| Summary: | 碩士 === 朝陽科技大學 === 資訊工程系碩士班 === 93 === The mobile IP network environment for users is very vulnerable to malicious attacks, such as denial-of-service, man-in-the-middle, and other types of attacks. For protection, the IETF standard mobile IP protocol is modified with IP security (IPSec) primitives, which control the packet flow from a mobile host through multiple security gateways. In addition, IPSec uses strong cryptographic authentication and encryption algorithms to protect the integrity and confidentiality of IP traffic. In this thesis, we focus on the fundamental security problem of how to protect communication between mobile nodes for mobile IP networks. We propose an IPSec-based key management algorithm for mobile IP networks. We are divided into the mobile IP network environment to wired and wireless networks. In the wired network by IPSec Authentication at insure the credibility of the data source. In the wireless network, the proposed scheme produce two keys in each security gateway, transfers a packet with an encrypted key and receives a packet with a decrypted key. We encrypted and decrypted the new IP header to improve efficiency in wired network. Avoiding the excessive encode and decode causes to deliver the efficiency to reduce. This provides both security and efficiency for wireless networks.
|
|---|
