TITLE:
An Identifier-Based Network Access Control Mechanism Based on Locator/Identifier Split
AUTHORS:
Rui TU, Jinshu SU, Ruoshan KONG
KEYWORDS:
Access Control, Locator/Identifier Split, IBAC, Self-Verifying Identifier, Identifier Spoofing
JOURNAL NAME:
International Journal of Communications, Network and System Sciences,
Vol.2 No.7,
October
20,
2009
ABSTRACT: Legacy IP address-based access control has met many challenges, because the network nodes cannot be identified accurately based on their variable IP addresses. “Locator/Identifier Split” has made it possible to build a network access control mechanism based on the permanent identifier. With the support of “Locator/Identifier Split” routing and addressing concept, the Identifier-based Access Control (IBAC) makes net-work access control more accurate and efficient, and fits for mobile nodes’ access control quite well. Moreover, Self-verifying Identifier makes it possible for the receiver to verify the packet sender’s identity without the third part authentication, which greatly reduces the probability of “Identifier Spoofing”.