Access control protocols with two-layer architecture for wireless networks

Authors:
Zhiguo Wan;Robert H. Deng;Feng Bao;Akkihebbal L. Ananda
Affiliations:
School of Computing, National University of Singapore, 3 Science Drive 2, Singapore 117543, Singapore and Institute for Infocomm Research, 21 Heng Mui Keng Terrace, Singapore 119613, Singapore;School of Information Systems, Singapore Management University, Singapore 259756, Singapore;Institute for Infocomm Research, 21 Heng Mui Keng Terrace, Singapore 119613, Singapore;School of Computing, National University of Singapore, 3 Science Drive 2, Singapore 117543, Singapore
Venue:
Computer Networks: The International Journal of Computer and Telecommunications Networking
Year:
2007

Citing 11
Cited 0

Augmented encrypted key exchange: a password-based protocol secure against dictionary attacks and password file compromise

CCS '93 Proceedings of the 1st ACM conference on Computer and communications security
Strong password-only authenticated key exchange

ACM SIGCOMM Computer Communication Review
Intercepting mobile communications: the insecurity of 802.11

Proceedings of the 7th annual international conference on Mobile computing and networking
DoS and authentication in wireless public access networks

WiSE '02 Proceedings of the 1st ACM workshop on Wireless security
Efficient, DoS-resistant, secure key exchange for internet protocols

Proceedings of the 9th ACM conference on Computer and communications security
More Efficient Password-Authenticated Key Exchange

CT-RSA 2001 Proceedings of the 2001 Conference on Topics in Cryptology: The Cryptographer's Track at RSA
Network layer access control for context-aware IPv6 applications

Wireless Networks
An Access Control Architecture for Microcellular Wireless IPv6 Networks

LCN '01 Proceedings of the 26th Annual IEEE Conference on Local Computer Networks
Encrypted Key Exchange: Password-Based Protocols SecureAgainst Dictionary Attacks

SP '92 Proceedings of the 1992 IEEE Symposium on Security and Privacy
Problem areas for the IP security protocols

SSYM'96 Proceedings of the 6th conference on USENIX Security Symposium, Focusing on Applications of Cryptography - Volume 6
Privacy and authentication on a portable communications system

IEEE Journal on Selected Areas in Communications

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper we study two access control protocols which have similar two-layer access control architectures for wireless networks in public places. The first protocol, called the Lancaster protocol, employs user password for authentication and enforces access control at the IP layer; while the second protocol, referred to as the Stanford protocol, uses public key cryptosystems (PKC) for authentication and performs access control at the link layer. Although both protocols are intended to restrict access to wireless networks only to authorized users, our analysis shows that both protocols have serious security flaws which make them vulnerable to attacks. Then we propose a password-based protocol and a PKC-based protocol for the Lancaster architecture and the Stanford architecture, respectively. Both of our protocols provide mutual authentication, perfect forward secrecy and access control for wireless networks. Moreover, they also provide DoS resistance and identity confidentiality for the client. We present detailed security and performance analysis for our protocols, and show that both of our protocols are secure and efficient for access control in wireless networks.