Segurança em redes IEEE 802.11 utilizando cadeias SPKI
Resumo
A disseminação das redes sem fio tem impulsionado o desenvolvimento de novas tecnologias e padrões. Entretanto, com esta evolução surgiram problemas em áreas críticas, como segurança. Este trabalho propõe melhorias na segurança em redes sem fio seguindo o padrão IEEE 802.11. Nele é proposta uma forma de integração do modelo de autenticação/autorização não hierárquico SPKI ao ambiente de rede IEEE 802.11, fazendo também uso dos protocolos de segurança EAP e TLS.Referências
Aboba, B. and Simon, D. (1999) PPP EAP TLS Authentication Protocol. RFC 2716.
ANSI/IEEE (1999). LAN MAN Standards Committee of the IEEE Computer Society. ANSI/IEEE Std 802.11.
Arbaugh, W. A.; Shankar, N. and Wang, J. (2001) Your 802.11 Network has no Clothes. 1st IEEE Intl Conference on Wireless LANs and Home Networks.
Blunk, L. and Vollbrecht, J. (1998) PPP Extensible Authentication Protocol (EAP). RFC 2284.
Blunk, L et al. (2003) Extensible Authentication Protocol (EAP). Internet Draft (draftietf-eap-rfc2284bis-00).
Borisov, N.; Goldberg, I.; Wagner, D. (2001) Intercepting Mobile Communications: The Insecurity of 802.11. 7th Annual International Conference on Mobile Computing and Networking.
Burnside, M.; Clarke, D.; Mills, T.; Maywah, A.; Devadas, S.; Rivest, R. (2002) ProxyBased Security Protocols in Networked Mobile Devices. 17th ACM Symposium on Applied Computing (Security Track), pages 265-272.
Cam-Winget N., Housley R., Wagner D., Walker J. (2003) Wireless networking security: Security flaws in 802.11 data link protocols. Communications of the ACM, Volume 46 Issue 5.
Clarke, D. (2001) SPKI / SDSI HTTP Server / Certificate Chain Discovery in SPKI / SDSI. Masterís thesis. Massachusetts Institute of Technology.
Dierks, T. and Allen, C. (1999) The TLS Protocol Version 1.0. RFC 2246.
Ellison, C. (1999) SPKI Requirements. RFC 2692.
Ellison, C. et al. (1999) SPKI Certificate Theory. RFC 2693.
Fluhrer, S.; Mantin, I.; Shamir, A. (2001) Weaknesses in the key schedule algorithm of RC4. 4th Annual Workshop on Selected Areas of Cryptography.
Lampson, B. and Rivest, R. (1996) A simple Distributed Security Infrastructure. http://citeseer.nj.nec.com/rivest96sdsi.html. Presented at CRYPTO'96 Rumpsession.
Madhusudhana, H.; Ramachandran, V. (2001) SPKI Certificate Integration with Transport Layer Security (TLS) for Client Authentication and Authorization. Internet Draft (draft-madhu-tls-spki-00).
ANSI/IEEE (1999). LAN MAN Standards Committee of the IEEE Computer Society. ANSI/IEEE Std 802.11.
Arbaugh, W. A.; Shankar, N. and Wang, J. (2001) Your 802.11 Network has no Clothes. 1st IEEE Intl Conference on Wireless LANs and Home Networks.
Blunk, L. and Vollbrecht, J. (1998) PPP Extensible Authentication Protocol (EAP). RFC 2284.
Blunk, L et al. (2003) Extensible Authentication Protocol (EAP). Internet Draft (draftietf-eap-rfc2284bis-00).
Borisov, N.; Goldberg, I.; Wagner, D. (2001) Intercepting Mobile Communications: The Insecurity of 802.11. 7th Annual International Conference on Mobile Computing and Networking.
Burnside, M.; Clarke, D.; Mills, T.; Maywah, A.; Devadas, S.; Rivest, R. (2002) ProxyBased Security Protocols in Networked Mobile Devices. 17th ACM Symposium on Applied Computing (Security Track), pages 265-272.
Cam-Winget N., Housley R., Wagner D., Walker J. (2003) Wireless networking security: Security flaws in 802.11 data link protocols. Communications of the ACM, Volume 46 Issue 5.
Clarke, D. (2001) SPKI / SDSI HTTP Server / Certificate Chain Discovery in SPKI / SDSI. Masterís thesis. Massachusetts Institute of Technology.
Dierks, T. and Allen, C. (1999) The TLS Protocol Version 1.0. RFC 2246.
Ellison, C. (1999) SPKI Requirements. RFC 2692.
Ellison, C. et al. (1999) SPKI Certificate Theory. RFC 2693.
Fluhrer, S.; Mantin, I.; Shamir, A. (2001) Weaknesses in the key schedule algorithm of RC4. 4th Annual Workshop on Selected Areas of Cryptography.
Lampson, B. and Rivest, R. (1996) A simple Distributed Security Infrastructure. http://citeseer.nj.nec.com/rivest96sdsi.html. Presented at CRYPTO'96 Rumpsession.
Madhusudhana, H.; Ramachandran, V. (2001) SPKI Certificate Integration with Transport Layer Security (TLS) for Client Authentication and Authorization. Internet Draft (draft-madhu-tls-spki-00).
Publicado
10/05/2004
Como Citar
MILANEZ, Marcello; MAZIERO, Carlos; JAMHOUR, Edgard.
Segurança em redes IEEE 802.11 utilizando cadeias SPKI. In: SIMPÓSIO BRASILEIRO DE SEGURANÇA DA INFORMAÇÃO E DE SISTEMAS COMPUTACIONAIS (SBSEG), 4. , 2004, Gramado.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2004
.
p. 12-23.
DOI: https://doi.org/10.5753/sbseg.2004.21222.
