pascal urien slide 1/6 55th ietf atlanta, ga, november 17-21, 2002 “eap support in smartcards”...

6

Pascal Urien Slide 1/6 55th IETF Atlanta, GA, November 17-21, 2002 “EAP support in smartcards” My name is Pascal Urien [email protected] Draft-urien-EAP-smartcard-00.txt

Upload: neil-johnston

Post on 18-Jan-2016

218 views

Category:

Documents

0 download

Report

Download

Embed Size (px):

TRANSCRIPT

Page 1: Pascal Urien Slide 1/6 55th IETF Atlanta, GA, November 17-21, 2002 “EAP support in smartcards” My name is Pascal Urien urienp@wifisecurity.org Draft-urien-EAP-smartcard-00.txt

Pascal UrienSlide 1/6

55th IETFAtlanta, GA, November 17-21, 2002

“EAP support in smartcards”

My name is Pascal Urien

[email protected]

Draft-urien-EAP-smartcard-00.txt

Page 2: Pascal Urien Slide 1/6 55th IETF Atlanta, GA, November 17-21, 2002 “EAP support in smartcards” My name is Pascal Urien urienp@wifisecurity.org Draft-urien-EAP-smartcard-00.txt

Pascal UrienSlide 2/6

Draft Overview

EAP / RADIUSEAP / RADIUSEAP / LANEAP / LANEAP / 7816EAP / 7816

RADIUS802.1xISO 7816

Secure AuthenticationUser authentication rather than computer authentication.

Smartcard Supplicant Authenticator RADIUSserver

EAPEAP

Page 3: Pascal Urien Slide 1/6 55th IETF Atlanta, GA, November 17-21, 2002 “EAP support in smartcards” My name is Pascal Urien urienp@wifisecurity.org Draft-urien-EAP-smartcard-00.txt

Pascal UrienSlide 3/6

Draft Objectives. EAP support in smartcards.

EAP is computed in smartcard. Profiles definition, for some EAP

types (EAP-SIM, EAP-TLS, …) Interoperability between ISO 7816

EAP smartcards. Agreement between major

smartcard manufacturers. Four service primitives.

Get-Next-identity() Set-Identity() EAP-Packet() Get-RSN-Master-Key()

EAPENGINE

IAK KERB

EAP TLS

EAP AKA

EAP SIM MD5

EAPSmartcar

d

Page 4: Pascal Urien Slide 1/6 55th IETF Atlanta, GA, November 17-21, 2002 “EAP support in smartcards” My name is Pascal Urien urienp@wifisecurity.org Draft-urien-EAP-smartcard-00.txt

Pascal UrienSlide 4/6

Draft content.

Defines 4 services primitives associated to four APDUs and two informative profiles.

EAP-SIM EAP-MD5

4 Services, shuttled by 4 APDUs. Get_Next_Identity()

CLA=A0 INS=16 P1=01 P2=00 Lc=0 Le=xx Set_Identity()

CLA=A0 INS=16 P1=80 P2=00 Lc=xx Le=00 EAP_Packet()

CLA=A0 INS=80 P1=00 P2=00 Lc=xx Le=yy Get_RSN_Master_key()

CLA=A0 INS=A6 P1=00 P2=00 Lc=00 Le=16.

Page 5: Pascal Urien Slide 1/6 55th IETF Atlanta, GA, November 17-21, 2002 “EAP support in smartcards” My name is Pascal Urien urienp@wifisecurity.org Draft-urien-EAP-smartcard-00.txt

Pascal UrienSlide 5/6

System Identity Concept

A wireless user may have several (EAP) identity associated to various 802.11 networks. The system identity is an ASCII string pointed to a particular (EAP) identity. The draft suggest three identity types,

The network SSID as described in the 802.11 standard . The NAI , the network realms and user name. A user’s identification (UID) e.g. an ASCII string, for example a

friendly name.

Get-Next-Identity() Returns an identity from a circular list.

Set-Identity() Sets the smartcard identity, e.g everything required

for EAP packet computing.The triplet (EAP-Identity, EAP-Type, Key(s)).

Page 6: Pascal Urien Slide 1/6 55th IETF Atlanta, GA, November 17-21, 2002 “EAP support in smartcards” My name is Pascal Urien urienp@wifisecurity.org Draft-urien-EAP-smartcard-00.txt

Pascal UrienSlide 6/6

EAP Support.

EAP_Packet() EAP-Packet() processes an EAP (request) message

an returns an EAP (response) message. Get_RSN_Master_Key()

Returns the session master key, if any, deduced from a successful authentication scenario.

SecureTrusted

EAP Engine

Master_Key

In

Out

EaP Thinkprismua.org/wp-content/uploads/2018/11/ETB_5_2018_rus.pdf · EaP ink Bridge 2 EaP Think Bridge EaP Think Bridge, №1, 2018EaP Think Bridge, №5, 20181.2623 Foreign Policy

Pascal Compatibility Guide for CUDA Applicationskarel.tsuda.ac.jp/lec/cuda/doc_v9_0/pdf/Pascal...Pascal Compatibility Pascal Compatibility Guide for CUDA Applications DA-08133-001_v9.0

EAP Quick Installation Guide - TP-LinkUN)_V1_QIG.pdf · 7106505995 REV1.0.0 Clients PoE Switch EAP EAP EAP Controller Host EAP Controller Router Internet To quickly set up a wireless

EAP!Conference2016!! FindingtheBalance:! !Language ......EAP!Conference2016!! FindingtheBalance:!!Language!andContent!in!EAP! to!be!held!at!! Medical!and!Biological!SciencesBuilding!

Aos & cppm integration configuration & testing document for eap tls & eap peap

Free Pascal - Object Pascal Reference Guide

EaP Think Bridgeprismua.org/wp-content/uploads/2017/12/EaPThinkBridge_11...EaP Think Bridge, 11, 2017 EaP Think Bridge, 1, 2017 1. 1 1 EaP Think Bridge Eastern Partnership мonthly

Alexander - EAP Essentials Chap 1 the Context of EAP

Pascal language Slides of Omar Al-Nahal. Components of Pascal Language Components of Pascal Language 1. Pascal Character set: - English Letters. - Decimal

NWA1123-ACv2 - Farnell · 2016. 11. 12. · 5 WLAN Security WEP Yes WPA/WPA2-PSK Yes WPA/WPA2-Enterprise Yes EAP type EAP-TLS, EAP-TTLS, EAP-PEAP, EAP-FAST, EAP-AKA and EAP-SIM WMM

Leire Urien book

Cisco AnyConnect Secure Mobility Client Administrator ... · EAP-GTC 158 EAP-TLS 159 EAP-TTLS 160 PEAPOptions 161 EAP-FASTSettings 163 LEAPSettings 164 ... AbouttheWebSecurityModule

PASCAL USER'S GROUP Pascal. News

PASCAL PROGRAMMING. INTRODUCTION PASCAL is a programming language named after the 17th century mathematician Blaise Pascal. The Pascal programming language:

PASCAL PASCAL CHALLENGE ON INFORMATION EXTRACTION

supporting EAP professionals Which EAP Model Do We Want to Be?€¦ · EAP primarily a performance management tool or is EAP really an extension of a company’s bene-fits package?”

Introduction à la Cyber Sécurité - 2017 · 3 Pascal Urien – Télécom ParisTech – Introduction à la Cyber Sécurité Heuristiques de défense: placebo, vaccin, défense immunitaire

Introduction à la Cyber Sécurité - 2019 - Télécom …9 Pascal Urien – Télécom ParisTech – Introduction à la Cyber Sécurité L'internet Enfin l’émergence de l'internet2,

ネットワークアクセスマネージャの設定 - Cisco...• EAP メソッド群： – EAP-FAST、PEAP、EAP-TTLS、EAP-TLS、および LEAP（IEEE 802.3 有線のみ

Aos & cppm integration & testing document for eap tls & eap peap

Diameter EAP Application (draft-ietf-aaa-eap-02.txt)

MultiGraphics for Turbo Pascal & Borland Pascal

RFID and the Internet of Things · RFID and the Internet of Things Edited by Hervé Chabanne Pascal Urien Jean-Ferdinand Susini

Presentation1 EAP

EAP Orientation

1970 The pascal programming language - amaus.net The pascal... · The Programming Language Pascal Abstract A programming language called Pascal is described which was developed on

EAP - Options in LearningApr 15, 2019 · • EAP orientation for employees: $230 • EAP training for supervisors and managers: $230 • EAP training course: $230 • Training program

2008 Pascal Contest Concours Pascal - CEMC

Pascal Blaise the Provincial Letters by Blaise Pascal

Exceptional Access Program(EAP) EAP Reimbursement Criteria ... · 1 Exceptional Access Program(EAP) EAP Reimbursement Criteria for Frequently Requested Drugs Updated – March 1,

Extensible Authentication ProtocolsFor PEAP Version 1, the supported authentication methods are EAP-GTC, EAP-SIM, EAP-TLS and EAP-Negotiate. The PEAP protocol consists of two phases:

NFC Technologies for the Internet Of Things - · PDF fileNFC Technologies for the Internet Of Things Pr Pascal Urien ... A summary of record TYPE may be found in NF Tags A technical