A Security Association establishment negotiation technique includes
forwarding identifying information from a Mobile Node via a first
interface to a first network element. Negotiations are then initiated
between the first network element and a second network element serving as
a proxy for the Mobile Node via a second interface to establish a
Security Association between the Mobile Node and the first network
element, the second network element utilizing previously stored Security
Association parameters of the Mobile Node. Upon agreement between the
first network element and the second network element with regard to the
Security Association parameters, the first network element forwards the
agreed-upon Security Association parameters to the Mobile Node via the
first interface. The first network element may include a Home Agent, a
Correspondent Node or a Agent, and the first interface may include a
wireless interface to forward information between the Mobile Node and the
first network element. The first network element may also include a first
gateway connected to it. The first gateway may include a AAA
(Authentication, Authorization, and Accounting) server. The second
network element may include a second gateway and an Subscriber
database/Authentication Center, and the second gateway may be connected
to the Subscriber database/Authentication Center. The second gateway may
also include a AAA server.