Title :
Trusted Network Access Control in the Eduroam Federation
Author :
Bernal, Fernando ; Sánchez, Manuel ; López, Gabriel ; Gómez-Skarmeta, Antonio F. ; Cánovas, Óscar
Author_Institution :
Dept. of Inf. & Commun. Eng., Univ. of Murcia, Murcia, Spain
Abstract :
In order to ensure end user devices are healthy enough to gain access to the network, providers are making use of advanced network access control solutions, which propose an evaluation of configuration information (posture) about the device itself before providing access to the network. However, current solutions are focused on intra-domain scenarios, where end users and network belong to the same organization. This work proposes an architecture to provide this trusted network access control in other emerging scenarios: network roaming federations, like eduroam, where the accessed network provider is not where the end user belongs to. The paper describes how authentication and authorization mechanisms for these scenarios can be integrated to provide trusted network access control.
Keywords :
authorisation; client-server systems; message authentication; telecommunication security; authentication mechanism; authorization mechanism; eduroam federation; intra-domain scenario; network roaming; trusted network access control; Access control; Authentication; Authorization; Communication system security; Computer networks; Computer security; Information security; Operating systems; Proposals; Protection; NEA; eduroam; federation; network access control;
Conference_Titel :
Network and System Security, 2009. NSS '09. Third International Conference on
Conference_Location :
Gold Coast, QLD
Print_ISBN :
978-1-4244-5087-9
Electronic_ISBN :
978-0-7695-3838-9
DOI :
10.1109/NSS.2009.47
