Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Feasibility Study of FIA Date: 2010-09-15 Authors: NameCompanyAddressPhoneemail.

Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Feasibility Study of FIA Date: 2010-09-15 Authors: NameCompanyAddressPhoneemail Robert MoskowitzICSA labs/ Verizon Business 1000 Bent Creek Blvd MechanicsBurg, PA +1-248-968-9809robert.moskowitz@icsal abs.com Slide 1

Submission doc.: IEEE 802.11-10/1146r0 July 2010Hitoshi Morioka, ROOT INC. Abstract This presentation proposes some exchanges for FIA.

Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Protocol Sequence to Establish a Connection to the Internet by using Authentication and Association frames STAAP HIP (4 pakcets), optional As access Association Authentication Probe DHCP (2 round trip) Auth server DHCP Server Slide 3

Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Security Feasibility An example FIA protocol using HIP with optional tunneled AS access –Use AUTH frames to carry HIP frames Requires AUTH processing to access 'external' KMP engine Can carry X.509 certs or EAP traffic DHCP run through ASSOC frames –Requires ASSOC processing to access DHCP/RA engine –Add security framing to ASSOC frames Authenticate and encrypt Slide 4

Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Protocol Sequence to Establish a Connection to the Internet by using Authentication and Association frames STAAP IKEv2 (6 pakcets), optional As access Association Authentication Probe DHCP (2 round trip) Auth server DHCP Server Slide 5

Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Security Feasibility An example FIA protocol using IKEv2 with optional tunneled AS access –Use AUTH frames to carry IKEv2 frames Requires AUTH processing to access 'external' KMP engine –IP addr for IKEv2 is local scope –How to distribute GTKs? Still need GTK handshake? Can carry X.509 certs or EAP traffic DHCP run through ASSOC frames –Requires ASSOC processing to access DHCP/RA engine –Add security framing to ASSOC frames Authenticate and encrypt Slide 6

Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Summary Technical feasibility of FIA has been shown in this presentation. –Reducing frame exchanges –Time Occupation –Security Slide 7

Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Questions & Comments Slide 8

Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Feasibility Study of FIA Date: 2010-09-15 Authors: NameCompanyAddressPhoneemail.

Similar presentations

Presentation on theme: "Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Feasibility Study of FIA Date: 2010-09-15 Authors: NameCompanyAddressPhoneemail."— Presentation transcript:

Similar presentations

About project

Feedback

Log in

Auth with social network:

Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Feasibility Study of FIA Date: 2010-09-15 Authors: NameCompanyAddressPhoneemail.

Similar presentations

Presentation on theme: "Submission doc.: IEEE 802.11-10/1146r0 Hitoshi Morioka, ROOT INC. Jun 2010 Feasibility Study of FIA Date: 2010-09-15 Authors: NameCompanyAddressPhoneemail."— Presentation transcript:

Similar presentations

About project

Feedback