802.11 Wireless Network End-User Authentication Using Common Access Cards

The Department of Defense (DoD) and the US Army are actively incorporating public key infrastructure (PKI) authentication as it aligns with organizational and security goals. This paper explains the current authentication methods as implemented in 802.11-based wireless networks, the concept of operation for CAC authentication over wireless networks, the challenges associated with the process, possible solutions, and best practices for implementation. This paper will also discuss detailed authentication protocol transactions between the end-user, the device, and the network while highlighting the key differences between wired and wireless network authentication methodologies. In addition, this paper will discuss how CAC authentication over a wireless network is leveraged along with the ease of use and security benefits of Bluetooth (i.e., proximity, and device to reader association) to coordinate both local Windows authentication and wireless network authentication. Finally, this paper will highlight how forward wireless technologies can provide an extremely effective methodology to address both the DoD and the Federal government end-user network and device authentication requirements