Network access authentication infrastructure using EAP-TTLS on diameter EAP application

Yuki Atsuya; Souheil Ben Ayed; Fumio Teraoka

doi:10.1145/2089016.2089026

Network access authentication infrastructure using EAP-TTLS on diameter EAP application

Yuki Atsuya, Souheil Ben Ayed, Fumio Teraoka

Department of Information and Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

1 Citation (Scopus)

Abstract

In our universal AAA (Authentication, Authorization, and Accounting) infrastructure project, we have already developed the implementations of Diameter Base Protocol and Diameter EAP Application. As part of this project, we developed the first open-source of an EAP-TTLS server on Diameter EAP Application for network access control. EAP-TTLS is one of the authentication methods in EAP. EAP-TTLS has two phases. In phase 1, the user authenticates the EAP-TTLS server by the certificate of the EAP-TTLS server. In phase 2, the EAP-TTLS server authenticates the user by user's password transmitted through the secure tunnel established in phase 1. Our implementation supports several authentication methods in phase 2 such as PAP, CHAP, MS-CHAP, and MS-CHAPv2. It was made sure that the EAP-TTLS server worked correctly for several types of user terminals such as Windows, Linux, iPad, and Android. The evaluation results show that the processing time of the EAP-TTLS server is short enough for practical use.

Original language	English
Title of host publication	Asian Internet Engineeering Conference, AINTEC 2011
Pages	56-63
Number of pages	8
DOIs	https://doi.org/10.1145/2089016.2089026
Publication status	Published - 2011
Event	7th Asian Internet Engineering Conference, AINTEC 2011 - Bangkok, Thailand Duration: 2011 Nov 9 → 2011 Nov 11

Publication series

Name	Asian Internet Engineeering Conference, AINTEC 2011

Other

Other	7th Asian Internet Engineering Conference, AINTEC 2011
Country/Territory	Thailand
City	Bangkok
Period	11/11/9 → 11/11/11

Keywords

AAA
Diameter
EAP
EAP-TTLS

ASJC Scopus subject areas

Computer Networks and Communications

Access to Document

10.1145/2089016.2089026

Cite this

Atsuya, Y, Ayed, SB & Teraoka, F 2011, Network access authentication infrastructure using EAP-TTLS on diameter EAP application. in Asian Internet Engineeering Conference, AINTEC 2011. Asian Internet Engineeering Conference, AINTEC 2011, pp. 56-63, 7th Asian Internet Engineering Conference, AINTEC 2011, Bangkok, Thailand, 11/11/9. https://doi.org/10.1145/2089016.2089026

@inproceedings{86eb738e85954e96833faca60abb9097,

title = "Network access authentication infrastructure using EAP-TTLS on diameter EAP application",

abstract = "In our universal AAA (Authentication, Authorization, and Accounting) infrastructure project, we have already developed the implementations of Diameter Base Protocol and Diameter EAP Application. As part of this project, we developed the first open-source of an EAP-TTLS server on Diameter EAP Application for network access control. EAP-TTLS is one of the authentication methods in EAP. EAP-TTLS has two phases. In phase 1, the user authenticates the EAP-TTLS server by the certificate of the EAP-TTLS server. In phase 2, the EAP-TTLS server authenticates the user by user's password transmitted through the secure tunnel established in phase 1. Our implementation supports several authentication methods in phase 2 such as PAP, CHAP, MS-CHAP, and MS-CHAPv2. It was made sure that the EAP-TTLS server worked correctly for several types of user terminals such as Windows, Linux, iPad, and Android. The evaluation results show that the processing time of the EAP-TTLS server is short enough for practical use.",

keywords = "AAA, Diameter, EAP, EAP-TTLS",

author = "Yuki Atsuya and Ayed, {Souheil Ben} and Fumio Teraoka",

year = "2011",

doi = "10.1145/2089016.2089026",

language = "English",

isbn = "9781450310628",

series = "Asian Internet Engineeering Conference, AINTEC 2011",

pages = "56--63",

booktitle = "Asian Internet Engineeering Conference, AINTEC 2011",

note = "7th Asian Internet Engineering Conference, AINTEC 2011 ; Conference date: 09-11-2011 Through 11-11-2011",

}

TY - GEN

T1 - Network access authentication infrastructure using EAP-TTLS on diameter EAP application

AU - Atsuya, Yuki

AU - Ayed, Souheil Ben

AU - Teraoka, Fumio

PY - 2011

Y1 - 2011

N2 - In our universal AAA (Authentication, Authorization, and Accounting) infrastructure project, we have already developed the implementations of Diameter Base Protocol and Diameter EAP Application. As part of this project, we developed the first open-source of an EAP-TTLS server on Diameter EAP Application for network access control. EAP-TTLS is one of the authentication methods in EAP. EAP-TTLS has two phases. In phase 1, the user authenticates the EAP-TTLS server by the certificate of the EAP-TTLS server. In phase 2, the EAP-TTLS server authenticates the user by user's password transmitted through the secure tunnel established in phase 1. Our implementation supports several authentication methods in phase 2 such as PAP, CHAP, MS-CHAP, and MS-CHAPv2. It was made sure that the EAP-TTLS server worked correctly for several types of user terminals such as Windows, Linux, iPad, and Android. The evaluation results show that the processing time of the EAP-TTLS server is short enough for practical use.

AB - In our universal AAA (Authentication, Authorization, and Accounting) infrastructure project, we have already developed the implementations of Diameter Base Protocol and Diameter EAP Application. As part of this project, we developed the first open-source of an EAP-TTLS server on Diameter EAP Application for network access control. EAP-TTLS is one of the authentication methods in EAP. EAP-TTLS has two phases. In phase 1, the user authenticates the EAP-TTLS server by the certificate of the EAP-TTLS server. In phase 2, the EAP-TTLS server authenticates the user by user's password transmitted through the secure tunnel established in phase 1. Our implementation supports several authentication methods in phase 2 such as PAP, CHAP, MS-CHAP, and MS-CHAPv2. It was made sure that the EAP-TTLS server worked correctly for several types of user terminals such as Windows, Linux, iPad, and Android. The evaluation results show that the processing time of the EAP-TTLS server is short enough for practical use.

KW - AAA

KW - Diameter

KW - EAP

KW - EAP-TTLS

UR - http://www.scopus.com/inward/record.url?scp=84856107664&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84856107664&partnerID=8YFLogxK

U2 - 10.1145/2089016.2089026

DO - 10.1145/2089016.2089026

M3 - Conference contribution

AN - SCOPUS:84856107664

SN - 9781450310628

T3 - Asian Internet Engineeering Conference, AINTEC 2011

SP - 56

EP - 63

BT - Asian Internet Engineeering Conference, AINTEC 2011

T2 - 7th Asian Internet Engineering Conference, AINTEC 2011

Y2 - 9 November 2011 through 11 November 2011

ER -

Network access authentication infrastructure using EAP-TTLS on diameter EAP application

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this