Service management in secure and QoS-aware wireless enterprise networks

IEEE Journal on Selected Areas in Communications

Volumn 23, Issue 10, 2005, Pages 1950-1961

  Limam, Noura ^a   Rotrou, Julien ^a,b   Loutrel, Marc ^a   Ouakil, Laurent ^a,b   Saleh, Hayder ^b   Pujolle, Guy ^a,b,c,d,e,f  

^a UNIVERSITÉ PIERRE ET MARIE CURIE   (France)

^b Ucopia Communications Inc   (France)

^c SORBONNE UNIVERSITÉ   (France)

^d Scientific Council   (France)

^e IFIP Working Group 62 on Network and Internetwork Architectures   (France)

^f IFIP Working Group 62 on Network and Internetwork Architectures ^*  (France)

Author keywords

8021X; Nomad users; Quality of service (QoS); Security; Service management; Service provisioning; Smart card; Wireless local area network (WLAN)

Indexed keywords

8021X; NOMAD USERS; SECURITY; SERVICE MANAGEMENT; SERVICE PROVISIONING; WLAN;

LARGE SCALE SYSTEMS; LOCAL AREA NETWORKS; SECURITY OF DATA; SMART CARDS; USER INTERFACES; WIRELESS TELECOMMUNICATION SYSTEMS;

QUALITY OF SERVICE;

EID: 27644599363     PISSN: 07338716     EISSN: None     Source Type: Journal    
DOI: 10.1109/JSAC.2005.854111     Document Type: Article

References (51)

1. NOP World. Wireless LAN's help large organizations save millions. [Online]. Available: http://www.nopworld.com/article2.asp?go=techpr031 101
2. Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications, IEEE Standard 802.11-1999, 1999.
3. Q. Ni, P. Ansel, and T. Turletti, "A Fair Scheduling Scheme for HCF," IEEE, 802.11e working group document, 802.11-03/577r1, 2003.
4. I. Aad and C. Castellucia, "Differentiation mechanisms for IEEE 802.11," in Proc. IEEE INFOCOM, Apr. 2001, pp. 209-218.
5. J. Deng and R. S. Chang, "A priority scheme for IEEE 802.11 DCF access method," IEICE Trans. Commun., vol. 82-B, pp. 96-102, 1999.
6. A. Veres, A. T. Campbell, M. Barry, and L.-H. Sum, "Supporting service differentiation in wireless networks using distributed control," IEEE J. Sel. Areas Commun. (Special Issue on Mobility and Resource Management in Next Generation Wireless Systems), vol. 19, no. 10, pp. 2081-2093, Oct. 2001.
7. A. Ganz, A. Phonphoem, and Z. Ganz, "Robust superpoll with chaining protocol for IEEE 802.11 wireless LAN in support of multimedia application," Wireless Netw., pp. 65-73, 2001.
8. A. Wei and S. Boumerdassi, "A new PCF scheme for multimedia traffic in IEEE 802.11 wireless LAN," CEDRIC, No. 389, 2002.
9. National Institute of Standards and Technology Role Based Access Control. [Online]. Available: http://csrc.nist.gov/rbac
10. S. Floyd and V. Jacobson, "Link-sharing and resource management models for packet networks," IEEE/ACM Trans. Netw., vol. 3, pp. 365-386, Aug. 1995.
11. D. Ferraiolo, R. Sandhu, S. Gavrila, D. R. Kuhn, and R. Chandramouli, "A proposed standard for role based access control," ACM Trans. Inf. Syst. Security, vol. 4, no. 3, pp. 224-274, Aug. 2001.
12. L. Lundy and R. Pradeep, "On the migration from enterprise management to integrated service level management," IEEE Network, vol. 16, no. 1, pp. 814-814, Jan. 2002.
13. G. D. Rodosek and L. Lewis, "Dynamic service provisioning: A user-centric approach," in Distrib. Syst.: Oper. Manage. (DSOM) 2001, France, 2001.
14. A. Keller, G. Kar, H. Ludwig, A. Dan, and J. L. Hellerstein, "Managing dynamic services: A contract based approach to a conceptual architecture," in Proc. Netw. Oper. Manage. Symp. (NOMS) 2002, Apr. 2002, IEEE/IFIP 15-19, pp. 513-528.
15. F. Shen and A. Clemm, "Profile-based subscriber service provisioning," in Proc. Netw. Oper. Manag. Symp. (NOMS) 2002, Apr. 2002, IEEE/IFIP 15-19, pp. 561-574.
16. G. D. Rodosek, "Generic model for IT services and service management," in Integrated Network Management VIII, Managing it All. Norwell, MA: Kluwer, 2003. 171 184.
17. J. Walker, Unsafe at Any Key Size: An Analysis of the WEP Encapsulation. Piscataway, NJ: IEEE Press, 2000.
18. N. Borisov, I. Goldberg, and D. Wagner, "Intercepting mobile communications: The insecurity of 802.11," in Proc. 7th Int. Conf. Mobile Comput. Netw., Jul. 2001, pp. 180-189.
19. S. Fluhrer, I. Mantin, and A. Shamir, "Weaknesses in the key scheduling of RC4," in Proc. 8th Ann. Workshop Sel. Areas Cryptography, 2001, pp. 1-24.
20. A. Stubblefield, J. Ioannidis, and A. D. Rubin, "Using the Fluhrer, Mantin, and Shamir attack to break WEP," in Proc. Netw. Distrib. Syst. Security Symp. (NDSS), 2002, [Online]. Available: http://www.isoc.org/isoc/ conferences/ndss/02/proceedings/papers/stubbl.pdf.
21. N. L. Petroni, Jr. and W. A. Arbaugh, "The dangers of mitigating security design flaws: A wireless case study," IEEE Security and Privacy, pp. 28-36, Jan. 2003.
22. W.-F. Alliance. (2004) Wi-Fi Protected Access (WPA). Medium access control (MAC) quality of service (QoS) enhancements. [Online]. Available: http://www.weca.net IEEE Draft P802.11e/D8
23. L. Blunk and J. Vollbrecht, "PPP extensible authentication protocol (EAP)," RFC 2284, 1998.
24. A. Mishra and W. A. Arbaugh. An initial security analysis of the 802.1X standard. [Online]. Available: http://www.cs.umd.edu/~waa/1x.pdf
25. "Specification for Enhanced Security," IEEE, Draft P802.11i/D6, 2003.
26. The Institute of Electrical and Electronics Engineers (IEEE), "Proposed TKIP 48 bit IV frame format," IEEE, Piscataway, NJ, 802.11-02/281r1, 2002.
27. Smart Card Alliance. (2003). Specification for enhanced security, a smart alliance, White Paper. [Online]. Available: http://www.smart-cardalliance.org/ pdf/allianceactivities/PrivacyWhitePaperFeb03.pdf
28. C. Neuman, T Yu, S. Hartman, and K. Raeburn, Internet-Draft, 2004.
29. D. Harrington, R. Presuhn, and B. Wijnen, "An architecture for describing simple network management protocol (SNMP) management frameworks," STD62, RFC 3411, 2002.
30. H. Dobbertin, "The Status of MD5 After a Recent Attack," RSA Laboratories, 1996.
31. IEEE Standard for Local and Metropolitan Area Networks - Virtual Bridged Local Area Networks, IEEE Standard 802.1Q-1998, Dec. 1998.
32. IEEE Standard for Local and Metropolitan Area Networks - Port-Based Network Access Control, IEEE Standard 802.1X-2001, Jul. 2001.
33. Ucopia Communications. [Online]. Available: http://www.ucopia.com
34. X. Wang, H. Schulzrinne, D. Kandlur, and D. Verma, "Measurement and analysis of LDAP performance," in Proc. Int. Conf. Measure. Modeling Comput. Syst., Santa Clara, CA, Jun. 2000, pp. 156-165.
35. J. L. Valenzuela, A. Monleon, I. S. Esteban, M. Portoles, and O. Sallent, "A hierarchical token bucket algorithm to enhance QoS in IEEE 802.11: Proposal," in Proc. IEEE Veh. Technol. Conf. Implementation Eval., Los Angeles, CA, Sep. 2004, pp. 2659-2662.
36. C. Rigney et al., "RFC 2865 Remote Authentication Dial In User Service (RADIUS),", 2000.
37. M. Wahl, T. Howes, and S. Kille, "Lightweight directory access protocol (v3)," RFC 2251, 1997.
38. B. Aboba and P. Calhoun, "RADIUS (remote authentication dial in user service) support for extensible authentication protocol (EAP)," RFC 3579, 2003.
39. R. Presuhn et al., "STD62 RFC 3418 Management Information Base (MIB) for the Simple Network Management Protocol (SNMP),", 2002.
40. Sun Microsystems Java Card Technology. [Online]. Available: http://java.sun.com/products/javacard/
41. MULTOS MULTOS Solutions. [Online]. Available: http://www.multos.com/
42. Opencard OpenCard documentation. [Online]. Available: http://www.opencard.org/index-docs.shtml
43. Axalto e-gate. [Online]. Available: http://www.axalto.com/infosec/egate. html
44. Identification Cards, Integrated Circuit(s) Cards With Contacts Interindustry Commands For Interchange, ISO 7816-4.
45. PC/SC Workgroup. [Online]. Available: www.pcscworkgroup.com.
46. R. Rivest, "The MD5 message-digest algorithm," RFC 1321, 1992.
47. D. Eastlake and P. Jones, "US secure hash algorithm 1 (SHA1)," RFC 3174, 2001.
48. T. Dierks and C. Allen, "The TLS protocol version 1.0," RFC 2246, 1999.
49. S. Chokhani et al., "Internet X.509 public key infrastructure certificate policy and certification practices framework," RFC 3647, 2003.
50. NetFilter. [Online]. Available: http://www.netfilter.org
51. Hierarchical token bucket (HTB) homepage. [Online]. Available: http://luxik.cdi.cz/~devik/qos/htb/