SAVAH: Source Address Validation with Host Identity Protocol

Abstract

Explosive growth of the Internet and lack of mechanisms that validate the authenticity of a packet source produced serious security and accounting issues. In this paper, we propose validating source addresses in LAN using Host Identity Protocol (HIP) deployed in a first-hop router. Compared to alternative solutions such as CGA, our approach is suitable both for IPv4 and IPv6. We have implemented SAVAH in Wi-Fi access points and evaluated its overhead for clients and the first-hop router.

DOI: 10.1007/978-3-642-04434-2_17

Extracted Key Phrases

7 Figures and Tables

Cite this paper

@inproceedings{Kuptsov2009SAVAHSA, title={SAVAH: Source Address Validation with Host Identity Protocol}, author={Dmitriy Kuptsov and Andrei V. Gurtov}, booktitle={MobiSec}, year={2009} }