Title :
AAA Architecture for Unified Configuration Management in Large-Scale Network
Author :
Jinsong, Wang ; Jia, Lou ; Shaoying, Wu ; Zhengxu, Wang ; Gongyi, Wu
Author_Institution :
Tianjin Univ. of Technol., Tianjin
Abstract :
Unified configuration management of network devices in large-scale environment is an important issue. As a traditional method, password authentication by router can not verify the administrators´ identities. In other words, someone who actually is not an administrator, can also access the router if he knows password. In this paper, we present a new policy-based AAA architecture that uses VPN and certificate-based authentication. By implementing the architecture, administrators can access authorized routers only and execute authorized commands. Single Sign-On mechanism is used to simplify authentication process. Moreover, the actions of administrators can be logged for accounting. Finally, we implement the architecture in Tianjin Education Metropolitan Area Network.
Keywords :
authorisation; computer network management; message authentication; telecommunication network routing; telecommunication security; virtual private networks; authorized router; certificate-based authentication; password authentication; policy-based AAA architecture; single sign-on mechanism; unified configuration management; virtual private network; Authentication; Computational intelligence; Computer network management; Computer science; Computer security; Conference management; Cryptography; Environmental management; Large-scale systems; Technology management;
Conference_Titel :
Computational Intelligence and Security Workshops, 2007. CISW 2007. International Conference on
Conference_Location :
Harbin
Print_ISBN :
978-0-7695-3073-4
DOI :
10.1109/CISW.2007.4425559
