Where EAP security claims fail

Hoeper, Katrin; Chen, Lidong

doi:10.1145/1577222.1577285

Cited by 9 publications

(9 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Checking the consistency of i1 and i2 is nontrivial, as has been pointed out already in [HC07]. First, i1 can contain any type of information propagated by the authenticator, whereas i2 is restricted to information that can be carried in AAA attributes.…”

Section: Channel-binding Consistency Checkmentioning

confidence: 99%

Channel-Binding Support for Extensible Authentication Protocol (EAP) Methods

Hartman¹,

Hoeper²,

Clancy³

2012

View full text Add to dashboard Cite

show abstract

Section: Channel-binding Consistency Checkmentioning

confidence: 99%

Channel-Binding Support for Extensible Authentication Protocol (EAP) Methods

Hartman¹,

Hoeper²,

Clancy³

2012

View full text Add to dashboard Cite

show abstract

“…However, they require the interaction between the foreign server and the home server, which may lead to the single point of failure [34], and induce large authentication transmission overhead because of the long distance between the foreign server and the home server. Moreover, recent studies [35], [36] have shown that SC-based schemes cannot provide strong user anonymity and non-traceability, and most of them cannot provide session key security and resistance to sophisticated attacks. Another weakness is that, they cannot flexibly be applied to all application scenarios because each protocol is only suitable for the corresponding network architecture, this may increase the complexity of the entire system.…”

Section: Related Workmentioning

confidence: 99%

CPAL: A Conditional Privacy-Preserving Authentication With Access Linkability for Roaming Service

Lai

Liang

et al. 2014

IEEE Internet Things J.

View full text Add to dashboard Cite

Abstract-The roaming service enables mobile subscribers to access the Internet service anytime and anywhere, which can fulfill the requirement of ubiquitous access for the emerging paradigm of networking, e.g., the Internet of Things (IoT). In this paper, we propose a Conditional Privacy-preserving authentication with Access Linkability (CPAL) for roaming service, to provide universal secure roaming service and multi-level privacy preservation. CPAL provides an anonymous user linking function by utilizing a novel group signature technique, which can not only efficiently hide users' identities, but also enable the authorized entities to link all the access information of the same user without knowing the user's real identity. Specifically, by using the master linking key possessed by the trust linking server, the authorized foreign network operators or service providers can link the access information from the user to improve its service, while preserving user anonymity, e.g., using individual access information to analyze user preferences without revealing user's identity. Furthermore, the subscribers can also use this functionality to anonymously query their usage of service. In addition, CPAL has an efficient revocation function which revokes a group of users at the same time. Through extensive analysis, we demonstrate that CPAL resists various security threats, and provides more flexible privacy preservation compared to the existing schemes.Meanwhile, performance evaluations demonstrate its efficiency in terms of communication and computation overhead.

show abstract

“…MitM attacks on tunneled authentications and authentications in anonymous tunnels have been identified in [3] and [8], respectively. For the sake of simplicity, we review the attacks for scenarios in which tunnel server and inner authentication server are the same entity.…”

Section: B Previous Workmentioning

confidence: 99%

“…As an alternative to cryptographic bindings, the authors in [3] suggest enforcing a policy that prevents authentication methods that are tunneled from being executed outside a protective tunnel. Similarly, the authors in [8] propose a number of security policies, including to prohibit anonymous tunnels, to thwart the reviewed attacks.…”

Section: ) Upon a Successful Authentication The Master Session Keymentioning

confidence: 99%

“…In our analysis we consider not only the MitM attacks proposed in [3] and [8], but also a new extended MitM attack that is a modified combination of both attacks. While the original attack relies on the fact that clients may execute inner methods outside a protective tunnel, the extended attack exploits that clients may accept the establishment of anonymous tunnels.…”

Section: Threat Modelmentioning

confidence: 99%

See 1 more Smart Citation

An inconvenient truth about tunneled authentications

Hoeper

Chen

2010

IEEE Local Computer Network Conference

Self Cite

View full text Add to dashboard Cite

In recent years, it has been a common practice to execute client authentications for network access inside a protective tunnel. Man-in-the-middle (MitM) attacks on such tunneled authentications have been discovered early on and cryptographic bindings are widely adopted to mitigate these attacks. In this paper, we shake the false sense of security given by these so-called protective tunnels by demonstrating that most tunneled authentications are still susceptible to MitM attacks despite the use of cryptographic bindings and other proposed countermeasures. Our results affect widely deployed protocols, such as EAP-FAST and PEAP.

show abstract

Where EAP security claims fail

Cited by 9 publications

References 8 publications

Channel-Binding Support for Extensible Authentication Protocol (EAP) Methods

Channel-Binding Support for Extensible Authentication Protocol (EAP) Methods

CPAL: A Conditional Privacy-Preserving Authentication With Access Linkability for Roaming Service

An inconvenient truth about tunneled authentications

Contact Info

Product

Resources

About