AAA and Network Security for Mobile Access: Radius, Diameter, EAP, PKI and IP Mobility.DUBLIN, Ireland -- Research and Markets (http://www.researchandmarkets.com/reports/c25802) has announced the addition of AAA AAA: see American Automobile Association. (Triple A) A common single-cell battery used in a myriad of electronic devices of all variety. Like its double A (AA) cousin, it provides 1.5 volts of DC power. When used in series, the voltage is multiplied. and Network Security for Mobile Access: Radius, Diameter, EAP (Extensible Authentication Protocol) A protocol that acts as a framework and transport for other authentication protocols. EAP uses its own start and end messages, but then carries any number of third-party messages between the client (supplicant) and access control , PKI (Public Key Infrastructure) A framework for creating a secure method for exchanging information based on public key cryptography. The foundation of a PKI is the certificate authority (CA), which issues digital certificates that authenticate the identity of and IP Mobility to their offering. The problem of providing secure network access for remote mobile users is becoming more and more complicated. Therefore the IETF See Internet Engineering Task Force. IETF - Internet Engineering Task Force have developed several standards (RADIUS, DIAMETER) to systematize sys·tem·a·tize tr.v. sys·tem·a·tized, sys·tem·a·tiz·ing, sys·tem·a·tiz·es To formulate into or reduce to a system: "The aim of science is surely to amass and systematize knowledge" the current security mechanisms. RADIUS enables remote access servers to communicate with a central server to authenticate (1) To verify (guarantee) the identity of a person or company. To ensure that the individual or organization is really who it says it is. See authentication and digital certificate. (2) To verify (guarantee) that data has not been altered. dial-in users and authorize their access to the requested system or service. RADIUS allows a company to maintain user profiles in a central database that all remote servers can share. These approaches are very detailed and complex, i.e. understood by a handful of researchers and engineers. The authors strive to provide a guide/reference to this important standard as security is becoming an integrated part of network architecture design, describing the AAA framework along with insights into security protocols, the usage of PKIs, public key certificates (for IPSec) and security key management. Tpoics Covered Foreword. Preface. About the author. Chapter 1: The 3 "A"s: Authentication (1) Verifying the integrity of a transmitted message. See message integrity, e-mail authentication and MAC. (2) Verifying the identity of a user logging into a network. , Authorization, Accounting. Chapter 2: Authentication. Chapter 3: Key Management Methods. Chapter 4: Internet Security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. and Key Exchange Basics. Chapter 5: Introduction on Internet Mobility Protocols. Chapter 6: Remote Access Dial-In User Service (RADIUS). Chapter 7: Diameter: Twice the RADIUS? Chapter 8: AAA and Security for Mobile IP. Chapter 9: PKI: Public Key Infrastructure. Fundamentals and support for IPsec and mobility. Chapter 10: Latest Authentication Mechanisms, EAP Flavors. Chapter 11: AAA and Identity Management for Mobile Access. The world of Operator Summary AAA (Authentication, Authorization, Accounting) describes a framework for intelligently controlling access to network resources, enforcing policies, and providing the information necessary to bill for services. AAA and Network Security for Mobile Access is an invaluable guide to the AAA concepts and framework, including its protocols Diameter and Radius. The authors gives an overview of established and emerging standards for the provision of secure network access for mobile users while providing the basic design concepts and motivations. AAA and Network Security for Mobile Access: -- Covers trust, i.e., authentication and security key management for fixed and mobile users, and various approaches to trust establishment. -- Discusses public key infrastructures and provides practical tips on certificates management. Introduces Diameter, a state-of-the-art AAA protocol In computer security, AAA stands for “authentication, authorization and accounting”.
-- Explains RADIUS (Remote Authentication Dial-In User Services) and its latest extensions. -- Details EAP (Extensible Authentication Protocol Extensible Authentication Protocol, or EAP, is a universal authentication framework frequently used in wireless networks and Point-to-Point connections. It is defined by RFC 3748. ) in-depth, giving a protocol overview, and covering EAP-XXX authentication methods as well as use of EAP in 802 networks. -- Describes IP mobility protocols including IP level mobility management, its security and optimizations, and latest IETF seamless mobility protocols. -- Includes a chapter describing the details of Mobile IP and AAA interaction, illustrating Diameter Mobile IP applications and the process used in CDMA (Code Division Multiple Access) A method for transmitting simultaneous signals over a shared portion of the spectrum. The foremost application of CDMA is the digital cellular phone technology from QUALCOMM that operates in the 800 MHz band and 1.9 GHz PCS band. 2000. -- Contains a section on security and AAA issues to support roaming, discussing a variety of options for operator co-existence, including an overview of Liberty Alliance. This text will provide researchers in academia and industry, network security engineers, managers, developers and planners, as well as graduate students, with an accessible explanation of the standards fundamental to secure mobile access. For more information visit http://www.researchandmarkets.com/reports/c25802 |
|
||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion