Handover mechanisms in next generation heterogeneous wireless ...

More documents

Recommendations

Info

SECURITY FOR HANDOVER ACROSS HETEROGENEOUS WIRELESS NETWORKS effectively reduce the number of roaming agreements required for interoperation from 2 O ( N ) to O (N ) as stated in [53]. In Figure 3.5, three different types of AAA entities are presented: Foreign AAA server (FAAA), Home AAA server (HAAA) and AAA proxy. An AAA server may play these different roles in different contexts. For example, the AAA server in a network may negotiate the identity verification with an external authority (e.g. HAAA) when dealing with a roaming mobile user, and in this case, acts as a FAAA. When processing authentication requests from its own subscriber residing in either its own network or a foreign network, the same AAA server makes authorisation decision and acts as a HAAA. When it has been interconnected with a series of AAA servers with relevant trust associations in place, this AAA server may serve as an AAA proxy for relaying AAA messages from/to other networks. RFC 2903 [54] proposed such a generic AAA architecture that facilitates interoperability between peered AAA servers via a standard AAA protocol. Figure 3.5 indicates a security model that is applied to the presented AAA architecture. It is important to identify all the trust relationships needed for such an AAA architecture. With the concept borrowed from the social science literature, there is no clear consensus on the definition of trust in distributed computer networks [55]. A trust relationship is enforced on top of a number of security features that are enabled via a security association between two entities. Therefore, it is interpreted as security association in some literatures [53, 56, 57]. A security association between entities X and Y is defined as the combination of the entities’ identity information (e.g. Network Access Identifier, NAI), some forms of cryptographic keys (e.g., public keys, preshared symmetric keys), and information on cryptographic algorithms to use in order to authenticate and/or protect data in transit between X and Y [53]. Figure 3.6 shows all forms of trust relationship that need to be present on a generic AAA architecture. First, the MH has a trust relationship TR MH , HAAA with its HAAA, which means that the MH belongs to its home network. Second, the FAAA and HAAA have to trust each other for service roaming; otherwise, they can not exchange AAA messages to pass authentication requests. The trust relationship TR FAAA, HAAA between the - 46 -
SECURITY FOR HANDOVER ACROSS HETEROGENEOUS WIRELESS NETWORKS FAAA and HAAA can be established through shared keys, and is governed by a legally binding roaming agreement [58]. Third, a transitive trust relationship TR MH , FAAA is required to make local resources that are under the control of the FAAA in the visited network accessible to the MH. This trust relationship to be established during a handover attachment is denoted as the implicit trust relationship [52], in contrast to the two explicit trust relationship TR MH , HAAA and TR FAAA, HAAA . TR MH , FAAA TRFAAA, Pr o TR Pro, HAAA TR MH , HAAA - 47 - TR FAAA, HAAA Figure 3.6 Trust relationships on the generic AAA architecture 3.3.2 Access, Authorisation, and Accounting (AAA) Protocols Modern wireless networks rely on the three-party authentication model (shown in Figure 3.1) as well as a proxy-chaining architecture, where a network access server (as a pass-through) at the edge of a network interacts with a back-end AAA server (for authentication and authorisation) through AAA protocols to conduct access control. Figure 3.7 shows where AAA protocols may play a role in a generic AAA architecture. Figure 3.7 AAA protocols in a generic AAA architecture The authentication protocols such as Extensible Authentication Protocol (EAP) [18] provide a generic authentication framework. The EAP does not perform authentication,
Page 1 and 2:
Handover Mechanisms in Next Generat
Page 3 and 4:
ACKNOWLEDGMENT First of all, I woul
Page 5 and 6:
TABLE OF CONTENTS 4.4.2 Power Save
Page 7 and 8: LIST OF FIGURES LIST OF FIGURES Fig
Page 9 and 10: LIST OF FIGURES Figure 7.2 A generi
Page 11 and 12: ABSTRACT New access technologies su
Page 13 and 14: Chapter 1 INTRODUCTION New access t
Page 15 and 16: INTRODUCTION becomes available. Han
Page 17 and 18: INTRODUCTION The above multipliciti
Page 19 and 20: INTRODUCTION network trust pattern
Page 21 and 22: INTRODUCTION 1.3 Related Publicatio
Page 23 and 24: INTRODUCTION TECHNICAL REPORTS XIII
Page 25 and 26: HANDOVER MANAGEMENT horizontally. H
Page 27 and 28: HANDOVER MANAGEMENT The objective o
Page 29 and 30: HANDOVER MANAGEMENT air interface,
Page 31 and 32: HANDOVER MANAGEMENT proposed archit
Page 33 and 34: HANDOVER MANAGEMENT Access point (A
Page 35 and 36: HANDOVER MANAGEMENT users. Moreover
Page 37 and 38: HANDOVER MANAGEMENT For IEEE 802.11
Page 39 and 40: HANDOVER MANAGEMENT The two schemes
Page 41 and 42: HANDOVER MANAGEMENT When a MH is mo
Page 43 and 44: 3.1 Introduction Chapter 3 HANDOVER
Page 45 and 46: SECURITY FOR HANDOVER ACROSS HETERO
Page 57: SECURITY FOR HANDOVER ACROSS HETERO
Page 69 and 70: DYNAMIC NEIGHBOUR TRUST INFORMATION
Page 93 and 94: Chapter 5 TRUST ASSISTED HANDOVER A
Page 95 and 96: TRUST ASSISTED HANDOVER ALGORITHM F
Page 109 and 110:
TRUST ASSISTED HANDOVER ALGORITHM F
Page 111 and 112:
Page 113 and 114:
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
Chapter 6 PROXY BASED AUTHENTICATIO
Page 125 and 126:
PROXY BASED AUTHENTICATION LOCALISA
Page 127 and 128:
Page 129 and 130:
Page 131 and 132:
Page 133 and 134:
Page 135 and 136:
Page 137 and 138:
Page 139 and 140:
Page 141 and 142:
Page 143 and 144:
Page 145 and 146:
Page 147 and 148:
MULTI-INTERFACE MOBILE MODEL FOR ME
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
Page 155 and 156:
Page 157 and 158:
Page 159 and 160:
Page 161 and 162:
Page 163 and 164:
Page 165 and 166:
Page 167 and 168:
Page 169 and 170:
CONCLUSIONS AND FUTURE RESEARCH WOR
Page 171 and 172:
Page 173 and 174:
Page 175 and 176:
ABBREVIATIONS 3G 3rd Generation Wir
Page 177 and 178:
ABBREVIATIONS LS Location Server MH
Page 179 and 180:
ABBREVIATIONS THOA Trust Assisted H
Page 181 and 182:
REFERENCES [12] C. Politis, T. Oda,
Page 183 and 184:
REFERENCES [37] Wi-Fi Alliance, "Wi
Page 185 and 186:
REFERENCES presented at IEEE Intern
Page 187 and 188:
REFERENCES [90] R. Verdone and A. Z
Page 189:
REFERENCES [116] K. E. Malki and H.
show all

Handover mechanisms in next generation heterogeneous wireless ...

Create successful ePaper yourself

Delete template?

Save as template?