A System and Method for Authentication in Wireless Local Area Networks (WLANs)

“…Amit et al [11] proposed a technique that claims to relieve server's burden while also meeting all security requirements. An authentication protocol was proposed by Pandey et al [10]. The fast reconnect mechanism and key generation aren't specified in their protocol.…”

“…• Ephemeral secret leakage: The authentication protocols [3], [10], [11], [13] do not provide protection from ephemeral secret leakage. • Fast-reconnect: Majority of the authentication protocol do not support [9], [10], [12]- [14], [19], [22] fast reconnect for quick re-authentication.…”

“…Therefore, it is quite clear from the output of Table IV that the proposed protocol not only takes lesser cost compared to the protocols [3], [14], [15], [19], [22], [23] that use the asymmetric encryptiion but also the protocols [11], [13] that use the combination of symmetric and hash. However, the proposed protocol has slightly higher cost compared to symmetric encryption based protocols [10], [12] but provides more security features such as perfect forward secrecy, traceability, protection from ephemeral secret leakage, protection from privileged insider attack and fast reconnect which is lacking in [10], [12]. This section calculates and compares the number of bits sent in the channel for the proposed protocol and its counterparts.…”

An EAP-Based Mutual Authentication Protocol for WLAN-Connected IoT Devices

“…Amit et al [11] proposed a technique that claims to relieve server's burden while also meeting all security requirements. An authentication protocol was proposed by Pandey et al [10]. The fast reconnect mechanism and key generation aren't specified in their protocol.…”

“…• Ephemeral secret leakage: The authentication protocols [3], [10], [11], [13] do not provide protection from ephemeral secret leakage. • Fast-reconnect: Majority of the authentication protocol do not support [9], [10], [12]- [14], [19], [22] fast reconnect for quick re-authentication.…”

“…Therefore, it is quite clear from the output of Table IV that the proposed protocol not only takes lesser cost compared to the protocols [3], [14], [15], [19], [22], [23] that use the asymmetric encryptiion but also the protocols [11], [13] that use the combination of symmetric and hash. However, the proposed protocol has slightly higher cost compared to symmetric encryption based protocols [10], [12] but provides more security features such as perfect forward secrecy, traceability, protection from ephemeral secret leakage, protection from privileged insider attack and fast reconnect which is lacking in [10], [12]. This section calculates and compares the number of bits sent in the channel for the proposed protocol and its counterparts.…”

An EAP-Based Mutual Authentication Protocol for WLAN-Connected IoT Devices

“…1) Lack of identity protection: The identities of the STA and S must always be exchanged in masked form, according to identity protection. The majority of the EAP based authentication protocols [9], [10], [12], [13], [18] do not provide the identity protection. 2) Lack of protection from privileged insider attack: It requires that STA must keep secret credentials in disguised form in the database so that no insider may pry into the information.…”

“…3) Perfect forward secrecy: Even if long-term credentials are compromised, obtaining the previous session key should not be possible. Majority of the authentication protocols [9], [10], [12], [13], [18] fail to preserve the perfect forward secrecy. 4) Cost: It is seen that strong password-based EAP protocols fail to address the security requirements like replay attack protection, privileged insider attack protection, identity protection, and perfect forward secrecy, while the certificate-based authentication protocols require high cost and delay.…”

LEMAP: A Lightweight EAP based Mutual Authentication Protocol for IEEE 802.11 WLAN

Secure Path Key Establishment Schemes Based on Random Key Management for WSN