A network access control approach based on the AAA architecture and authorization attributes

Proceedings - 19th IEEE International Parallel and Distributed Processing Symposium, IPDPS 2005

Volumn 2005, Issue , 2005, Pages

  López, Gabriel ^a   Gómez, Antonio F ^a   Marín, Rafael ^a   Cánovas, Oscar ^a  

^a UNIVERSITY OF MURCIA   (Spain)

Author keywords

[No Author keywords available]

Indexed keywords

802.1X FRAMEWORK; AUTHORIZATION DATA; NETWORK ACCESS CONTROL APPROACH; XACML;

COMPUTER ARCHITECTURE; COMPUTER NETWORKS; DATA ACQUISITION; MATHEMATICAL MODELS; MOBILE TELECOMMUNICATION SYSTEMS; NETWORK PROTOCOLS; WIRELESS TELECOMMUNICATION SYSTEMS;

CONTROL SYSTEMS;

EID: 33746295685     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/IPDPS.2005.50     Document Type: Conference Paper

References (28)

1. B. Adoba, M. Beadles. The Network Access Identifier, Internet Engineering Task Force, January 1999. Request for Comments (RFC) 2486.
2. B. Aboba and D. Simon. PPP EAP-TLS Authentication Protocol. Internet Engineering Task Force, October 1999. Request for Comments (RFC) 2716.
3. Akenti Distributed Access Control. http://www-itg.lbl.gov/Akenti/. July 2004.
4. H. Anderson, S. Josefson, G. Zorn, D. Simon and A. Palekar. Protected EAP Protocol (PEAP), 2004. IETF Draft.
5. A. Anderson, H. Lockhart. SAML 2.0 profile of XACML, September 2004. OASIS Draft.
6. J. Beatty et al., Liberty Protocols and Schema Specification Version 1.1. Liberty Alliance Project. http://www.projectliberty.org/specs/archive/v1_1/ liberty-architecture-protocolsschema-v1.1.pdf., January 2003.
7. S. Blake, D. Black, M. Carlson, E. Davies, Z. Wang, W. Weiss. An Architecture for Differentiated Services. Internet Engineering Task Force, December 1998. Request for Comments (RFC) 2474.
8. L. Blunk and J.Vollbrecht. Extensible Authentication Protocol (EAP), Internet Engineering Task Force, March 1998. Request for Comments (RFC) 2284.
9. P. Calhoun, J. Loughney, E. Guttman, G. Zorn, J. Arkko. Diameter Base Protocol. Internet Engineering Task Force, September 2003. Request for Comments (RFC) 3588.
10. P.R. Calhoun, G. Zorn, D. Spence, D. Mitton. Diameter Network Access Server Application, July 2004. IETF Draft.
11. S. Cantor. OASIS Security Assertion Markup Language (SAML): SSO Use Cases and Scenarios, January 2003. OASIS Draft.
12. S. Cantor. Shibboleth Architecture. Protocols and Profiles. http://shibboleth.internet2.edu/docs/draft-mace-shibboleth-arch-protocols-01. pdf. May 2004.
13. Community Authorization Service. http://www.globus.org/security/CAS/GT3/. July 2004.
14. C. de Laat, G. Gross, L. Gommans, J. Vollbrecht and D. Spence. Generic AAA Architecture. Internet Research Task Force, August 2000. Request for Comments (RFC) 2903.
15. D. Eastlake et al. XML-Signature Syntax and Processing, World Wide Web Consortium, February 2002. http://www.w3.org/TR/xmldsig-core/.
16. C. Ellison, B. Frantz, B. Lampson, R. Rivest, B. Thomas and T. Ylonen. SPKI certificate theory. September 1999. Request for Comments (RFC) 2693.
17. P. Eronen, T. Hiller, G. Zorn. Diameter Extensible Authentication Protocol (EAP) Application, August 2004. IETF Draft.
18. S. Farrel and R. Housley. An Internet Attribute Certificate Profile for Authorization, April 2002, Request for Comments (RFC) 3281.
19. D. Ferraiolo, R. Sandhu, S. Gavrila, D.R. Kuhn and R. Chandramouli. Proposed NIST Standard for Role-Based Access Control. ACM Transaction on Information and System Security, Vol. 4, No. 3, August 2001.
20. S. Godik and T. Moses. OASIS eXtensible Access Control Markup Language (XACML) Version 1.0, February 2003. OASIS Standard.
21. R. Housley, T. Polk, W. Ford and D. Solo. Internet Public Key Infrastructure, (P)art I: (X.509) Certificate, and (CRL) Profile, April 2002. Request for Comments (RFC) 3280.
22. P. Jayarama, R. López, Y. Ohba, M. Parthasarathy, A. Yegin. PANA Framework, September 2004. IETF Draft.
23. LAN MAN Standards Committee of the IEEE Computer Society. IEEE Draft P802.1X/D11: Standard for Port based Network Access Control, March 2001.
24. E. Maler, P. Mishra and R. Philpott, Assertions and Protocol for the OASIS Security Assertion Markup Language (SAML) VI.1, September 2003. OASIS Standard.
25. E. Maler, P. Mishra and R. Philpott. Bindings and Profiles for the OASIS Security Assertion Markup Language (SAML) VI.1, September 2003. OASIS Standard.
26. P. Nikander. Authorization and charging in public WLANs using FreeBSD and 802.1x. In Proceedings of the Freenix track: 2002 USENIX Annual Technical Conference, June 2002.
27. PERMIS. PrivilEge and Role Management Infrastructure Standards Validation. http://sec.isi.salford.ac.uk/permis. November 2004.
28. C. Rigney, A. Rubens, W. Simpson, S. Willens. Remote Authentication Dial In User Service (RADIUS). Internet Research Task Force, April 1997. Request for Comments (RFC) 2138.