Access control protocols with two-layer architecture for wireless networks

Publication Type

Journal Article

Publication Date

2-2007

Abstract

In this paper we study two access control protocols which have similar two-layer access control architectures for wireless networks in public places. The first protocol, called the Lancaster protocol, employs user password for authentication and enforces access control at the IP layer; while the second protocol, referred to as the Stanford protocol, uses public key cryptosystems (PKC) for authentication and performs access control at the link layer. Although both protocols are intended to restrict access to wireless networks only to authorized users, our analysis shows that both protocols have serious security flaws which make them vulnerable to attacks. Then we propose a password-based protocol and a PKC-based protocol for the Lancaster architecture and the Stanford architecture, respectively. Both of our protocols provide mutual authentication, perfect forward secrecy and access control for wireless networks. Moreover, they also provide DoS resistance and identity confidentiality for the client. We present detailed security and performance analysis for our protocols, and show that both of our protocols are secure and efficient for access control in wireless networks.

Discipline

Information Security

Research Areas

Information Security and Trust

Publication

Computer Networks

Volume

51

Issue

3

First Page

655

Last Page

670

ISSN

1389-1286

Identifier

10.1016/j.comnet.2006.05.009

Publisher

Elsevier

Additional URL

http://dx.doi.org/10.1016/j.comnet.2006.05.009

Link to Full Text

Share

COinS