.
  • the authentication process is such that it yields at least one high-level identifier of the correspondent node.
  • the high-level identifier may refer to an identifier that is easier for a human user to associate with a certain person or organization than a mere IP address. This identifier may be the e-mail address or the DNS name of the correspondent node, for example.
  • the mobile node After a successful authentication process the mobile node thus knows, in addition to the IP address, at least one high-level identifier of the correspondent node, which may significantly increase the mobile node's or the user's knowledge of the trustworthiness of the correspondent node. The decision on the continuation and completion of the correspondent registration process is therefore made only after the authentication process. As discussed below in connection with FIG. 3 and 4, the high-level identifier may be cryptographically certified during the authentication process.
  • one embodiment of the invention is the provision of a method for performing an address update in a communication system.
  • the method includes the steps of indicating that an address update process needs to be performed, where location-related information about the mobile node is transmitted to the correspondent node if the address update process is performed, and authenticating the correspondent node in response to the indicating step.
  • the authenticating step yields identity information about the correspondent node.
  • the method also includes determining, based on the identity information, whether the address update process is to be carried out and performing the address update process when the determining step so indicates.
  • the invention provides a mobile node for a communication system.
  • the mobile node includes indicator means for giving an indication when an address update process needs to be performed, and authentication means for authenticating the correspondent node.
  • the authentication means are responsive to the indicator means and yield identity information about the correspondent node.
  • the mobile node further includes determination means, responsive to the authentication means, for determining whether the address update process is to be performed and address update means, responsive to the determination means, for carrying out the address update process.
  • the invention provides a system for performing address updates in a communication system.
  • the system includes entities similar to the above functional entities of the mobile node, except that in the system of the invention the entities may be distributed between the mobile node and the network.
  • a further advantage of the invention is that route optimization does not need to be omitted just because the mobile node or its user cannot recognize a trusted correspondent node. This decreases the overhead caused in the network.
  • the mobile node may reverse-tunnel any traffic through the home agent while the authentication is in progress, the authentication does not necessarily increase the set-up time for the session or disrupt an ongoing session. Since the authentication is needed only once during a session, the signaling performance of the mobile node is not affected in connection with subsequent address changes.
  • FIG. 1 illustrates an example of a communication environment in which the principles of the invention may be implemented
  • FIG. 2 illustrates the introduction of the authentication process into a route optimization procedure
  • FIG. 3 illustrates the main steps of the authentication process of one embodiment of the invention
  • FIG. 4 illustrates an example of an authentication process based on the Internet Key Exchange (IKEv2) authentication protocol
  • FIG. 5 is a flow diagram illustrating one embodiment of the operation of a mobile node in connection with route optimization.
  • FIG. 6 is a block diagram illustrating the basic elements of the terminal according to one embodiment of the invention.
  • FIG. 1 shows an example of a typical communication environment in which the invention can be applied.
  • a mobile node 100 which may be, for example, an IPv6 compatible node, may be currently located in a foreign network 103 away from its home network 102. While being away from the home network, the mobile node is addressable at a so-called care-of address, which the mobile node has registered with its home agent 101 located in the home network. The association of the home address with the care-of address is termed "binding."
  • the mobile node may use two different modes of communication when communicating with a correspondent node 104, which may be a mobile node or a fixed node.
  • the traffic may travel via the home agent: packets originated from the correspondent node may be routed to the home agent and then tunneled, utilizing the registered binding, to the mobile node. While the packets originated from the mobile node are first reverse-tunneled to the home agent, the packets are then routed to the correspondent node.
  • the mobile node may register its current binding with the correspondent node by sending a message called Binding Update (BU) to the correspondent node. Consequently, packets from the correspondent node can be routed directly to the mobile node. As a result, the shortest communication path between the mobile node and the correspondent node can be used.
  • BU Binding Update
  • the second mode and its initialization may also be referred to as route optimization. Route optimization may be most beneficial when the corresponding node is close to a roaming mobile node, i.e. when the difference between the optimized and unoptimized routes is great. The difference may be measured as the difference in the number of intermediate nodes.
  • the correspondent node and possible eavesdroppers may, with certain accuracy, deduce, based on the BU, the geographic location of the mobile node.
  • the mobile node may be provided with additional identity information for making the decision on whether the location of the node is to be kept private from the correspondent node when there is a need for route optimization. This may be accomplished by introducing an authentication process before the route optimization procedure with the correspondent node.
  • the authentication process yields reliable higher-level identity information about the correspondent node for the mobile node and/or its user, and the outcome of the authentication process may stipulate whether route optimization towards the correspondent node should be performed.
  • FIG. 2 illustrates an example of the introduction of the authentication process before the route optimization procedure.
  • mobile node 100 may make a decision to start a registration process in order to optimize the route (step 202).
  • the decision to start the route optimization process may be made in the Mobile IP layer of the node, and various events 201 may trigger the decision. For example, reception of a packet routed unoptimally through the home agent may trigger the registration process.
  • Another possible registration trigger may be the occurrence of a Mobile IP handover to a new care-of address when the mobile node 100 moves in the access network and the network signals the new care-of address to the mobile node.
  • authentication of the correspondent node may first be started (step 203) in order to check whether the registration process can be completed.
  • the authentication process may be such that it yields, in addition to the IP address of the correspondent node, additional high-level identity information about the correspondent node.
  • the mobile node or its user may then make a route optimization decision (step 204), i.e. the mobile node decides whether the registration process can be completed or not. If the high- level information indicates that the correspondent node is a trusted party, the mobile node may initiate a route optimization procedure with the correspondent node (step 205). In the opposite case the mobile node may decide to stop the registration process in order not to reveal its care-of address to the correspondent node.
  • the user may also be prompted to decide whether to continue the registration process.
  • the authentication and the route optimization decision may be performed only once during a session, i.e. there may not be a need to repeat the authentication procedure if the care-of address of the mobile node changes after the correspondent node has already been successfully authenticated.
  • the correspondent node may thus be authenticated when a need to perform correspondent registration (i.e. route optimization) is detected.
  • this detection belongs to the route optimization or that the route optimization is a separate process started only after this detection, the invention may also be defined in two ways.
  • the start of the authentication process may freeze the route optimization and that the route optimization may be continued only if the route optimization decision made on the basis of the authentication process allows the continuation.
  • the detection is not regarded as part of the actual route optimization, that the actual route optimization may be started conditionally, depending on the outcome of the authentication process.
  • the higher-level identity information obtained about the correspondent node may vary depending on the authentication protocol used. Although any authentication protocol that yields a trusted high-level identity of the correspondent node may be used, it is preferable to utilize authentication protocols that can be widely used for other purposes as well. Examples of such "general-purpose" authentication mechanisms are certificate-based authentication protocols, which are based on digital certificates that typically include at least a Distinguished Name (DN) and an associated public key. If the correspondent node is a mobile node, the certificate may be a subscriber certificate issued by the mobile operator, for example. However, if the correspondent node is a server, the certificate is typically issued by another Certification Authority (CA).
  • CA Certification Authority
  • the session between the mobile node and the correspondent node may be initiated by either of the parties.
  • the mobile node may start the session by sending at least the first packet as reverse-tunneled through the Home Agent and may start route optimization only later, in response to the triggering event.
  • the mobile node may decide to start the route optimization before any other communication occurs with the correspondent node.
  • the authentication process is thus started before any packets are sent to the correspondent node.
  • the correspondent node initiates the session it may obtain the home address of the mobile node as a result of a DNS query.
  • the first packet(s) sent by the CN may thus be routed through the home agent of the mobile node.
  • the signaling for certifying the identity of the correspondent node may be reverse-tunneled through the home agent in order not reveal the care-of address to the CN during the authentication process. While the authentication is in progress, the mobile node may reverse-tunnel any traffic through the home agent so that the authentication neither increases the set-up time for the session nor in any way disrupts an ongoing session.
  • FIG. 3 illustrates the main steps of an authentication process 203 according to one embodiment of the invention.
  • This embodiment is based on the Internet Key Exchange (IKE) authentication protocol, which supports certificate-based authentication protocol among other mechanisms.
  • IKE Internet Key Exchange
  • the IKE is defined in RFC 2409. The following example is based on the draft of version 2 of the IKE, draft-ietf-ipsec-ikev2-08.txt.
  • the two parties inform each other about their identities.
  • the identity may only be claimed and the receiving party may not yet be able to verify the identity of the sending party.
  • Public key certificates may be used as a tool for verifying the identity in the next, third step. The certificate may bind the identity with the public key.
  • the third step 303 may include of a random challenge and a verifiable response to that challenge.
  • the peers may be authenticated by having each sign a block of data (cf. chapters 2.15 and 2.16 in the IKEv2 draft).
  • a shared secret can be used as the key.
  • the data block i.e. the challenge, may be a concatenation of octets from the earlier messages, the value of the nonce payload (Ni, Nr) and the value of the pseudo random function (prf) over certain message fields.
  • the signature i.e. the response, may use a cryptographic algorithm and a secret key to ensure that only the correct identity can give the correct response to the challenge.
  • the private key may be used for signing and the public key may be used for verifying the signature.
  • a successful response proves that the signer holds the private key matching the public one in the certificate. Therefore the signer's identity must be the one claimed in the certificate. Since the public/private key pair is unique and the private part is not known to outsiders, outsiders are not able to calculate the correct response.
  • the above outline may also be valid for the Transport Layer Security (TLS) handshake protocol.
  • TLS Transport Layer Security
  • the above outline discussed regarding the embodiment of FIG. 3 may not be that clearly visible, since the messages carry information that is relevant to more than one of the above steps, in order to minimize the number of roundtrips in the message exchange. This may result in two request-reply pairs 401/402 and 403/404, while a straightforward, unoptimized implementation of the above three main steps may result in three message pairs, i.e. a message pair for each of the main steps.
  • HDR refers to the IKEv2 header
  • the terms "i” and "r” refer to the initiator and the responder, respectively.
  • the notation "SK ⁇ ⁇ " indicates that the payload between the curly brackets is encrypted and integrity protected using the security keys that were agreed during the Diffie-Hellman exchange in steps 401/402.
  • the other abbreviations in FIG. 4 refer to IKEv2 payloads as follows: SA refers to Security Association, KE to Key Exchange, ID to Identity, CERT to certificate, CERTREQ to Certificate Request, AUTH to Authentication, Ni to Initiator nonce, Nr to Responder nonce, TSi to Initiator Traffic Selector, and TSr to Responder Traffic Selector.
  • SA refers to Security Association
  • KE to Key Exchange ID to Identity
  • CERT to certificate CERTREQ to Certificate Request
  • AUTH Authentication
  • Ni to Initiator nonce Nr to Responder nonce
  • TSi to Initiator Traffic Selector TSi to Initiator Traffic Selector
  • TSr Responder Traffic Selector
  • the mobile node may also verify the current status of the certificate from an external server, such as an Online Certificate Status Protocol (OCSP) server.
  • OCSP Online Certificate Status Protocol
  • various trust models may be utilized, which provide interoperator trust propagation, so that certificates of roaming parties can be trusted.
  • FIG. 5 is a flow diagram illustrating one embodiment of the operation of the mobile node.
  • the authentication process is started (step 502).
  • the decision to start the correspondent registration may be made in the Mobile IP layer in response to a triggering event.
  • the authentication process yields at least one high-level identifier, which is then compared (step 503) with the content of a security policy database residing in the mobile node.
  • the database may contain high-level identifiers of trusted hosts, or rules that indicate which identifiers represent trustworthy hosts.
  • the registration process is allowed to continue (step 505), and a BU is sent to the correspondent node.
  • the user of the mobile node may be prompted for a decision through the user interface of the node (step 504).
  • a window containing the high-level identifier(s) obtained may be opened in the display of the mobile node. The text displayed in the window might be, for example, as follows: "You are about to reveal your local IP address to www.nokia.com. This information may be used to deduce your current location.
  • the registration may be allowed to continue, whereby a BU message is sent to the correspondent node.
  • the security policy database may also be updated to include the identity that the user regarded as a trusted party. If the user does not want to proceed, the registration process may be stopped (step 507), in which case no BU message is sent.
  • FIG. 6 illustrates the basic elements of the terminal according to one embodiment of the invention.
  • the mobile terminal 600 may include a transceiver 601 provided with at least one antenna 602, a control unit 603, user interface device 604 for creating a user interface through which the user can operate the terminal, and memory device 605, which may include one or more smart cards 606, such as a SIM card.
  • the memory device may further include the bindings and the security policy database 610 that includes information needed for secure communications.
  • the database may contain the high-level identifiers of trusted hosts, or rules that indicate which identifiers represent trusted hosts.
  • the control unit may compare the high-level identifier(s) obtained from the correspondent node with the content of the database, and handles, by controlling the user interface, the user interaction that follows, if the comparison does not indicate that the correspondent node is a trusted party.
  • the database rules may be implemented similarly as filtering rules are implemented in a firewall gateway, for example.
  • the BU policy database 610 may contain higher protocol layer identities to be matched and the related BU actions to be taken: (risto.mononen@nokia.com, BU-ok), (*. mononen@kolumbus.fi, BU-ok), (*, BU-nok).
  • the order of the rules and their precedence may follow the typical firewall policy database scenario.
  • the control unit may further handle the binding update process if an affirmative route optimization decision is made (either by the user or the control unit itself). It may also be possible to control the read or write access, or both, to the policy database with the security features of a tamper resistant smart card.
  • the Binding Update does not necessarily have to be transmitted when the care-of address changes, but it can also be sent periodically, for example. Consequently, the method can also be used in connection with a first periodic update when the mobile node stays at its location. It may also be possible to delegate the BU signaling or part of it to the network.
  • the home agent could then contain the policy decision point and send the BU when needed, i.e. the home agent could authenticate the correspondent node in the above-described manner.
  • the above- described determination devices which are responsive to the above authentication device
  • the address update devices which are responsive to the determination devices
  • the mechanism is mainly intended for Mobile IPv6, it may be utilized in connection with any protocol that allows a communicating peer to deduce the location of a node from a received message, thereby giving the node an option of prohibiting the process that allows such a deduction.
  • a correspondent node here refers to any node or network entity communicating with the mobile node.
  • various authentication or identification mechanisms may be utilized for obtaining the identity information about the correspondent node. These include mechanisms where the identity information is secured otherwise than cryptographically, such as DNS-based mechanisms.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Databases & Information Systems (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Facsimile Transmission Control (AREA)
  • Communication Control (AREA)
  • Storage Device Security (AREA)
  • Telephone Function (AREA)

Abstract

A mechanism for providing a mobile node with reliable information for location privacy decisions in connection with an address update process that gives the correspondent node a chance to deduce the location of the mobile node is provided. According to one embodiment of the invention, an indication is given when an address update process needs to be performed for optimizing routing between a mobile node and a correspondent node. In response to the indicating step, the correspondent node may be authenticated, the authentication yielding identity information about the correspondent node. Based on the identity information, a route optimization decision may be made based on whether or not the address update process is to be performed, and the address update process may be carried out depending on the decision.

Description

LOCATION PRIVACY IN A COMMUNICATION SYSTEM
BACKGROUND OF THE INVENTION:
Field of the Invention:
[0001] The invention relates generally to location privacy in a communication system. More particularly, the invention relates to a mechanism that allows a communicating party to prevent its whereabouts from being deduced by the opposite communicating party. The mechanism is mainly intended for Mobile Internet Protocol (IP) networks.
Description of the Related Art:
[0002] The protocols related to IP networks, such as the Internet, are developed by the Internet Engineering Task Force (IETF). The IETF has also been developing support for mobile IP nodes for both versions of IP (i.e. for IPv4 and IPv6). The main results of this work are the two Mobile IP protocols, Mobile IPv4 (RFC 2002) and Mobile IPv6 (work in progress, assumed to reach RFC status soon).
[0003] Mobile IP defines a mechanism by which a mobile node can change its IP address without interrupting any ongoing sessions with communicating peers. When moving across IP subnets, the mobile node obtains a new IP address facilitated by an access router. The mobile node then informs its home agent (HA) and, optionally, also the correspondent node (CN) about the change in the address by sending the new address (so-called care-of address) in a message called Binding Update (BU) to the home agent and optionally also to the correspondent node. The association of the mobile node's permanent home address with the care-of address of the mobile node is termed binding.
[0004] Based on the Binding Update, the correspondent node and possible eavesdroppers may deduce, with certain accuracy, the geographic location of the mobile node. For protecting its privacy, the mobile node can control the sending of the Binding Updates, so that less trusted correspondent nodes will not be given the chance to obtain the location information. The current proposal (draft-ietf-mobileip-ipv6-23, Mobility Support in IPv6, May 2003) states that "a mobile node may also choose to keep its topological location private from certain correspondent nodes, and thus need not initiate the correspondent registration." The correspondent registration is a process during which a Binding Update is sent to the correspondent node, causing a binding for the mobile node to be registered at the correspondent node. However, the problem related to this is that the mobile node does not really have sufficient information for the decision on whether or not to initiate the correspondent binding procedure.
[0005] Typically, the IP address and the related DNS (Domain Name System) name are the only identities of the correspondent node that the mobile node is aware of. The usability of these identities for verifying the identity of the correspondent node is, however, questionable for the following reasons. First, the IPv6 address is a 128-bit string and thus too hard to memorize for a human user. An identifier that is hard to memorize easily makes the user dubious about the trustworthiness of the correspondent node, and when dubious the user tends to omit the correspondent registration, in which case the routing between the two nodes remains unoptimized. This, in turn, causes overhead in the network. Second, the DNS is not a part of the MIPv6 architecture or trust model. Third, DNS data integrity cannot be trusted in today's Internet. The extensions to the Domain Name System, which are described in RFC 2535, try to improve the situation, but these extensions have not been taken into real use. Fourth, the correspondent node does not necessarily have a DNS name at all. This is the situation when a mobile correspondent node is away from its home network, for example.
SUMMARY OF THE INVENTION:
[0006] The invention provides a mobile node with reliable information for location privacy decisions in connection with an address update process that gives the correspondent node a chance to deduce the location of the mobile node.
[0007] In the invention, an authentication process is introduced into the beginning of the correspondent registration process so that a mobile node (on the end-user's behalf), or the end-user, is given a chance to prevent the sending of the new address to the correspondent node, if the authentication process indicates that the correspondent node is not necessarily a trusted party. The authentication process is such that it yields at least one high-level identifier of the correspondent node. The high-level identifier may refer to an identifier that is easier for a human user to associate with a certain person or organization than a mere IP address. This identifier may be the e-mail address or the DNS name of the correspondent node, for example. After a successful authentication process the mobile node thus knows, in addition to the IP address, at least one high-level identifier of the correspondent node, which may significantly increase the mobile node's or the user's knowledge of the trustworthiness of the correspondent node. The decision on the continuation and completion of the correspondent registration process is therefore made only after the authentication process. As discussed below in connection with FIG. 3 and 4, the high-level identifier may be cryptographically certified during the authentication process.
[0008] Thus one embodiment of the invention is the provision of a method for performing an address update in a communication system. The method includes the steps of indicating that an address update process needs to be performed, where location-related information about the mobile node is transmitted to the correspondent node if the address update process is performed, and authenticating the correspondent node in response to the indicating step. The authenticating step yields identity information about the correspondent node. The method also includes determining, based on the identity information, whether the address update process is to be carried out and performing the address update process when the determining step so indicates.
[0009] In another embodiment, the invention provides a mobile node for a communication system. The mobile node includes indicator means for giving an indication when an address update process needs to be performed, and authentication means for authenticating the correspondent node. The authentication means are responsive to the indicator means and yield identity information about the correspondent node. The mobile node further includes determination means, responsive to the authentication means, for determining whether the address update process is to be performed and address update means, responsive to the determination means, for carrying out the address update process.
[0010] In a further embodiment, the invention provides a system for performing address updates in a communication system. The system includes entities similar to the above functional entities of the mobile node, except that in the system of the invention the entities may be distributed between the mobile node and the network.
[0011] By means of the solution of the invention the mobile node can be provided with reliable identity information that allows a decision to be made on whether or not a correspondent registration can be performed when a need for the registration has been detected. The mobile node (or its user) may thus allow the correspondent registration to be carried out only when the identity information indicates that the correspondent node will not misuse the location information that is made available when the continuation is allowed.
[0012] A further advantage of the invention is that route optimization does not need to be omitted just because the mobile node or its user cannot recognize a trusted correspondent node. This decreases the overhead caused in the network. [0013] Since the mobile node may reverse-tunnel any traffic through the home agent while the authentication is in progress, the authentication does not necessarily increase the set-up time for the session or disrupt an ongoing session. Since the authentication is needed only once during a session, the signaling performance of the mobile node is not affected in connection with subsequent address changes.
BRIEF DESCRIPTION OF THE DRAWINGS:
[0014] In the following, the invention and many of its embodiments are described more closely with reference to the examples shown in FIG. 1 to 6 in the appended drawings, wherein:
[0015] FIG. 1 illustrates an example of a communication environment in which the principles of the invention may be implemented;
[0016] FIG. 2 illustrates the introduction of the authentication process into a route optimization procedure;
[0017] FIG. 3 illustrates the main steps of the authentication process of one embodiment of the invention;
[0018] FIG. 4 illustrates an example of an authentication process based on the Internet Key Exchange (IKEv2) authentication protocol;
[0019] FIG. 5 is a flow diagram illustrating one embodiment of the operation of a mobile node in connection with route optimization; and
[0020] FIG. 6 is a block diagram illustrating the basic elements of the terminal according to one embodiment of the invention.
DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS: [0021] FIG. 1 shows an example of a typical communication environment in which the invention can be applied. A mobile node 100, which may be, for example, an IPv6 compatible node, may be currently located in a foreign network 103 away from its home network 102. While being away from the home network, the mobile node is addressable at a so-called care-of address, which the mobile node has registered with its home agent 101 located in the home network. The association of the home address with the care-of address is termed "binding." When located outside its home network, the mobile node may use two different modes of communication when communicating with a correspondent node 104, which may be a mobile node or a fixed node. In the first mode the traffic may travel via the home agent: packets originated from the correspondent node may be routed to the home agent and then tunneled, utilizing the registered binding, to the mobile node. While the packets originated from the mobile node are first reverse-tunneled to the home agent, the packets are then routed to the correspondent node. In the second mode the mobile node may register its current binding with the correspondent node by sending a message called Binding Update (BU) to the correspondent node. Consequently, packets from the correspondent node can be routed directly to the mobile node. As a result, the shortest communication path between the mobile node and the correspondent node can be used. The second mode and its initialization may also be referred to as route optimization. Route optimization may be most beneficial when the corresponding node is close to a roaming mobile node, i.e. when the difference between the optimized and unoptimized routes is great. The difference may be measured as the difference in the number of intermediate nodes.
[0022] As discussed above, the correspondent node and possible eavesdroppers may, with certain accuracy, deduce, based on the BU, the geographic location of the mobile node. In the invention the mobile node may be provided with additional identity information for making the decision on whether the location of the node is to be kept private from the correspondent node when there is a need for route optimization. This may be accomplished by introducing an authentication process before the route optimization procedure with the correspondent node. The authentication process yields reliable higher-level identity information about the correspondent node for the mobile node and/or its user, and the outcome of the authentication process may stipulate whether route optimization towards the correspondent node should be performed.
[0023] FIG. 2 illustrates an example of the introduction of the authentication process before the route optimization procedure. When a mobile node 100 detects that routing is not optimized with respect to a correspondent node 104, mobile node 100 may make a decision to start a registration process in order to optimize the route (step 202). The decision to start the route optimization process may be made in the Mobile IP layer of the node, and various events 201 may trigger the decision. For example, reception of a packet routed unoptimally through the home agent may trigger the registration process. Another possible registration trigger may be the occurrence of a Mobile IP handover to a new care-of address when the mobile node 100 moves in the access network and the network signals the new care-of address to the mobile node. In response to the decision to start the correspondent registration, authentication of the correspondent node may first be started (step 203) in order to check whether the registration process can be completed. The authentication process may be such that it yields, in addition to the IP address of the correspondent node, additional high-level identity information about the correspondent node. Based on this information, the mobile node or its user may then make a route optimization decision (step 204), i.e. the mobile node decides whether the registration process can be completed or not. If the high- level information indicates that the correspondent node is a trusted party, the mobile node may initiate a route optimization procedure with the correspondent node (step 205). In the opposite case the mobile node may decide to stop the registration process in order not to reveal its care-of address to the correspondent node. At this stage the user may also be prompted to decide whether to continue the registration process. The authentication and the route optimization decision may be performed only once during a session, i.e. there may not be a need to repeat the authentication procedure if the care-of address of the mobile node changes after the correspondent node has already been successfully authenticated. [0024] In the invention, the correspondent node may thus be authenticated when a need to perform correspondent registration (i.e. route optimization) is detected. Depending on whether it is defined that this detection belongs to the route optimization or that the route optimization is a separate process started only after this detection, the invention may also be defined in two ways. First, if the detection is regarded as part of the route optimization, the start of the authentication process may freeze the route optimization and that the route optimization may be continued only if the route optimization decision made on the basis of the authentication process allows the continuation. Second, if the detection is not regarded as part of the actual route optimization, that the actual route optimization may be started conditionally, depending on the outcome of the authentication process.
[0025] The higher-level identity information obtained about the correspondent node may vary depending on the authentication protocol used. Although any authentication protocol that yields a trusted high-level identity of the correspondent node may be used, it is preferable to utilize authentication protocols that can be widely used for other purposes as well. Examples of such "general-purpose" authentication mechanisms are certificate-based authentication protocols, which are based on digital certificates that typically include at least a Distinguished Name (DN) and an associated public key. If the correspondent node is a mobile node, the certificate may be a subscriber certificate issued by the mobile operator, for example. However, if the correspondent node is a server, the certificate is typically issued by another Certification Authority (CA).
[0026] The session between the mobile node and the correspondent node may be initiated by either of the parties. In a mobile node initiated session the mobile node may start the session by sending at least the first packet as reverse-tunneled through the Home Agent and may start route optimization only later, in response to the triggering event. Alternatively, the mobile node may decide to start the route optimization before any other communication occurs with the correspondent node. In this case the authentication process is thus started before any packets are sent to the correspondent node. If the correspondent node initiates the session, it may obtain the home address of the mobile node as a result of a DNS query. The first packet(s) sent by the CN may thus be routed through the home agent of the mobile node.
[0027] In all cases, the signaling for certifying the identity of the correspondent node may be reverse-tunneled through the home agent in order not reveal the care-of address to the CN during the authentication process. While the authentication is in progress, the mobile node may reverse-tunnel any traffic through the home agent so that the authentication neither increases the set-up time for the session nor in any way disrupts an ongoing session.
[0028] FIG. 3 illustrates the main steps of an authentication process 203 according to one embodiment of the invention. This embodiment is based on the Internet Key Exchange (IKE) authentication protocol, which supports certificate-based authentication protocol among other mechanisms. The IKE is defined in RFC 2409. The following example is based on the draft of version 2 of the IKE, draft-ietf-ipsec-ikev2-08.txt.
[0029] Logically, the IKE-based authentication process may be divided into three successive stages. In the first stage (301) shown in FIG. 3, a secure communication pipe may be established between the mobile node and the correspondent node by means of the known Diffie-Hellman key exchange. In this first step session specific keys (SK) may be created so that confidentiality and integrity can be protected during subsequent communication between the two parties. Integrity protection prevents third parties from modifying the IKEv2 messages and from inserting messages into the IKEv2 negotiation. Confidentiality protection may be needed to protect the privacy of the communicating parties (among other things).
[0030] In the second step 302 in FIG. 3, the two parties inform each other about their identities. At this stage, the identity may only be claimed and the receiving party may not yet be able to verify the identity of the sending party. Public key certificates may be used as a tool for verifying the identity in the next, third step. The certificate may bind the identity with the public key.
[0031] The third step 303 may include of a random challenge and a verifiable response to that challenge. When not using extended authentication, the peers may be authenticated by having each sign a block of data (cf. chapters 2.15 and 2.16 in the IKEv2 draft). Alternatively, a shared secret can be used as the key. The data block, i.e. the challenge, may be a concatenation of octets from the earlier messages, the value of the nonce payload (Ni, Nr) and the value of the pseudo random function (prf) over certain message fields. The signature, i.e. the response, may use a cryptographic algorithm and a secret key to ensure that only the correct identity can give the correct response to the challenge. In the case of public key certificates, the private key may be used for signing and the public key may be used for verifying the signature. A successful response proves that the signer holds the private key matching the public one in the certificate. Therefore the signer's identity must be the one claimed in the certificate. Since the public/private key pair is unique and the private part is not known to outsiders, outsiders are not able to calculate the correct response.
[0032] The above outline may also be valid for the Transport Layer Security (TLS) handshake protocol. In the actual IKEv2 message exchange illustrated in FIG. 4, the above outline discussed regarding the embodiment of FIG. 3 may not be that clearly visible, since the messages carry information that is relevant to more than one of the above steps, in order to minimize the number of roundtrips in the message exchange. This may result in two request-reply pairs 401/402 and 403/404, while a straightforward, unoptimized implementation of the above three main steps may result in three message pairs, i.e. a message pair for each of the main steps. In the messages shown in FIG. 4, the term "HDR" refers to the IKEv2 header, the terms "i" and "r" refer to the initiator and the responder, respectively. The notation "SK{ }" indicates that the payload between the curly brackets is encrypted and integrity protected using the security keys that were agreed during the Diffie-Hellman exchange in steps 401/402. The other abbreviations in FIG. 4 refer to IKEv2 payloads as follows: SA refers to Security Association, KE to Key Exchange, ID to Identity, CERT to certificate, CERTREQ to Certificate Request, AUTH to Authentication, Ni to Initiator nonce, Nr to Responder nonce, TSi to Initiator Traffic Selector, and TSr to Responder Traffic Selector. The contents of the above messages are disclosed in more detail in the above-mentioned current draft of IKEv2.
[0033] The mobile node may also verify the current status of the certificate from an external server, such as an Online Certificate Status Protocol (OCSP) server. Furthermore, various trust models may be utilized, which provide interoperator trust propagation, so that certificates of roaming parties can be trusted.
[0034] FIG. 5 is a flow diagram illustrating one embodiment of the operation of the mobile node. When the mobile node makes a decision to initiate the route optimization process (step 501), the authentication process is started (step 502). As mentioned above, the decision to start the correspondent registration may be made in the Mobile IP layer in response to a triggering event. The authentication process yields at least one high-level identifier, which is then compared (step 503) with the content of a security policy database residing in the mobile node. The database may contain high-level identifiers of trusted hosts, or rules that indicate which identifiers represent trustworthy hosts. If the comparison with the database indicates that at least one high-level identifier obtained as a result of the authentication process represents a trusted host, the registration process is allowed to continue (step 505), and a BU is sent to the correspondent node. However, if the comparison indicates that the high-level identifier obtained does not belong to the group of trusted identifiers, the user of the mobile node may be prompted for a decision through the user interface of the node (step 504). A window containing the high-level identifier(s) obtained may be opened in the display of the mobile node. The text displayed in the window might be, for example, as follows: "You are about to reveal your local IP address to www.nokia.com. This information may be used to deduce your current location. Do you want to proceed?". If the user wants to proceed, i.e. if the user regards the high-level identity (www.nokia.com) as a trusted party, the registration may be allowed to continue, whereby a BU message is sent to the correspondent node. The security policy database may also be updated to include the identity that the user regarded as a trusted party. If the user does not want to proceed, the registration process may be stopped (step 507), in which case no BU message is sent.
[0035] As is obvious from the above, the process carried out in the mobile node corresponds otherwise to normal correspondent registration, but an additional phase has to be passed prior to the sending of the update message, the trustworthiness of the correspondent node being tested in the additional phase.
[0036] FIG. 6 illustrates the basic elements of the terminal according to one embodiment of the invention. The mobile terminal 600 may include a transceiver 601 provided with at least one antenna 602, a control unit 603, user interface device 604 for creating a user interface through which the user can operate the terminal, and memory device 605, which may include one or more smart cards 606, such as a SIM card. The memory device may further include the bindings and the security policy database 610 that includes information needed for secure communications. As to the correspondent registration, the database may contain the high-level identifiers of trusted hosts, or rules that indicate which identifiers represent trusted hosts. The control unit may compare the high-level identifier(s) obtained from the correspondent node with the content of the database, and handles, by controlling the user interface, the user interaction that follows, if the comparison does not indicate that the correspondent node is a trusted party. The database rules may be implemented similarly as filtering rules are implemented in a firewall gateway, for example. In addition to the IP addresses and port numbers that are typical firewall policy information, the BU policy database 610 may contain higher protocol layer identities to be matched and the related BU actions to be taken: (risto.mononen@nokia.com, BU-ok), (*. mononen@kolumbus.fi, BU-ok), (*, BU-nok). The order of the rules and their precedence may follow the typical firewall policy database scenario. However, in the invention it may be preferable to prompt the user, if none of the database entries indicates whether the correspondent node is trusted or not. Furthermore, it may be preferable that the user may maintain the database by inputting new high-level identities that represent trusted hosts, or by otherwise changing the content of the database through the user interface of the node. The control unit may further handle the binding update process if an affirmative route optimization decision is made (either by the user or the control unit itself). It may also be possible to control the read or write access, or both, to the policy database with the security features of a tamper resistant smart card.
[0037] Although the invention was described above with reference to the examples shown in the appended drawings, it is obvious that the invention is not limited to these, but may be modified by those skilled in the art without departing from the scope and spirit of the invention. It is, for example, possible to utilize the mechanism of the invention for purposes other than route optimization. Furthermore, should the standards vary, the implementation of the mechanism of the invention may be varied accordingly. Regarding Mobile IP, the Binding Update does not necessarily have to be transmitted when the care-of address changes, but it can also be sent periodically, for example. Consequently, the method can also be used in connection with a first periodic update when the mobile node stays at its location. It may also be possible to delegate the BU signaling or part of it to the network. The home agent could then contain the policy decision point and send the BU when needed, i.e. the home agent could authenticate the correspondent node in the above-described manner. However, instead of being located in the home agent, the above- described determination devices, which are responsive to the above authentication device, and the address update devices, which are responsive to the determination devices, may also be located in the mobile node, for example, even if the actual authentication means are located in the home agent. Even if the mechanism is mainly intended for Mobile IPv6, it may be utilized in connection with any protocol that allows a communicating peer to deduce the location of a node from a received message, thereby giving the node an option of prohibiting the process that allows such a deduction. It is therefore to be understood that the above use of terms common in a Mobile IP environment does not limit the environments in which the invention may be implemented. For example, a correspondent node here refers to any node or network entity communicating with the mobile node. Furthermore, various authentication or identification mechanisms may be utilized for obtaining the identity information about the correspondent node. These include mechanisms where the identity information is secured otherwise than cryptographically, such as DNS-based mechanisms.

Claims

CLAIMS:
1. A method for performing an address update in a communication system, the method comprising the steps of: - indicating that an address update process needs to be performed, wherein location-related information about a mobile node is transmitted to a correspondent node of the mobile node if the address update process is performed; - in response to the indicating step, authenticating the correspondent node, the authenticating step yielding identity information about the correspondent node; - based on the identity information, determining whether the address update process is to be carried out; and - performing the address update process when the determining step indicates that the address update process is to be carried out and omitting the address update process when the determining step indicates that the address update process is not to be carried out.
2. A method according to claim 1, wherein the performing step performs the address update for optimizing routing between the mobile node and the correspondent node.
3. A method according to claim 1, further comprising a step of storing security policy data in the mobile node, the security policy data indicating a set of trusted parties.
4. A method according to claim 3, wherein the determining step comprises comparing the identity information with the security policy data stored in the mobile node.
5. A method according to claim 4, wherein the performing step is carried out in response to the comparing step when the comparing step indicates that the correspondent node belongs to the set of trusted parties.
6. A method according to claim 4, wherein the determining step comprises prompting a user of the mobile node to make a decision when the comparing step indicates that the correspondent node fails to belong to the set of trusted parties, wherein the prompting step comprises informing the user about the identity information.
7. A method according to claim 1, wherein the indicating step comprises indicating that the address update process comprises a binding update process according to a Mobile IP protocol.
8. A method according to claim 7, wherein the indicating step is performed in response to a predetermined event.
9. A method according to claim 8, wherein the indicating step comprises responding to the predetermined event comprising reception of a packet routed via a home agent of the mobile node.
10. A method according to claim 8, wherein the indicating step comprises responding to the predetermined event comprising reception of a new address for the mobile node.
11. A method according to claim 3, wherein the storing step comprises storing the security policy data comprising high-level identifiers of trusted correspondent nodes.
12. A method according to claim 3, wherein the storing step comprises storing the security policy data comprising rules for deciding whether the identity information represents a trusted correspondent node.
13. A method according to claim 1, wherein the authenticating step comprises authenticating the correspondent node by means of a certificate-based authentication protocol.
14. A method according to claim 13, wherein the authenticating step comprises authenticating by means of the certificate-based authentication protocol comprising an Internet Key Exchange protocol.
15. A method according to claim 13, wherein the authenticating step comprises authenticating by means of the certificate-based authentication protocol comprising a Transport Layer Security protocol.
16. A method according to claim 1, wherein the authenticating step comprises authenticating by means of the authenticating step comprising certifying the identity information cryptographically.
17. A mobile node for a communication system, the mobile node comprising: indicator means for giving an indication when an address update process needs to be performed, location-related information about a mobile node being notified to a correspondent node of the mobile node if the address update process is performed; authentication means for authenticating the correspondent node, the authentication means being responsive to the indicator means and yielding identity information about the correspondent node; determination means, responsive to the authentication means, for determining whether the address update process is to be performed; and address update means, responsive to the determination means, for carrying out the address update process.
18. A mobile node according to claim 17, further comprising binding means for maintaining a binding, the binding being an association of a home address of the mobile node with a care-of address of the mobile node, wherein the correspondent node is informed of the binding when the address update process is performed.
19. A mobile node according to claim 17, wherein authentication means comprise a certificate-based authentication protocol.
20. A mobile node according to claim 17, wherein the authentication means comprise a Domain Name System-based protocol for obtaining the identity information.
21. A mobile node according to claim 17, wherein the determining means comprise a security policy database, the determination means being configured to determine, by means of the security policy database, whether the address update means can be activated without consulting a user of the mobile node.
22. A mobile node according to claim 21, wherein the determining means further comprise user interaction means for prompting the user to make a decision on whether the address update process is to be performed.
23. A mobile node according to claim 22, wherein the user interaction means are configured to indicate the identity information to the user, the identity information comprising a high-level identifier of the correspondent node.
24. A mobile node according to claim 21, wherein the security policy database comprises identifiers of trusted correspondent nodes.
25. A mobile node according to claim 21, wherein the security policy database comprises rules for determining whether a given identifier represents a trusted correspondent node.
26. A system for performing address updates in a communication system comprising: indicator means for giving an indication when an address update process needs to be performed, location-related information about a mobile node being notified to a correspondent node of the mobile node if the address update process is performed; authentication means for authenticating the correspondent node, the authentication means being responsive to the indicator means and yielding identity information about the correspondent node; determination means, responsive to the authentication means, for determining whether the address update process is to be performed; and address update means, responsive to the determination means, for carrying out the address update process.
27. A system according to claim 26, wherein the authentication means are located in the mobile node.
28. A system according to claim 26, wherein the authentication means are located in a home agent of the mobile node.
29. A system according to claim 26, wherein the address update means are located in a home agent of the mobile node.
30. A system according to claim 28, wherein the determination means are located in the home agent of the mobile node.
PCT/FI2004/000515 2003-09-04 2004-09-03 Location privacy in a communication system WO2005025174A1 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
JP2006525845A JP4477003B2 (en) 2003-09-04 2004-09-03 Location privacy in communication systems
DE602004015123T DE602004015123D1 (en) 2003-09-04 2004-09-03 POSITION SECRETIZATION IN A COMMUNICATION SYSTEM
EP04767029A EP1661364B1 (en) 2003-09-04 2004-09-03 Location privacy in a communication system

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
FI20031258A FI20031258A0 (en) 2003-09-04 2003-09-04 Location privacy in the communication system
FI20031258 2003-09-04

Publications (1)

Publication Number Publication Date
WO2005025174A1 true WO2005025174A1 (en) 2005-03-17

Family

ID=27838931

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/FI2004/000515 WO2005025174A1 (en) 2003-09-04 2004-09-03 Location privacy in a communication system

Country Status (8)

Country Link
US (1) US7426746B2 (en)
EP (1) EP1661364B1 (en)
JP (1) JP4477003B2 (en)
CN (1) CN100558101C (en)
AT (1) ATE401729T1 (en)
DE (1) DE602004015123D1 (en)
FI (1) FI20031258A0 (en)
WO (1) WO2005025174A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2008146395A1 (en) * 2007-05-31 2008-12-04 Panasonic Corporation Network relay device, communication terminal, and encryption communication method
JP2013138474A (en) * 2006-12-01 2013-07-11 Microsoft Corp Authentication delegation based on re-verification of cryptographic evidence

Families Citing this family (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8186026B2 (en) * 2004-03-03 2012-05-29 Rockstar Bidco, LP Technique for maintaining secure network connections
US7991854B2 (en) * 2004-03-19 2011-08-02 Microsoft Corporation Dynamic session maintenance for mobile computing devices
KR100636318B1 (en) * 2004-09-07 2006-10-18 삼성전자주식회사 Method and system for authentication of address ownership using care of address binding protocol
US8594323B2 (en) * 2004-09-21 2013-11-26 Rockstar Consortium Us Lp Method and apparatus for generating large numbers of encryption keys
WO2006102565A2 (en) * 2005-03-23 2006-09-28 Nortel Networks Limited Optimized derivation of handover keys in mobile ipv6
US7881468B2 (en) * 2005-04-08 2011-02-01 Telefonaktiebolaget L M Ericsson (Publ) Secret authentication key setup in mobile IPv6
US8185935B2 (en) * 2005-06-14 2012-05-22 Qualcomm Incorporated Method and apparatus for dynamic home address assignment by home agent in multiple network interworking
WO2007101628A1 (en) * 2006-03-08 2007-09-13 Matsushita Electric Industrial Co., Ltd. Mobile ipv6 optimised reverse tunnelling for multi-homed terminals
EP1739893A1 (en) 2005-06-30 2007-01-03 Matsushita Electric Industrial Co., Ltd. Optimized reverse tunnelling for packet switched mobile communication systems
CN101005698B (en) 2006-01-20 2010-07-07 华为技术有限公司 Method and system for optimizing route in moving IPv6
JP4990920B2 (en) * 2006-03-08 2012-08-01 パナソニック株式会社 Mobile IPv6 optimized reverse tunneling for multihomed terminals
US7881470B2 (en) * 2006-03-09 2011-02-01 Intel Corporation Network mobility security management
GB2436665A (en) * 2006-03-31 2007-10-03 Fujitsu Ltd Efficient call routing while roaming
EP2050244B1 (en) * 2006-08-09 2012-12-05 Telefonaktiebolaget LM Ericsson (publ) A method and apparatus for routing a packet in mobile ip system
US8312155B2 (en) * 2006-11-28 2012-11-13 Canon Kabushiki Kaisha Service publication restriction apparatus, method, and computer-readable storage medium
CN101330498A (en) * 2007-06-20 2008-12-24 朗迅科技公司 SIP endpoint collocation in a VoIP network
US7894420B2 (en) * 2007-07-12 2011-02-22 Intel Corporation Fast path packet destination mechanism for network mobility via secure PKI channel
US7747784B2 (en) * 2008-03-04 2010-06-29 Apple Inc. Data synchronization protocol
EP2337386A1 (en) * 2009-12-15 2011-06-22 Alcatel Lucent Method and system for routing data to a mobile node in a foreign network
EP2840856B1 (en) * 2010-04-16 2017-06-07 Interdigital Patent Holdings, Inc. Inter-unit transfer support using mobile internet protocol
US9411967B2 (en) 2012-08-24 2016-08-09 Environmental Systems Research Institute (ESRI) Systems and methods for managing location data and providing a privacy framework
US11337177B2 (en) 2020-09-23 2022-05-17 Glowstik, Inc. System and method for generating amorphous dynamic display icons

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002043427A1 (en) * 2000-11-24 2002-05-30 Telefonaktiebolaget Lm Ericsson (Publ) Ipsec connections for mobile wireless terminals
US20030093553A1 (en) * 2001-11-09 2003-05-15 Franck Le Method, system and system entities for providing location privacy in communication networks

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6760444B1 (en) * 1999-01-08 2004-07-06 Cisco Technology, Inc. Mobile IP authentication
DE60011990T2 (en) * 2000-02-22 2005-07-07 Telefonaktiebolaget Lm Ericsson (Publ) Method and device in a communication network
US6915325B1 (en) * 2000-03-13 2005-07-05 Nortel Networks Ltd Method and program code for communicating with a mobile node through tunnels
US6954790B2 (en) * 2000-12-05 2005-10-11 Interactive People Unplugged Ab Network-based mobile workgroup system
US7286671B2 (en) * 2001-11-09 2007-10-23 Ntt Docomo Inc. Secure network access method
US7023828B2 (en) * 2001-11-19 2006-04-04 Motorola, Inc. Method and apparatus for a mobile node to maintain location privacy from selected correspondent nodes

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002043427A1 (en) * 2000-11-24 2002-05-30 Telefonaktiebolaget Lm Ericsson (Publ) Ipsec connections for mobile wireless terminals
US20030093553A1 (en) * 2001-11-09 2003-05-15 Franck Le Method, system and system entities for providing location privacy in communication networks

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
CHOI S. ET AL.: "Practical solution for location privacy i nmobile IPv6", 4TH INTERNATIONAL WORKSHOP, WISA 2003, 25 August 2003 (2003-08-25) - 27 August 2003 (2003-08-27), XP002903888 *

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2013138474A (en) * 2006-12-01 2013-07-11 Microsoft Corp Authentication delegation based on re-verification of cryptographic evidence
US9055107B2 (en) 2006-12-01 2015-06-09 Microsoft Technology Licensing, Llc Authentication delegation based on re-verification of cryptographic evidence
WO2008146395A1 (en) * 2007-05-31 2008-12-04 Panasonic Corporation Network relay device, communication terminal, and encryption communication method

Also Published As

Publication number Publication date
EP1661364B1 (en) 2008-07-16
DE602004015123D1 (en) 2008-08-28
JP2007504763A (en) 2007-03-01
FI20031258A0 (en) 2003-09-04
JP4477003B2 (en) 2010-06-09
CN1846423A (en) 2006-10-11
ATE401729T1 (en) 2008-08-15
CN100558101C (en) 2009-11-04
EP1661364A1 (en) 2006-05-31
US20050055576A1 (en) 2005-03-10
US7426746B2 (en) 2008-09-16

Similar Documents

Publication Publication Date Title
US7426746B2 (en) Location privacy in a communication system
US8549294B2 (en) Securing home agent to mobile node communication with HA-MN key
US8918522B2 (en) Re-establishment of a security association
JP4913909B2 (en) Route optimization in mobile IP networks
JP4585002B2 (en) High-speed network connection mechanism
Tuladhar et al. Inter-domain authentication for seamless roaming in heterogeneous wireless networks
Qiu et al. Protecting all traffic channels in Mobile IPv6 network
EP1836559A2 (en) Apparatus and method for traversing gateway device using a plurality of batons
Qiu et al. A pmipv6-based secured mobility scheme for 6lowpan
Li et al. A proxy based authentication localisation scheme for handover between non trust-associated domains
Song et al. A secure and lightweight approach for routing optimization in mobile IPv6
Haitao et al. The security issues and countermeasures in Mobile IP
WO2010003326A1 (en) A method for protecting the proxy neighbor discovery, and a system and related apparatus thereof
Ameur et al. Secure Reactive Fast Proxy MIPv6-Based NEtwork MObility (SRFP-NEMO) for Vehicular Ad-hoc Networks (VANETs).
Mufti et al. Design and implementation of a secure mobile IP protocol
Qiu et al. A secure pmipv6-based group mobility scheme for 6l0wpan networks
Allard et al. Security analysis and security optimizations for the context transfer protocol
Cheng et al. Security Analysis of LWAPP
Mononen et al. Location Privacy in Mobile IPv6.
Raman Security in wireless networks
Modares et al. Securing binding update in mobile IPv6 using private key base binding update protocol
Qiu et al. Trusted connection between mobile nodes and mobility anchor points in hierarchical mobile IPv6
Georgiades et al. Distributed authentication protocol for the security of binding updates in mobile IPv6
Shah et al. Research Article A TOTP-Based Enhanced Route Optimization Procedure for Mobile IPv6 to Reduce Handover Delay and Signalling Overhead
Modares Enhancing Security in Mobile IPv6 with Private Key-Based Binding Update Protocol

Legal Events

Date Code Title Description
WWE Wipo information: entry into national phase

Ref document number: 200480025446.4

Country of ref document: CN

AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2006525845

Country of ref document: JP

WWE Wipo information: entry into national phase

Ref document number: 2004767029

Country of ref document: EP

WWP Wipo information: published in national office

Ref document number: 2004767029

Country of ref document: EP

WWG Wipo information: grant in national office

Ref document number: 2004767029

Country of ref document: EP