Abstract
In this paper, we focus on a feasible security solution to WLAN. We first analyzed EAP-TLS and the IPSec support mechanism in Linux. Secondly, we implemented EAP-TLS authentication and VPN gateways. This paper illustrates the configuration of STA, AP and RADIUS server and the application of ipsec-tool. It also summarizes the security considerations of the solution associating EAP-TLS with IPSec VPN.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Stanley, D., Walker, J.R., Aboba, B.: Extensible Authentication Protocol (EAP) Method Requirements for Wireless LANs, RFC 4017 (March 2005)
Congdon, P., Aboba, B., Smith, A., Roese, J., Zorn, G.: IEEE 802.1X Remote Authentication Dial in User Service (RADIUS). RFC 3580 (September 2003)
Lan, Z.-P., Tao, X.-H., Sun, Y.-G.: Reseach on security mechanism of WLAN based on EAP and VPN. Computer Engineering and Design 27, 1002–1004 (2006)
Aboba, B., Simon, D.: PPP EAP TLS Authentication Protocol, RFC 2716 (October 1999)
Kent, S., Atkinson, R.: Security Architecture for the Internet Protocol, RFC 2401 (November 1998)
Harkins, D., Carrel, D.: The Internet Key Exchange (IKE), RFC 2409 (November 1998)
Roser, K.: HOWTO: EAP/TLS Setup for FreeRADIUS and Windows XP Supplicant, http://freeradius.org/doc/
Linux WPA/WPA2/IEEE 802.1X Supplicant, http://hostap.epitest.fi/wpa_supplicant/
Deployment Guide: Configuring the Cisco Wireless Security Suite, Revison 3.0 (April 2004), http://www.cisco.com/en/US/products/hw/wireless/ps430/prod_technical_reference_list.html
SETKEY(8), NetBSD System Manager’s Manual, http://netbsd.gw.com/cgi-bin/man-cgi?setkey++NetBSD-current
RACOON(8), NetBSD System Manager’s Manual, http://netbsd.gw.com/cgi-bin/man-cgi?racoon++NetBSD-current
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2012 Springer-Verlag GmbH Berlin Heidelberg
About this paper
Cite this paper
Li, Z., Fang-yong, T., Xiao-hui, G. (2012). Research and Implementation of Security Wireless LANs Based on EAP-TLS and IPSec VPN. In: Kim, H. (eds) Advances in Technology and Management. Advances in Intelligent and Soft Computing, vol 165. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-29637-6_14
Download citation
DOI: https://doi.org/10.1007/978-3-642-29637-6_14
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-29636-9
Online ISBN: 978-3-642-29637-6
eBook Packages: EngineeringEngineering (R0)