Identity based security for authentication and mobility in future ID oriented networks

This paper firstly reviews the paradigm of identity locator split, which smoothly solves the problem of overloaded semantics of IP address and is regarded as the evolution direction for future networks. Based on this paradigm, the framework of ID Oriented Networking (ION) with a few essential components for security enhancements is then introduced, which serves as the overall architectural foundation of the proposed scheme. Subsequently, the basics of Identity Based Signature (IBS) are briefly described, which is followed by the detailed implementations of our proposal for achieving securer authentication during node mobility. Afterwards, a few evaluation results and analysis are presented to show the feasibility and potential advantages of our proposal, along with the cost to pay for gaining these advantages. In particular, the proposal covers main processes for enabling secure authentication in mobility under ION framework, which includes AAA-based distribution of ID relevant security parameters, ID-based key negotiation and authentication for mapping information query and update, authentication of binding update and session key negotiation, handover process between two attachment points. In addition, some generalized applications are presented as well, with the requirements of simultaneously enhanced security in authentication and native support for fast mobility in future networks.