A security framework for node-to-node communications based on the LISP architecture

Abstract

The locator/ID separation protocol (LISP) is a routing architecture that provides new semantics for IP addressing to support communications between peripheral networks of different technologies. Securing the LISP architecture has been investigated in the literature, while securing communications in peripheral networks is left to individual technologies. The authors in this paper advocate the need for a comprehensive solution to secure communications based on LISP. Therefore, the paper introduces a new node-to-node authentication and key agreement protocol. The protocol is formally verified using formal method based on Casper/FDR. Furthermore, the paper demonstrates how to integrate the proposed protocol with existing LISP’s security mechanisms in a form of a security framework.