A Scalability Study of AAA Support in Heterogeneous Networking Environments with Global Roaming Support

Granlund, Daniel; Åhlund, Christer

doi:10.1109/trustcom.2011.63

Cited by 7 publications

(4 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The reason is that LP-WAN networks look very similar to current cellular deployments, but with very limited resources. In fact, current wireless networks such as 3G, WiMAX or WiFi use, traditionally, AAA infrastructures to control the access to the network service at a large scale [ 15 , 16 , 17 ]. These infrastructures have been based on two main protocols: Remote Authentication Dial-In User Service (RADIUS) [ 18 ] or Diameter [ 19 ].…”

Section: Introductionmentioning

confidence: 99%

A CoAP-Based Network Access Authentication Service for Low-Power Wide Area Networks: LO-CoAP-EAP

García-Carrillo

Marin-Lopez

Kandasamy

et al. 2017

Sensors

View full text Add to dashboard Cite

The Internet-of-Things (IoT) landscape is expanding with new radio technologies. In addition to the Low-Rate Wireless Personal Area Network (LR-WPAN), the recent set of technologies conforming the so-called Low-Power Wide Area Networks (LP-WAN) offers long-range communications, allowing one to send small pieces of information at a reduced energy cost, which promotes the creation of new IoT applications and services. However, LP-WAN technologies pose new challenges since they have strong limitations in the available bandwidth. In general, a first step prior to a smart object being able to gain access to the network is the process of network access authentication. It involves authentication, authorization and key management operations. This process is of vital importance for operators to control network resources. However, proposals for managing network access authentication in LP-WAN are tailored to the specifics of each technology, which could introduce interoperability problems in the future. In this sense, little effort has been put so far into providing a wireless-independent solution for network access authentication in the area of LP-WAN. To fill this gap, we propose a service named Low-Overhead CoAP-EAP (LO-CoAP-EAP), which is based on previous work designed for LR-WPAN. LO-CoAP-EAP integrates the use of Authentication, Authorization and Accounting (AAA) infrastructures and the Extensible Authentication Protocol (EAP) protocol. For this integration, we use the Constrained Application Protocol (CoAP) to design a network authentication service independent of the type of LP-WAN technology. LO-CoAP-EAP represents a trade-off between flexibility, wireless technology independence, scalability and performance in LP-WAN.

show abstract

Section: Introductionmentioning

confidence: 99%

A CoAP-Based Network Access Authentication Service for Low-Power Wide Area Networks: LO-CoAP-EAP

García-Carrillo

Marin-Lopez

Kandasamy

et al. 2017

Sensors

View full text Add to dashboard Cite

show abstract

“…In particular, the performance bottleneck in the AAA system depends on, not only the authentication protocol used, but also the authentication delay as well as the number of entries in the user (or sensor) database. If the authentication is carried out using a lightweight authentication protocol such as EAP-Swift, it is likely that the network connection to the AAA server is saturated before the CPU is overloaded [ 48 ]. Likewise, if the authentication latency is very high, the server needs to keep RAM memory allocated for the authentication session during a longer time which may cause memory depletion [ 48 ].…”

Section: Results Analysismentioning

confidence: 99%

“…If the authentication is carried out using a lightweight authentication protocol such as EAP-Swift, it is likely that the network connection to the AAA server is saturated before the CPU is overloaded [ 48 ]. Likewise, if the authentication latency is very high, the server needs to keep RAM memory allocated for the authentication session during a longer time which may cause memory depletion [ 48 ]. The aforementioned factors are unlikely with EAP-Swift due to low CPU demand and fast authentications.…”

Section: Results Analysismentioning

confidence: 99%

Opportunistic Mobility Support for Resource Constrained Sensor Devices in Smart Cities

Granlund

Holmlund

Åhlund

2015

Sensors

Self Cite

View full text Add to dashboard Cite

A multitude of wireless sensor devices and technologies are being developed and deployed in cities all over the world. Sensor applications in city environments may include highly mobile installations that span large areas which necessitates sensor mobility support. This paper presents and validates two mechanisms for supporting sensor mobility between different administrative domains. Firstly, EAP-Swift, an Extensible Authentication Protocol (EAP)-based sensor authentication protocol is proposed that enables light-weight sensor authentication and key generation. Secondly, a mechanism for handoffs between wireless sensor gateways is proposed. We validate both mechanisms in a real-life study that was conducted in a smart city environment with several fixed sensors and moving gateways. We conduct similar experiments in an industry-based anechoic Long Term Evolution (LTE) chamber with an ideal radio environment. Further, we validate our results collected from the smart city environment against the results produced under ideal conditions to establish best and real-life case scenarios. Our results clearly validate that our proposed mechanisms can facilitate efficient sensor authentication and handoffs while sensors are roaming in a smart city environment.

show abstract

“…Therefore, in our testbed, we implemented EAP-Swift as a FreeRadius plugin. Furthermore, results from a scalability study of the FreeRadius server [42] showed that the server is suitable for building highly scalable systems. …”

Section: Results Analysismentioning

confidence: 99%

EAP-Swift: An Efficient Authentication and Key Generation Mechanism for Resource Constrained WSNs

Granlund

Åhlund

Holmlund

2015

International Journal of Distributed Sensor Networks

Self Cite

View full text Add to dashboard Cite

Technological advances within the area of wireless sensor technology allow WSNs to be used in a increasing number of measurement scenarios. As new application areas are emerging, such as infrastructure monitoring and smart cities, the need for sensor mobility handling requires efficient and secure authentication protocols. This paper presents EAP-Swift, a novel EAP based authentication protocol with a focus on lightweight processing and faster response. It supports end-to-end session encryption key generation and mutual authentication. By utilizing lightweight hashing algorithms, the challenge-response authentication mechanism uses only two round trips to the AAA server for the complete authentication procedure leading to the reduction of latency by 33% compared to the baseline protocols. Further, using extensive experimentation, we validate that the authentication time can be kept below 250 ms and the power consumption can be kept below 15 mJ. Furthermore, we show that a battery lifetime of more than four years can be achieved when running the system on a regular button cell battery. Finally, the protocol was verified in terms of security using the AVISPA tool.

show abstract

A Scalability Study of AAA Support in Heterogeneous Networking Environments with Global Roaming Support

Cited by 7 publications

References 7 publications

A CoAP-Based Network Access Authentication Service for Low-Power Wide Area Networks: LO-CoAP-EAP

A CoAP-Based Network Access Authentication Service for Low-Power Wide Area Networks: LO-CoAP-EAP

Opportunistic Mobility Support for Resource Constrained Sensor Devices in Smart Cities

EAP-Swift: An Efficient Authentication and Key Generation Mechanism for Resource Constrained WSNs

Contact Info

Product

Resources

About