Mobile IPv6 Authentication and Authorization Baseline
Abstract
Various embodiments describe an authentication protocol for the Home Agent to authenticate and authorize the Mobile Node's Binding Update message. Two new mobility options compatible with RADIUS AAA are used to exchange a shared secret between the Home Agent and the Mobile Node so the Mobile Node can be authenticated. A Mobile Node-AAA authenticator option is added to the Binding Update message. The Home Agent generates the Mobile Node-AAA authenticator as a shared secret that it communicates as authentication data to the RADIUS AAA server on the home network. The RADIUS AAA server authenticates the communication and generates an Access-Accept message with a Mobile Node-Home Agent authenticator option. After receipt at the Home Agent, a Binding Update message with the Mobile Node-Home Agent authenticator option is transmitted from the Home Agent to the Mobile Node to use as an authenticator.
Claims
exact text as granted — not AI-modifiedWhat is claimed is:
1 . A method comprising:
receiving a binding update message containing a first authenticator data element generated using a first algorithm and a first shared secret, the binding update message generated at a mobile node in a first network and received at a node in a second network; generating a second shared secret using a second algorithm and the first shared secret; generating a second authenticator data element using the second shared secret; and sending a binding acknowledgement message to the mobile node, the binding acknowledgement message containing the second authenticator data element.Cited by (0)
No later patents cite this yet.
References (0)
No backward citations on record.