• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

J4 ›› 2011, Vol. 33 ›› Issue (4): 8-12.doi: 10.3969/j.issn.1007130X.2011.

• 论文 • Previous Articles     Next Articles

Design and Implementation of an Authentication Scheme for Trusted Network Connection Based on EAPTLS

CHI Yaping1,YANG Lei1,2,LI Zhaobin1,FANG Yong1   

  1. (1.Department of Communication Engineering,Beijing Electronic and Science Technology Institute,Beijing 100070;
    2.School of Communication,Xidian University,Xi’an 710071,China)
  • Received:2010-07-29 Revised:2010-10-26 Online:2011-04-25 Published:2011-04-25

PDF

565

Abstract:

When a terminal access network, a trusted authentication of the terminal platform identity and the platform environment are implemented in the TNC architecture, which ensures the credibility of access terminal. However, the trusted authentication has the oneway limitation that can not guarantee the network server's credibility. EAPTLS is a extended authentication protocol based on 802.1x,which suports mutual authentication.On the basis of analyzing the architecture of TNC and the mutual authentication mechanism of EAPTLS,a mutual authentication scheme used in TNC based on EAPTLS is designed in this paper.The mutual authentication scheme is based on the certificates,the integrity and the trusted environment of platform,both for clients and servers.Finally,the paper implements a twoway trusted authentication scheme between the client and the server on the basis of the open source software FHH@TNC,and proves its validity.

Key words: trusted network connection;mutual authentication;EAPTLS

湘公网安备 43010502000083号

湘ICP备10006030号

Copyright © Computer Engineering & Science, All Rights Reserved.

Address:109 Deya Rd,Changsha,hunan(410073) Tel: 0731-87002567 Email: jsjgcykx@vip.163.com

Powered by Beijing Magtech Co., Ltd.