Improve the security of CGA using adjustable key block cipher based AES, to prevent attack on AES in IPV6 over MANET

摘要

The IPv6-enabled network architecture has recently attracted much attention due to a security issue in MANET. Cryptographically Generated Addresses (CGAs) were used to approve the owner of the address. It can thwart the stealing of prevailing IPV6 addresses by attaching public key of the owner. The owner uses a corresponding private key to prove the ownership with the help of signed messages originated from that address. Though it is a useful technique to prove the address ownership in the IPV6 network, it has some restrictions and vulnerabilities if SHA-I algorithm is used in it. In this paper, the security analysis is provided by using AES algorithm in CGA. The AES algorithm is based on the principle of generating sub keys from the original key and using each sub key to encrypt one AES block, using Mix-Column transformation in 5 rounds instead of 10 rounds in the original AES-128 to decrease the encryption time and S-box and Inverse S-box in the original AES are replaced by one simple S-box used for encryption and decryption in the proposed method. Experimental results using NS-2 are shown in this paper.