Secure address proxying using multi-key cryptographically generated addresses

Assignee

• NTT DOCOMO, INC. · JP

Inventors

• James Kempf · Mountain View, US
• Craig B. Gentry · Mountain View, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04W80/04
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

A method allows Internet Protocol version 6 (IPv6) nodes that use Mobile IPv6 for mobility management, or DHCP for address provisioning, to securely claim and defend their network addresses themselves or through proxies using the SEND protocol. The network node may also sign and verify a message that claims and defends a network address. The network address to be claimed and defended may be either autoconfigured or obtained from a server using the DHCPv6 protocol. If the MCGA is generated by a mobile IPv6 node as a mobile IPv6 home address, the MCGA can be securely proxied by the mobile IPv6 home agent after the mobile node has left the home link. However, if the MCGA is generated as a mobile IPv6 care-of address by a mobile IPv6 node while on a foreign subnet, the MCGA can be securely proxied by the current or new access router, before the mobile node arrives on the link and after it has left the link, respectively.