Title :
Complete EAP Method: User Efficient and Forward Secure Authentication Protocol for IEEE 802.11 Wireless LANs
Author :
Chun-I Fan ; Yi-Hui Lin ; Ruei-Hau Hsu
Author_Institution :
Dept. of Comput. Sci. & Eng., Nat. Sun Yat-sen Univ., Kaohsiung, Taiwan
Abstract :
It is necessary to authenticate users who attempt to access resources in Wireless Local Area Networks (WLANs). Extensible Authentication Protocol (EAP) is an authentication framework widely used in WLANs. Authentication mechanisms built on EAP are called EAP methods. The requirements for EAP methods in WLAN authentication have been defined in RFC 4017. To achieve user efficiency and robust security, lightweight computation and forward secrecy, excluded in RFC 4017, are desired in WLAN authentication. However, all EAP methods and authentication protocols designed for WLANs so far do not satisfy all of the above properties. This manuscript will present a complete EAP method that utilizes stored secrets and passwords to verify users so that it can 1) fully meet the requirements of RFC 4017, 2) provide for lightweight computation, and 3) allow for forward secrecy. In addition, we also demonstrate the security of our proposed EAP method with formal proofs.
Keywords :
cryptographic protocols; wireless LAN; EAP method; Extensible Authentication Protocol; IEEE 802.11 wireless LAN; RFC 4017; Wireless Local Area Network; forward secure authentication protocol; stored secret; user efficient authentication protocol; user verification; Authentication; Cryptography; Privacy; Protocols; Servers; Wireless LAN; Wireless local area networks (WLANs); authentication; extensible authentication protocol (EAP); forward secrecy; lightweight computation; passwords;
Journal_Title :
Parallel and Distributed Systems, IEEE Transactions on
DOI :
10.1109/TPDS.2012.164
