IP address authorization for secure address proxying using multi-key CGAs and ring signatures

Authors:
James Kempf;Jonathan Wood;Zulfikar Ramzan;Craig Gentry
Affiliations:
DoCoMo Labs USA, San Jose, CA;Nominum, Inc., Redwood City, CA;Symantec, Inc., Redwood City, CA;Computer Science Dept., Stanford University, Stanford, CA
Venue:
IWSEC'06 Proceedings of the 1st international conference on Security
Year:
2006

Citing 4
Cited 1

Child-proof authentication for MIPv6 (CAM)

ACM SIGCOMM Computer Communication Review
How to Leak a Secret

ASIACRYPT '01 Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
Crypto-based identifiers (CBIDs): Concepts and applications

ACM Transactions on Information and System Security (TISSEC)
Group signatures

EUROCRYPT'91 Proceedings of the 10th annual international conference on Theory and application of cryptographic techniques

Implementation and evaluation of the Shim6 protocol in the Linux kernel

Computer Communications

Quantified Score

Hi-index	0.00

Visualization

Abstract

Address proxying is a process by which one IP node acts as an endpoint intermediary for an IP address that actually belongs to another IP node. Address proxying serves many useful functions in IP networks. In IPv6, the Secure Neighbor Discovery Protocol (SEND) provides powerful tools for securing the mapping between the IP address and the link address which is the basis of local link address proxying; however, these tools don't work for address proxies. In this paper, we present an extension to SEND for secure proxying. As an example of how secure address proxying can be used, we propose a minor extension of the Mobile IPv6 protocol to allow secure proxying by the home agent. We then present measurements comparing SEND with and without the address proxying extensions.