Title :
Secure Host Identity Delegation for Mobility
Author :
Herborn, Stephen ; Huber, Alex ; Boreli, Roksana ; Seneviratne, Aruna
Author_Institution :
Networking & Pervasive Comput., Nat. ICT Australia, Sydney, NSW, Australia
Abstract :
We develop a scheme for host identity delegation based on the Host Identity Protocol (HIP). We show how this scheme can be applied to enable the movement of communication sessions between devices e.g. in a Personal Area Network (PAN), or to securely and seamlessly insert any number of service proxies in between session endpoints e.g. to adapt data to suit different devices in a PAN. Identities are securely delegated by relaying HIP signalling messages to the device that owns the private key. This avoids security issues caused by dissemination of private keys. This also ensures that delegated endpoint identities are instantly and permanently revocable by the original device which remains in full control of the private key used to authorize use of the identity. We show that the delegation process introduces minimal additional signalling, and present results of evaluation of a prototype which show the scheme results in no detriment to the performance of HIP.
Keywords :
authorisation; mobility management (mobile radio); personal area networks; private key cryptography; protocols; telecommunication security; authorization; communication session movement; endpoint identities; host identity delegation security; host identity protocol; mobility; personal area network; private key dissemination; Australia; Data security; Hip; Personal area networks; Pervasive computing; Protocols; Prototypes; Relays; Signal processing; Software prototyping;
Conference_Titel :
Communication Systems Software and Middleware, 2007. COMSWARE 2007. 2nd International Conference on
Conference_Location :
Bangalore
Print_ISBN :
1-4244-0613-7
DOI :
10.1109/COMSWA.2007.382596
