MOBILE Node (MN) in MIPv6 engaging with Correspond Node (CN) can freely roam into different Access Routers (AR). However when MN from Previous AR (PAR) roams into a New AR (NAR), the Fast Handover protocol will have to be engaged. The current Fast Handover protocol used in association with Mobile IPv6 would require a virtual channel between PAR and NAR. This is to allow packets from CN with destination address set to MN able to be re-directed to the MN that is about to roam, or already roamed under the NAR's subnet coverage, via this tunnel. While it is assumed that the upper layer of the protocol such as IPSec will take care of the security handling in making sure the protocol and channel are secured, it is thought to be somehow insufficient and unconvincing. The upper layer protocol such as IPSec that could be used, could only prevent leakage of data integrity by applying and agreeing upon certain encryption standards and could not prevent attacks such as the combination of Denial of Service (DoS) with Masquerading. This paper proposed a solution to the above problem.
展开▼