Title :
Certificate-Based, Disruption-Tolerant Authentication System with Automatic CA Certificate Distribution for Eduroam
Author :
Hao Liu ; Goto, Hiromi
Author_Institution :
Grad. Sch. of Inf. Sci., Tohoku Univ., Sendai, Japan
Abstract :
Eduroam, the world-wide roaming system for research and educational institutions, has several shortcomings such as unstable and slow user authentication and weakness against network/proxy failures. We propose a disruption-tolerant authentication architecture based on the combination of certificate-based authentication and the centralized authentication system called Delegate Authentication System (DEAS) to improve the performance and stability of eduroam. Being able to automatically retrieve CA (Certificate Authority) certificates and Certificate Revocation Lists, the proposed system can significantly reduce the authentication request exchanges across countries and is tolerant of temporary service interruptions of the network as well as of RADIUS proxies.
Keywords :
educational computing; educational institutions; message authentication; wireless LAN; DEAS; RADIUS proxies; WLAN; authentication request exchange reduction; automatic CA certificate distribution; centralized authentication system; certificate authority; certificate revocation lists; certificate-based authentication system; delegate authentication system; disruption-tolerant authentication system; educational institution; eduroam; research institution; roaming system; temporary service interruptions; user authentication; Authentication; Computer architecture; Educational institutions; Public key; Roaming; Servers; Wireless LAN; Delegate Authentication System; automatic CA certificate retrieval; certificate-based authentication; disruption-tolerant WLAN roaming; eduroam;
Conference_Titel :
Computer Software and Applications Conference Workshops (COMPSACW), 2014 IEEE 38th International
Conference_Location :
Vasteras
DOI :
10.1109/COMPSACW.2014.32
