Network access authentication infrastructure using EAP-TTLS on diameter EAP application

Yuki Atsuya, Souheil Ben Ayed, Fumio Teraoka

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

In our universal AAA (Authentication, Authorization, and Accounting) infrastructure project, we have already developed the implementations of Diameter Base Protocol and Diameter EAP Application. As part of this project, we developed the first open-source of an EAP-TTLS server on Diameter EAP Application for network access control. EAP-TTLS is one of the authentication methods in EAP. EAP-TTLS has two phases. In phase 1, the user authenticates the EAP-TTLS server by the certificate of the EAP-TTLS server. In phase 2, the EAP-TTLS server authenticates the user by user's password transmitted through the secure tunnel established in phase 1. Our implementation supports several authentication methods in phase 2 such as PAP, CHAP, MS-CHAP, and MS-CHAPv2. It was made sure that the EAP-TTLS server worked correctly for several types of user terminals such as Windows, Linux, iPad, and Android. The evaluation results show that the processing time of the EAP-TTLS server is short enough for practical use.

Original languageEnglish
Title of host publicationAsian Internet Engineeering Conference, AINTEC 2011
Pages56-63
Number of pages8
DOIs
Publication statusPublished - 2011
Event7th Asian Internet Engineering Conference, AINTEC 2011 - Bangkok, Thailand
Duration: 2011 Nov 92011 Nov 11

Other

Other7th Asian Internet Engineering Conference, AINTEC 2011
CountryThailand
CityBangkok
Period11/11/911/11/11

Fingerprint

Authentication
Servers
Access control
Tunnels
Network protocols
Processing

Keywords

  • AAA
  • Diameter
  • EAP
  • EAP-TTLS

ASJC Scopus subject areas

  • Computer Networks and Communications

Cite this

Atsuya, Y., Ayed, S. B., & Teraoka, F. (2011). Network access authentication infrastructure using EAP-TTLS on diameter EAP application. In Asian Internet Engineeering Conference, AINTEC 2011 (pp. 56-63) https://doi.org/10.1145/2089016.2089026

Network access authentication infrastructure using EAP-TTLS on diameter EAP application. / Atsuya, Yuki; Ayed, Souheil Ben; Teraoka, Fumio.

Asian Internet Engineeering Conference, AINTEC 2011. 2011. p. 56-63.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Atsuya, Y, Ayed, SB & Teraoka, F 2011, Network access authentication infrastructure using EAP-TTLS on diameter EAP application. in Asian Internet Engineeering Conference, AINTEC 2011. pp. 56-63, 7th Asian Internet Engineering Conference, AINTEC 2011, Bangkok, Thailand, 11/11/9. https://doi.org/10.1145/2089016.2089026
Atsuya Y, Ayed SB, Teraoka F. Network access authentication infrastructure using EAP-TTLS on diameter EAP application. In Asian Internet Engineeering Conference, AINTEC 2011. 2011. p. 56-63 https://doi.org/10.1145/2089016.2089026
Atsuya, Yuki ; Ayed, Souheil Ben ; Teraoka, Fumio. / Network access authentication infrastructure using EAP-TTLS on diameter EAP application. Asian Internet Engineeering Conference, AINTEC 2011. 2011. pp. 56-63
@inproceedings{86eb738e85954e96833faca60abb9097,
title = "Network access authentication infrastructure using EAP-TTLS on diameter EAP application",
abstract = "In our universal AAA (Authentication, Authorization, and Accounting) infrastructure project, we have already developed the implementations of Diameter Base Protocol and Diameter EAP Application. As part of this project, we developed the first open-source of an EAP-TTLS server on Diameter EAP Application for network access control. EAP-TTLS is one of the authentication methods in EAP. EAP-TTLS has two phases. In phase 1, the user authenticates the EAP-TTLS server by the certificate of the EAP-TTLS server. In phase 2, the EAP-TTLS server authenticates the user by user's password transmitted through the secure tunnel established in phase 1. Our implementation supports several authentication methods in phase 2 such as PAP, CHAP, MS-CHAP, and MS-CHAPv2. It was made sure that the EAP-TTLS server worked correctly for several types of user terminals such as Windows, Linux, iPad, and Android. The evaluation results show that the processing time of the EAP-TTLS server is short enough for practical use.",
keywords = "AAA, Diameter, EAP, EAP-TTLS",
author = "Yuki Atsuya and Ayed, {Souheil Ben} and Fumio Teraoka",
year = "2011",
doi = "10.1145/2089016.2089026",
language = "English",
isbn = "9781450310628",
pages = "56--63",
booktitle = "Asian Internet Engineeering Conference, AINTEC 2011",

}

TY - GEN

T1 - Network access authentication infrastructure using EAP-TTLS on diameter EAP application

AU - Atsuya, Yuki

AU - Ayed, Souheil Ben

AU - Teraoka, Fumio

PY - 2011

Y1 - 2011

N2 - In our universal AAA (Authentication, Authorization, and Accounting) infrastructure project, we have already developed the implementations of Diameter Base Protocol and Diameter EAP Application. As part of this project, we developed the first open-source of an EAP-TTLS server on Diameter EAP Application for network access control. EAP-TTLS is one of the authentication methods in EAP. EAP-TTLS has two phases. In phase 1, the user authenticates the EAP-TTLS server by the certificate of the EAP-TTLS server. In phase 2, the EAP-TTLS server authenticates the user by user's password transmitted through the secure tunnel established in phase 1. Our implementation supports several authentication methods in phase 2 such as PAP, CHAP, MS-CHAP, and MS-CHAPv2. It was made sure that the EAP-TTLS server worked correctly for several types of user terminals such as Windows, Linux, iPad, and Android. The evaluation results show that the processing time of the EAP-TTLS server is short enough for practical use.

AB - In our universal AAA (Authentication, Authorization, and Accounting) infrastructure project, we have already developed the implementations of Diameter Base Protocol and Diameter EAP Application. As part of this project, we developed the first open-source of an EAP-TTLS server on Diameter EAP Application for network access control. EAP-TTLS is one of the authentication methods in EAP. EAP-TTLS has two phases. In phase 1, the user authenticates the EAP-TTLS server by the certificate of the EAP-TTLS server. In phase 2, the EAP-TTLS server authenticates the user by user's password transmitted through the secure tunnel established in phase 1. Our implementation supports several authentication methods in phase 2 such as PAP, CHAP, MS-CHAP, and MS-CHAPv2. It was made sure that the EAP-TTLS server worked correctly for several types of user terminals such as Windows, Linux, iPad, and Android. The evaluation results show that the processing time of the EAP-TTLS server is short enough for practical use.

KW - AAA

KW - Diameter

KW - EAP

KW - EAP-TTLS

UR - http://www.scopus.com/inward/record.url?scp=84856107664&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84856107664&partnerID=8YFLogxK

U2 - 10.1145/2089016.2089026

DO - 10.1145/2089016.2089026

M3 - Conference contribution

AN - SCOPUS:84856107664

SN - 9781450310628

SP - 56

EP - 63

BT - Asian Internet Engineeering Conference, AINTEC 2011

ER -