Paul Swenson - Article Presentation

Download Report

Transcript Paul Swenson - Article Presentation

IPv6 Multihoming Support in
the Mobile Internet
Presented by Paul Swenson
CMSC 681, Fall 2007
Article by M. Bagnulo et. al. and published in the
October 2007 issue of IEEE Wireless Communications
Mobile Device Networking Support
• Modern “fourth-generation” (or 4G) mobile
devices support multiple network interfaces
– Today, in the US, can buy advanced PDA phones that
can speak both 802.11g (Wi-fi) and 1xRTT/EV-DO for
data service.
– Carriers will soon be rolling out 802.16 WiMAX
networks in the 2.5GHz and 700MHz bands (pending
FCC auctioning of the new wireless spectrum).
– Mobile phones of tomorrow will support these
technologies and more for accessing Internet
resources.
Benefits of Multiple Physical
Interfaces
• By providing multiple redundant data interfaces,
•
roaming capabilities are greatly enhanced
Multiple path technology would allow for fault
tolerance in data connections
– Preservation of established communications through
outages of service or requisite roaming from one
service to another
• Ability to route flow of data based on predefined
quantifiers such as cost of access or quality of
the connection
Problems with Current
Implementations
• None of the currently-available mobility protocols
•
•
support those advanced features
Current mobile devices support different
interfaces, but switching is far from seamless,
mostly a manual process right now
In order to fully realize the possibilities of
modern mobile networks, a mechanism to
provide mobile host multihoming support is
required
Mobile IPv6 and SHIM6
• The paper’s proposed solution to this
problem is a combined Mobile IPv6
(MIPv6) and SHIM6-based approach
– Backwards-compatible with existing transport
protocols/applications
– Any existing TCP or UDP-based protocols will
benefit from the enhanced fault tolerance
provided
– Works around limitations inherent to MIPv6
Mobile IPv6 Multihoming Support
• Mobile IPv6 supports multihoming natively
•
•
without any extra help
Requires the client to send a special “Binding
Update” MIPv6 message that it is going to be
changing its active interface from the home
address
Packets then are redirected to the “Mobile Node”
until another “Binding Update” redirects them
back to the home address
Disadvantages to this Approach
• If the connection between the handset and the
•
•
home network is broken, there is no automatic
failover to the mobile node
Connections established while connected to the
home network or one of the mobile nodes must
be re-established, no automatic failover
Requires the home agent (a server running on
the home network) to be available even when
roaming as a mobile node for traffic to get
through
Why IPv6?
• IPv6 provides any-to-any route
optimization support allowing packets to
flow across whichever route is best suited
(or available) to carry the flow of
information
• Allow direct communication between the
mobile node and the remote server w/out
depending on the home agent
SHIM6 and Multihoming
• SHIM6 handles the case where you have a
host A with n distinct addresses wanting
to communicate with a host B with m
distinct addresses.
– A and B should be able to communicate
across any of the addresses to any of the
other addresses and all packets should make
it to their destination w/out any input from
the protocol layer
SHIM6 and Multihoming (2)
• Within the SHIM6 scheme, host A will do a DNS
•
•
lookup, obtaining a subset of the addresses for
host B.
SHIM6 will then use the RFC 3484 address
selection process for IPv6 to choose one of the
addresses of B to contact it on.
Now, as part of the SHIM6 negotiation, the two
peers exchange alternate locators so that in the
event that one of the links fails, each end of the
communication will know all possible ways to
reach the other host.
SHIM6 and Multihoming (3)
• IPv6 Reachability Protocol (REAP) is then
used to verify that the currently used path
is functioning.
• Special keepalive packets are sent when
data has not been transmitted after a
certain amount of time in order to allow
REAP to detect an outage based on time
since last packet received
SHIM6 and Failures
• When a failure is detected by one of the hosts, that host
•
•
enters an “exploratory phase” in which special probe
packets are sent to each of the known addresses on the
other end of the link (and using multiple interfaces on
that host’s side)
Based upon the received responses the communications
channel is redirected over links that were successful in
reaching the other host, thus preserving the information
flow (be it connection-oriented or connection-less).
Thanks to SHIM6 and MIPv6, packets end up going to
the target system, not a specific IP address on that
system.
Security in SHIM6
• SHIM6 protects against redirection attacks
using Cryptographically Generated
Addresses (CGA)
– CGAs are regular unicast IPv6 addresses that
are signed with the interface identifier, a
public key and the prefix of the address
• This allows a host to claim ownership over
a specific CGA since it owns the private
key
Architecture (MIPv6 and SHIM6)
• The SHIM6 layer is considered to be on
top (it is what applications interact with)
• The Mobile IPv6 layer is then situated
below that in a block diagram
• The IP forwarding sublayer is then below
the MIPv6 layer
Conclusions
• Article provides an architecture for providing
•
•
•
multihoming + failover support to 4G wireless nodes that
will be capable of multiple simultaneous network links
Makes use of standard Mobile IPv6 and overlays SHIM6
on top to provide advanced failure detection using REAP
and recovery support thanks to SHIM6
Works without any modifications to the Mobile IPv6
protocol, making use of a standards-compliant
multihoming mechanism layered on top of it.
Minimizes changes required to existing protocols (they
should be able to function with little or no change and
without being aware of the SHIM6 layer at all).