Módulo de Autenticação via Eduroam para o Pluggable Authentication Modules
Abstract
Universities and research institutions often want to offer services to external collaborators and visitors. Federations are one of the most traditional ways of achieving that aim. Eduroam is a federated network which facilitates roaming internet access amongst participant institutions. However, internet access usually occurs through a personal device owned by the user and, until now, there was no simple method for setting up a public terminal or classroom computer to use Eduroam credentials as login information. This work presents a novel, yet production-proven, solution for accepting Eduroam credentials in systems compatible with Pluggable Authentication Modules (PAM).
References
Bello, E. H. (2014). Pluggable authentication module for 802.1x authentication protocol. https://github.com/ehbello/pam-8021x.
Congdon, P., Aboba, B., Smith, A., Zorn, G., and Roese, J. (2003). IEEE 802.1X remote authentication dial in user service (RADIUS) usage guidelines. RFC 3580, RFC Editor.
Geisshirt, K. (2007). Pluggable Authentication Modules - The Denitive Guide to PAM for Linux SysAdmins and C Developers. Packt Publishing Ltd.
Itoi, N. and Honeyman, P. (1998). Pluggable authentication module for Windows NT. In Proceedings of 2nd USENIX Windows NT Symposium, Seattle.
Pennington, H., Carlsson, A., Larsson, A., Herzberg, S., McVittie, S., and Zeuthen, D. (2016). D-Bus Specication. https://dbus.freedesktop.org/doc/dbus-specification.html.
Reynolds, J. (2010). When 802.1x/PEAP/EAP-TTLS is worse than no wireless security. https://depthsecurity.com/blog/when-802-1x-peap-eap-t tls-is-worse-than-no-wireless-security.
Congdon, P., Aboba, B., Smith, A., Zorn, G., and Roese, J. (2003). IEEE 802.1X remote authentication dial in user service (RADIUS) usage guidelines. RFC 3580, RFC Editor.
Geisshirt, K. (2007). Pluggable Authentication Modules - The Denitive Guide to PAM for Linux SysAdmins and C Developers. Packt Publishing Ltd.
Itoi, N. and Honeyman, P. (1998). Pluggable authentication module for Windows NT. In Proceedings of 2nd USENIX Windows NT Symposium, Seattle.
Pennington, H., Carlsson, A., Larsson, A., Herzberg, S., McVittie, S., and Zeuthen, D. (2016). D-Bus Specication. https://dbus.freedesktop.org/doc/dbus-specification.html.
Reynolds, J. (2010). When 802.1x/PEAP/EAP-TTLS is worse than no wireless security. https://depthsecurity.com/blog/when-802-1x-peap-eap-t tls-is-worse-than-no-wireless-security.
Published
2019-09-02
How to Cite
DE LIMA, Marcos Laerte; CAMPOS, Pedro Henrique; MATIAS, Paulo.
Módulo de Autenticação via Eduroam para o Pluggable Authentication Modules. In: WORKSHOP ON DIGITAL IDENTITY MANAGEMENT, 9. , 2019, São Paulo.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2019
.
p. 1-4.
DOI: https://doi.org/10.5753/wgid.2019.14020.
