Selecting a Standard Outer Method for EAP
نویسندگان
چکیده
This paper outlines the problems in currently available authentication methods, such as EAP-TTLS, EAP-PEAP and EAP-FAST, and describes the desirable properties of a standard outer method. We examine the interaction between inner and outer methods and the types of issues that presently exist. We propose a new authentication method, EAP-PSK [PSK] with tunneling support (EAP-TLS-PSK), as an EAP protocol that extends EAP-PSK, one of the authentication protocols based on pre-shared keys. EAPTLS-PSK uses secure tunnel establishment by TLS handshake to exchange authentication-related information between a client and a server, while EAP-PSK simply uses pre-shared keys to mutually authenticate. Authentication not based on certificates, unlike other outer methods, allows a reduced cost of management with fewer message exchanges between client and server.
منابع مشابه
EAP-Sens: a security architecture for wireless sensor networks
We present the design, implementation and simulation of a security protocol based on Extensible Authentication Protocol nick-named EAP-Sens for wireless sensor networks. We use the generalized pre-shared key authentication method for authentication and key establishment. Standard EAP model is used for authenticating sensor nodes within the radio range of the authenticator. For distant nodes, we...
متن کاملExtensible Authentication Protocol Method for Global System for Mobile Communications (GSM) Subscriber Identity Modules (EAP-SIM)
Status of This Memo This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited. The EAP-SIM protocol was developed by 3GPP. The documentation of EAP-SIM is provided as information to the Internet community. While the EAP WG has verified that EAP-SIM is compatible with EAP, as defined in RFC 3748, no oth...
متن کاملStatus of this Memo PPP EAP TLS Authentication Protocol
PPP EAP TLS Authentication Protocol Status of this Memo This memo defines an Experimental Protocol for the Internet community. It does not specify an Internet standard of any kind. Discussion and suggestions for improvement are requested. Distribution of this memo is unlimited. 1. Abstract The Point-to-Point Protocol (PPP) provides a standard method for transporting multi-protocol datagrams ove...
متن کاملPassword Authenticated Exchange
Extensible Authentication Protocol (EAP) Password Authenticated Exchange Status of This Memo This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited. Abstract This document defines an Extensible Authentication Protocol (EAP) method called EAP-PAX (Password Authenticated eXchange). This method is a li...
متن کاملRFC 4017 EAP Method Requirements for Wireless LANs
Extensible Authentication Protocol (EAP) Method Requirements for Wireless LANs Status of this Memo This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited. Abstract The IEEE 802.11i MAC Security Enhancements Amendment makes use of IEEE 802.1X, which in turn relies on the Extensible Authentication Pro...
متن کامل