SAVAH: Source Address Validation With Host Identity Protocol
Explosive growth of the Internet and lack of mechanisms that validate the authenticity of a packet source produced serious security and accounting issues. In this paper, the authors propose validating source addresses in LAN using Host Identity Protocol (HIP) deployed in a first-hop router. Compared to alternative solutions such as CGA, their approach is suitable both for IPv4 and IPv6. They have implemented SAVAH in Wi-Fi access points and evaluated its overhead for clients and the first-hop router.