Comparative studies on authentication and key exchange methods for 802.11 wireless LAN

Computers and Security

Volumn 26, Issue 5, 2007, Pages 401-409

  Lei, Jun ^a   Fu, Xiaoming ^a   Hogrefe, Dieter ^a   Tan, Jianrong ^b  

^a UNIVERSITY OF GÖTTINGEN   (Germany)

^b ZHEJIANG UNIVERSITY   (China)

Author keywords

Authentication; Confidentiality; Key exchange; Security; WLAN

Indexed keywords

KEY EXCHANGE; NETWORK ACCESS TECHNOLOGIES; SECURITY MECHANISMS;

AUTHENTICATION; COMPUTER NETWORKS; NETWORK SECURITY;

WIRELESS LOCAL AREA NETWORKS (WLAN);

EID: 34447518618     PISSN: 01674048     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.cose.2007.01.001     Document Type: Article

References (33)

1. Aboba B, Simon D, PPP EAP TLS authentication protocol. RFC 2716; October 1999.
2. Anderson H, Josefsson S. Protected EAP protocol (PEAP). draft-josefsson-pppext-eap-tls-eap-07.txt. internet draft (work in progress); November 2003.
3. Asokan N., Niemi V., and Nyberg K. "Man-in-the-middle in tunneled authentication protocols", in the 11th security protocols workshop (April 2003), Springer-Verlag, Cambridge, UK
4. Aboba B, Blunk L, Vollbrecht J, Carlson J, Levkowetz H. Extensible Authentication Protocol (EAP), RFC 3748; June 2004.
5. Banan M. The lightweight & efficient application protocols (LEAP) manifesto. V- 0.7 (December 2000), Mobile & Wireless Applications Industry
6. Blunk L, Vollbrecht J. PPP extensible authentication protocol (EAP). RFC 2284; March 1998.
7. Baek K.-H., Smith S.W., and Kotz D. A survey of WPA and 802.11i RSN authentication protocols (November 2004), Dartmouth College, Department of Computer Science [TR2004-2524]
8. Bersani F, Tschofenig H. The EAP-PSK protocol: a pres-shared key EAP method. draft-bersani-eap-psk-07.txt; February 2005.
9. Cam-Winget N, McGrew D, Salowey J, et al. EAP flexible authentication via secure tunneling (EAP-FAST). Internet draft; April 2005.
10. Dierks T, Allen C. The TLS protocol version 1.0. RFC 2246; January 1999.
11. Engelstad P, Haslestad T, Paint F. Authenticated access for IPv6 supported mobility. In: Proceedings of the eighth IEEE International Symposium on Computers and Communication (ISCC '03); 2003.
12. Falk M, Fast and secure roaming in WLAN. final thesis; Department of Computer and Information Science; December 2004.
13. Fluhrer SR, Mantin I, Shamir A. Weaknesses in the key scheduling algorithm of RC4. In: Eighth annual workshop on selected Areas in cryptography; August 2001.
14. Funk P, Blake-Wilson S. EAP tunneled TLS authentication protocol (EAP-TTLS). draft-ietf-pppext-eap-ttls-05.txt; July 2004.
15. Garfinkel S., and Spafford G. Web security, privacy and commerce. Security for users, administrators and ISPs (January 2002), O'Reilly Media
16. He, CH, Mitchell, JC. Security analysis and improvements for IEEE 802.11i. Whitepaper; 2005.
17. Housley R, Polk W, Ford W, Solo D. Internet X. 509 public key infrastructure certificate and CRL profile. RFC 3280; April 2002.
18. He CH, Mitchell JC. Analysis of the 802.11i 4-way handshake. In: Proceedings of the 2004 ACM workshop on wireless security; 2004. p. 43-50.
19. IEEE Std 802.1X. Port-based network access control; 2001.
20. IEEE standards for local and metropolitan area networks: port based network access control, IEEE Std 802.1X-2004; December 2004.
21. Interlink Network. EAP methods for wireless authentication; April 2003.
22. Jablon, Strong password-only authenticated key exchange. draft-jablon-speke-00.txt; March 1997.
23. Johnson D, Perkins C, Arkko J. Mobility support in IPv6. RFC 3775; June 2004 [IETF].
24. Otto T, Tschofenig H. The EAP-TLS-PSK authentication protocol. draft-otto-emu-eap-tls-psk-00, internet draft; April 2006.
25. Prasad,AR, Schoo P. IP security for beyond 3G towards 4G. In: Proceedings of WWRF 7, Eindhoven, Netherlands; December 2002.
26. Rigney C, Willens S, Rubens A. Remote Authentication Dial In User Service (RADIUS). RFC 2865; June 2000.
27. Stanley D, Walker J, Aboba B. Extensible authentication protocol (EAP) method requirements for wireless LANs. RFC 4017; March 2005.
28. Stubblefield A., Ioannidis J., and Rubin A.D. Using the Fluhrer, Mantin, and Shamir attack to break WEP (August 2001), AT&T Labs Research [TR TD-4ZCPZZ]
29. Walker J.R. Unsafe at any key size: an analysis of the WEP encapsulation (October 2000), IEEE P802.11 Wireless LANs
30. Wi-Fi Alliance. Deploying Wi-Fi Protected Access (WPATM) and WPA2TM in the enterprise; March 2005.
31. WiMAX Forum. WiMAX end-to-end network systems architecture - stage 2: architecture tenets, reference model and reference points; December 2005.
32. Wan Z, Deng, RH, Bao E, Ananda AL. DoS-resistant access control protocol with identity confidentiality for wireless networks. In: WCNC '05; 13-17 March 2005, New Orleans, LA, USA.
33. Zhang Wenhui. Interworking security in heterogeneous wireless ip networks. In: Proceedings of third international conference on networking (ICN '04), Guadeloupe; 2004.