This web site is no longer maintained and the content may be outdated.
Please visit www.cmpe.boun.edu.tr for up-to-date information.
 
CmpE RSS
No upcoming events...

Home / Graduate / M.S. Theses Completed
 
 
 
 
  Ömer Aköz, 2004    

Thesis Title

Security considerations in mobile IP networks using stateful packet filtering firewalls


Abstract

This thesis presents a new approach for improving network security of private networks in Mobile IP environments by using Netfilter Firewall with a new extension to Mobile IP Protocol, IPIP Tunneling and COPS (Common Open Policy Service) protocol. This work permits mobile nodes using Mobile IP to operate in private address networks which are separated from the public Internet by firewalls. To the contrary of the common security implementations between home and private networks such as IPSec or SOCKS, this study relies on the analyses of TCP connection states (by stateful firewalls) of mobile nodes while mobile devices are roaming between home and foreign networks with filtering of IPIP tunneled packets in the middle of a TCP session. A new method is implemented to keep the TCP connections without being broken and maintaining their states throughout the migration between different subnets.
 
 
Boğaziçi University Department of Computer Engineering
Address: 34342 Bebek, Istanbul, TURKEY
Phone: +90 212 359 4523-24 Fax: +90 212 287 2461
general information: infocmpe.boun.edu.tr   webmaster: webmastercmpe.boun.edu.tr