Abstract
In this paper, we propose a password authentication key exchange protocol for WLANs (Wireless LANs). We call the proposed protocol as the improved EAP-SPEKE (Extensible Authentication Protocol-Simple Password Encrypted Key Exchange). The improved EAP- SPEKE protocol supports mutual authentication and key derivation. The proposed protocol does not require any modification to the IEEE 802.1X and EAP. Before the protocol begins, the server and client compute one modulo exponentiation. Once the protocol begins, the server and client need to compute another exponentiation for mutual authentication. On the contrary, the EAP-SRP needs to compute two modulo exponentiation during the protocol. The client and server authenticate each other with three message exchanges. Therefore, the number of exchanged message decreases by one compared with the EAP-SRP. Besides, the improved EAP-SPEKE protocol works on the the ECC (Elliptic Curve Cryptosystems) base as well as the DH (Diffie-Hellman) base.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Whitepaper: Security for Next Generation Wireless LANs, http://www.cisco.com/warp/public/cc/pd/witc/ao350ap/prodlit/a350w-ov.htm
IEEE Standards for Local and Metropolitan Area Networks: Port based Network Access Control, IEEE Std 802.1x-2001 (2001)
IEEE 802.1X http://grouper.ieee.org/groups/802/1/pages/802.1x.html
S. M. Bellovin and M. Merrit: Encrypted key exchange: Password-based protocols secure against dictionary attacks, In Proceedings of the IEEE Symposium on Research in security and Privacy (1992)
J. Vollbrecht: White Paper:Wireless LAN Access Control and Authentication, Interlink Networks, Inc
IEEE Wireless Standards http://standards.ieee.org/wireless/
EAP: http://www.ietf.org/rfc/rfc2284.txt,http://www.ietf.org/rfc/rfc2716.txt
Microsoft EAP-TLS Support: http://www.microsoft.com/HWDEV/TECH/network/wireless/IEEE802Net.asp, http://www.microsoft.com/HWDEV/TECH/network/802x/default.asp
T. Wu: The SRP Authentication and Key Exchange System, RFC 2945 (2000)
D. P. Jablon: Strong Password-only Authenticated Key Exchange, ACM SIGCOMM Computer Communications Review (1996)
T. Wu: The Secure Remote Password Protocol, In Proceedings of the Internet Society Symposium on Network and Distributed Systems Security, San Diego, CA,(1998)97–111
D. Taylor: Using SRP for TLS Authentication, IETF draft-ietf-tls-srp-01.txt (work in progress)(2001)
D. Jablon: The SPEKE Password-Based Key Agreement Methods,IETF draft-jablon-speke-00.txt(2002)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Yu, S.J., Song, J.S. (2003). An Improved Password Authentication Key Exchange Protocol for 802.11 Environment. In: Kumar, V., Gavrilova, M.L., Tan, C.J.K., L’Ecuyer, P. (eds) Computational Science and Its Applications — ICCSA 2003. ICCSA 2003. Lecture Notes in Computer Science, vol 2668. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-44843-8_22
Download citation
DOI: https://doi.org/10.1007/3-540-44843-8_22
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-40161-2
Online ISBN: 978-3-540-44843-3
eBook Packages: Springer Book Archive