aaa-5----Page:13
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15
|
Security Threat? Hypothetical Attack The AAAF allocates an HA for the user A rouge broker AAA node changes the HA address or HA identity to a rouge HA The AAAH provides the MN-HA key to that HA; that HA calculates the MIP Reply The mobile gets the wrong HA in the MIP Reply Potential Solutions: The home network verifies the HA belongs to the visited network and not some other network The visited network verifies the HA in the Reply is the same as it allocated; the AAAH will not over ride an AAAF allocation of an HA, but may refuse the RRQ |