Skip to main content
SpringerLink
Log in

An Improved Password Authentication Key Exchange Protocol for 802.11 Environment

  • Conference paper
  • First Online:
Computational Science and Its Applications — ICCSA 2003 (ICCSA 2003)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2668))

Included in the following conference series:

Abstract

In this paper, we propose a password authentication key exchange protocol for WLANs (Wireless LANs). We call the proposed protocol as the improved EAP-SPEKE (Extensible Authentication Protocol-Simple Password Encrypted Key Exchange). The improved EAP- SPEKE protocol supports mutual authentication and key derivation. The proposed protocol does not require any modification to the IEEE 802.1X and EAP. Before the protocol begins, the server and client compute one modulo exponentiation. Once the protocol begins, the server and client need to compute another exponentiation for mutual authentication. On the contrary, the EAP-SRP needs to compute two modulo exponentiation during the protocol. The client and server authenticate each other with three message exchanges. Therefore, the number of exchanged message decreases by one compared with the EAP-SRP. Besides, the improved EAP-SPEKE protocol works on the the ECC (Elliptic Curve Cryptosystems) base as well as the DH (Diffie-Hellman) base.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Whitepaper: Security for Next Generation Wireless LANs, http://www.cisco.com/warp/public/cc/pd/witc/ao350ap/prodlit/a350w-ov.htm

  2. IEEE Standards for Local and Metropolitan Area Networks: Port based Network Access Control, IEEE Std 802.1x-2001 (2001)

    Google Scholar 

  3. IEEE 802.1X http://grouper.ieee.org/groups/802/1/pages/802.1x.html

  4. S. M. Bellovin and M. Merrit: Encrypted key exchange: Password-based protocols secure against dictionary attacks, In Proceedings of the IEEE Symposium on Research in security and Privacy (1992)

    Google Scholar 

  5. J. Vollbrecht: White Paper:Wireless LAN Access Control and Authentication, Interlink Networks, Inc

    Google Scholar 

  6. IEEE Wireless Standards http://standards.ieee.org/wireless/

  7. EAP: http://www.ietf.org/rfc/rfc2284.txt,http://www.ietf.org/rfc/rfc2716.txt

  8. Microsoft EAP-TLS Support: http://www.microsoft.com/HWDEV/TECH/network/wireless/IEEE802Net.asp, http://www.microsoft.com/HWDEV/TECH/network/802x/default.asp

  9. T. Wu: The SRP Authentication and Key Exchange System, RFC 2945 (2000)

    Google Scholar 

  10. D. P. Jablon: Strong Password-only Authenticated Key Exchange, ACM SIGCOMM Computer Communications Review (1996)

    Google Scholar 

  11. T. Wu: The Secure Remote Password Protocol, In Proceedings of the Internet Society Symposium on Network and Distributed Systems Security, San Diego, CA,(1998)97–111

    Google Scholar 

  12. D. Taylor: Using SRP for TLS Authentication, IETF draft-ietf-tls-srp-01.txt (work in progress)(2001)

    Google Scholar 

  13. D. Jablon: The SPEKE Password-Based Key Agreement Methods,IETF draft-jablon-speke-00.txt(2002)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Depart of Computer Science, Yonsei University, Seoul, 120-749, South Korea

    Su Jung Yu & Joo Seok Song

Authors
  1. Su Jung Yu
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Joo Seok Song
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Army High Performance Computing Research Center, USA

    Vipin Kumar

  2. Department of Computer Science and Engineering, University of Minessota, MN, 55455, USA

    Vipin Kumar

  3. Department of Computer Science, University of Calgary, Calgary, AB, T2N1N4, Canada

    Marina L. Gavrilova

  4. Heuchera Technologies Inc., 122 9251-8 Yonge Street, Richmond Hill, ON, Canada, L4C 9T3

    Chih Jeng Kenneth Tan

  5. School of Computer Science, The Queen’s University of Belfast, Belfast, BT7 1NN, Northern Ireland, UK

    Chih Jeng Kenneth Tan

  6. Département d’informatique et de recherche opérationelle, Université de Montréal, Montréal, Québec, H3C 3J7, Canada

    Pierre L’Ecuyer

Rights and permissions

Reprints and permissions

Copyright information

© 2003 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Yu, S.J., Song, J.S. (2003). An Improved Password Authentication Key Exchange Protocol for 802.11 Environment. In: Kumar, V., Gavrilova, M.L., Tan, C.J.K., L’Ecuyer, P. (eds) Computational Science and Its Applications — ICCSA 2003. ICCSA 2003. Lecture Notes in Computer Science, vol 2668. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-44843-8_22

Download citation

  • DOI: https://doi.org/10.1007/3-540-44843-8_22

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-40161-2

  • Online ISBN: 978-3-540-44843-3

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation