A Roaming Authentication Solution for WiFi Using IPSec VPNs With Client Certificates
نویسندگان
چکیده
Several solutions have been proposed to provide authentication and safe encryption for Wifi networks in order to overcome the limitation of WEP based security. This document describes a solution based on IPSec VPNs with client and server certificates. The key advantages of this solution is its ability to provide roaming between institutions without having to build a specific roaming infrastructure, and to have client certificates without having to maintain an online PKI infrastructure. Thus, besides the specific hot-spot gateways, there is not much more specific physical infrastructure to manage.
منابع مشابه
A flexible, large-scale authentication policy for WLAN roaming users using IPSec and public key certification
With the growing deployment of WLAN hotspots there is a real need of a large-scale, easyto-use authentication policy for enabling hot-spot providers to allow access to the Internet to authorized users. This paper presents an authentication schema based on asymmetric cryptography and public key certification. These mechanisms are used to establish IPSec tunnels between WLAN supplicants and gatew...
متن کاملLimitations and Differences of using IPsec, TLS/SSL or SSH as VPN-solution
Virtual private networks (VPNs) [1] [6] provide low-cost and secure access between hosts and/or networks. IPsec, TLS/SSL and SSH are popular technologies used to create VPNs. This article will point out some of the differences and limitations of using IPsec, TLS/SSL or SSH as VPN-solution.
متن کاملDiameter IKEv 2 SK : Using Shared Keys to Support Interaction between
The Internet Key Exchange Protocol version 2 (IKEv2) is a component of the IPsec architecture and is used to perform mutual authentication as well as to establish and to maintain IPsec Security Associations (SAs) between the respective parties. IKEv2 supports several different authentication mechanisms, such as the Extensible Authentication Protocol (EAP), certificates, and Shared Key (SK). Dia...
متن کاملPerformance Analysis of IP Security VPN
Internet Protocol Security (IPSec) is a protocol suite for securing Internet Protocol (IP) communications by authenticating and encrypting each IP packet of a data stream. . IPSec architecture requires the host to provide confidentiality using Encapsulating Security Payload and data integrity using either Authentication Header or Encapsulating Security Payload and anti-replay protection. IPSec ...
متن کاملSaving Energy on WiFi with Required IPsec
The move to a pervasive computing environment, with the increasing use of laptops, netbooks, smartphones and tablets, means that we are more reliant on wireless networking and batteries for our daily computational needs. Specifically, this includes applications which have sensitive data that must be securely communicated over VPNs. However, the use of VPNs and mobile, wireless computing creates...
متن کامل