Deployment Of 802.1x EAP-TLS

Posted on:2008-06-01

Degree:Master

Type:Thesis

Country:China

Candidate:L F Yang

Full Text:PDF

GTID:2178360245964314

Subject:Computer application technology

Abstract/Summary:

PDF Full Text Request

In order to secure network resources, control access to network has become the main security stage at present. Extensible Authentication Protocol (EAP) works with integration of Public Key Infrastructure (PKI), which is a common,safe way, and contains high cost performance.It is believed in this field that control of the access to network is important, and its key is to distinguish the identity. PKI is regarded as the most effective and safe way among the current methods of distinguishing the identity. The combination of EAP and PKI can enable an excellent control of the access to network.EAP-TLS is based on PKI which is presently a mature and perfect solution to the security problem of network. It can be said that EAP-TLS is the most secure for user authentication. But it's not so convenient to put into practice, and the commercial software, which performs PKI, is expensive. Almost all complete applications of PKI are focused on bank, financial and military area, which hinder the progress of the extensive application. Aiming at this situation, this paper makes a certain analysis on the application of PKI to the FreeRADIUS user authentication. It gives an important introduction of open source sofrware, EJBCA and of the configuration and usage of the combining application of FreeRADIUS and EJBCA. Through using EJBCA and FreeRADIUS, a complete system of the management of PKI certificate and user authentication method has been constructed.This paper mainly aims at the authentication of the access of 802.1x, explores the method of certificate authentication which focuses on EAP-TLS, and related management of certificate of CA users. It also solves the problem of checking the validity of the users'certificate in real time, which is needed in the application of FreeRADIUS together with EJBCA, providing a comparatively complete application reference to the using of FreeRADIUS certificate authentication.Finally, this paper studies the method of certificate store and authentication using USB Key. It explains the substantial function of combining use of USB Key and FreeRADIUS EAP-TLS to user authentication.

Keywords/Search Tags:

pki, eap-tls, 802.1x, ejbca, freeradius

PDF Full Text Request

Related items

1	Research And Implementation On CA Based On J2EE
2	Realization And Research Of PKI Based On HFEM
3	Research And Implementation Of Campus Network's Certification Authority Based On EJBCA
4	Implement CMDA Wireless POS System Based On FreeRadius And Optimize The Security And Reliability Of The System Based On Facts
5	Research And Implementation Of Access Control Management Of Video Surveillance System
6	The Research And Realization Of The Exchange Of Information Security Suite Based On PKI
7	Research And Design Of Identity Authentication Platform For E-commerce Based On Biometric
8	Research And Implement Of Revocaton Scheme Base On Active Status Certificate