SECURE ACCESS MODULES FOR IDENTITY PROTECTION OVER THE EAP-TLS - Smartcard Benefits for User Anonymity in Wireless Infrastructures
Pascal Urien, Mohamad Badra
2006
Abstract
Identity protection and privacy became increasingly important in network communications; especially in wireless LAN. In this optic, Privacy Enhancing Technologies (PET) have been introduced to provide anonymous exchange and to protect personal data. In this paper, we present the SAM (Secure Access Module) architecture, which is a couple of smartcards (client and server) that process EAP-TLS, a transparent transport of TLS (Transport Layer Security) over EAP (Extensible Authentication Protocol). This architecture provides mutual authentication, identity protection and data un-traceability by preventing undesired and unnecessary processing of personal data.
References
- RFC 1832, 1995. XDR: External Data Representation Standard. Internet Engineering Task Force, IETF.
- RFC 2131, 1997. Dynamic Host Configuration Protocol, DHCP. Internet Engineering Task Force, IETF.
- RFC 2401, 1998. Security Architecture for the Internet Protocol. Internet Engineering Task Force, IETF.
- IEEE 802.11, 1999. Wireless LAN Medium Access Control (MAC) and Physical Layer (PHY) Specifications, Institute of Electrical and Electronics Engineers.
- RFC 2716, 1999. PPP EAP TLS Authentication Protocol. Internet Engineering Task Force, IETF.
- RFC 2246, 1999. The TLS Protocol Version 1.0. Internet Engineering Task Force, IETF.
- Chen, C., 2000, Java Card Technology for Smart Cards. The Java Series, Addison Wesley, 2000.
- Rescorla, E., 2000. SSL and TLS- Designing and Building Secure Systems, Addison Wesley, 2000.
- IEEE 802.1X, 2001. "Local and Metropolitan Area Networks: Port-Based Network Access Control", Institute of Electrical and Electronics Engineers.
- RFC 3546, 2003. Transport Layer Security (TLS) Extensions. Internet Engineering Task Force, IETF.
- RFC 3559, 2003. Remote Authentication Dial In User Service Support for EAP. Internet Engineering Task Force, IETF.
- RFC 3748, 2004. Extensible Authentication Protocol, (EAP). Internet Engineering Task Force, IETF.
- Urien P., Badra M., and Dandjinou M., 2004. EAP-TLS smartcards, from dream to reality. In ASWN 2004, Fourth workshop on Applications and Services in Wireless Networks,. Boston, USA.
- OpenEapSmartcard, 2005. WEB site, http://www.enst.fr/urien/openeapsmartcard.
- Urien P., Dandjinou M., 2005. The OpenEapSmartcard project. Short paper, In ACNS 2005, Applied Cryptography and Network Security 2005, Columbia University, New York, USA
- ISO 7816, 2006. Identification cards-Integrated circuit(s) card with contact, International Organization for Standardization (ISO), ISO/IEC 7816.
- JavaCardForum, 2006. www.javacardforum.org
- Urien P., Dandjinou M., 2006a. Introducing Smartcard Enabled RADIUS Server, In CTS 2006, the 2006 International Symposium on Collaborative Technologies and Systems, Las Vegas, USA.
- Urien P., Pujolle, G., 2006b. EAP support in smartcard. Internet Draft, Internet Engineering Task Force, IETF.
- Urien P., Badra M., 2006c. Identity Protection within EAP-TLS, Internet Draft, Internet Engineering Task Force, IETF.
Paper Citation
in Harvard Style
Urien P. and Badra M. (2006). SECURE ACCESS MODULES FOR IDENTITY PROTECTION OVER THE EAP-TLS - Smartcard Benefits for User Anonymity in Wireless Infrastructures . In Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006) ISBN 978-972-8865-63-4, pages 157-164. DOI: 10.5220/0002100001570164
in Bibtex Style
@conference{secrypt06,
author={Pascal Urien and Mohamad Badra},
title={SECURE ACCESS MODULES FOR IDENTITY PROTECTION OVER THE EAP-TLS - Smartcard Benefits for User Anonymity in Wireless Infrastructures},
booktitle={Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006)},
year={2006},
pages={157-164},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002100001570164},
isbn={978-972-8865-63-4},
}
in EndNote Style
TY - CONF
JO - Proceedings of the International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2006)
TI - SECURE ACCESS MODULES FOR IDENTITY PROTECTION OVER THE EAP-TLS - Smartcard Benefits for User Anonymity in Wireless Infrastructures
SN - 978-972-8865-63-4
AU - Urien P.
AU - Badra M.
PY - 2006
SP - 157
EP - 164
DO - 10.5220/0002100001570164