| Abstract The development and application of traditional Internet now can be seen anywhere in our daily life and work. Internet can provide for us abundant value-added services, and also it holds tremendous information resources, thus greatly facilitating our convenient share and utilization of them. Though, internet does have a big disadvantage of being unable to support host mobility, which leads to it's inability to fulfill our daily-increasing mobility requirements. Comparatively, mobile communication has strong roaming capacity support, and now is in many countries going to be more pervasive than PSTN. The biggest problem of mobile communication is that it's major services are voice-oriented. However, with the quick pacing of technology the industry commonly holds a optimistic view on the coming integration between Internet and mobile communication . Mobile IP may positively exert its influence on this dramatic evolving process. Firstly, the thesis briefly describes the introduction process of Mobile IP technology and the architecture of Mobile II" and also the development state and the application prospect of Mobile IP. Mobile IP is a kind of technology that lies in Network Layer, owns good Macro-Mobility Management Performance, is able to transparently support different technologies in Link Layer and the hand-off between them. Furthermore, Mobile LP is going to play an important role in future 3G network. With the quick pacing of technologies, Mobile I" is promising to be an ingredient of All-IP network. Though, many problems do exist in Mobile LP, such as the inability to support effectively Micro-Mobility Management which causes the need to develop and deploy new mechanisms in Mobile IP network, and the tn-angle routing problem which simply leads to the degradation of routing efficiency. What's more, in the process of developing and applying Mobile IP, the problem concerning network security, good support for upper layer protocol and value-add services needs to be more fully resolved. Thereafter, the thesis employs the "Data and Control Plane Separation" standpoint to analyze the IP network security problem and finally gets a rough image that IP network security consists of two parts: IP network control security and IP network data security; with the preliminaiy exploration of Mobile IP essence the author deems that if the Mobile IP extended routing mechanism security can be strongly ensured, the Mobile IP control security will be no less than the traditional IP control security. Consequently, the Mobile IP network security as a whole is to share roughly the same degree of security with traiditional IP network. Under the direction of this viewpoint, the thesis proposes a Hybrid Key Based Authentication solution, which extends 3 Mobile LP control messages and introduces several new extensions. The new solution assimilates fully the advantages both from the Symmetric Key Mechanism and the Asymmetric Key Mechanism, thus can not only provides for Mobile IP control messages strong authentication services but also achieves comparatively high protocol efficiency and good scalability. Finally the thesis compares and evaluates carefully the newly suggested solution against the "Mobile IP Public Key based Authentication"proposed by Jacobs and the Min-PKA (Minimal Public Key Based Authentication) protocol proposed by Sufatrio. The evaluation result shows that the new solution has somewhat satisfying security, dependab... |
PDF Full Text Request