Trusted Network Access Control in the Eduroam Federation

Author

Bernal, Fernando ; Sánchez, Manuel ; López, Gabriel ; Gómez-Skarmeta, Antonio F. ; Cánovas, Óscar

Author_Institution

Dept. of Inf. & Commun. Eng., Univ. of Murcia, Murcia, Spain

fYear

2009

fDate

19-21 Oct. 2009

Firstpage

170

Lastpage

175

Abstract

In order to ensure end user devices are healthy enough to gain access to the network, providers are making use of advanced network access control solutions, which propose an evaluation of configuration information (posture) about the device itself before providing access to the network. However, current solutions are focused on intra-domain scenarios, where end users and network belong to the same organization. This work proposes an architecture to provide this trusted network access control in other emerging scenarios: network roaming federations, like eduroam, where the accessed network provider is not where the end user belongs to. The paper describes how authentication and authorization mechanisms for these scenarios can be integrated to provide trusted network access control.

Keywords

authorisation; client-server systems; message authentication; telecommunication security; authentication mechanism; authorization mechanism; eduroam federation; intra-domain scenario; network roaming; trusted network access control; Access control; Authentication; Authorization; Communication system security; Computer networks; Computer security; Information security; Operating systems; Proposals; Protection; NEA; eduroam; federation; network access control;

fLanguage

English

Publisher

ieee

Conference_Titel

Network and System Security, 2009. NSS '09. Third International Conference on

Conference_Location

Gold Coast, QLD

Print_ISBN

978-1-4244-5087-9

Electronic_ISBN

978-0-7695-3838-9

Type

conf

DOI

10.1109/NSS.2009.47

Filename

5318918