Security Verification of Trust-Based Authentication Handover in IP Networks

This paper presents a formal analysis of an authentication handover framework. The framework provides a fast re-authentication mechanism to authenticate a mobile node that moves through different domains without the need to communicate with the home domain. We model the protocol using the high level protocol specification language (HLPSL) and we verify our model using the AVISPA model checking tool. Two main security properties are checked: authenticity and secrecy. We consider different scenarios in order to verify the protocol. Our results show that the protocol fulfills its requirements in almost all tested scenarios.