Presentation is loading. Please wait.

Presentation is loading. Please wait.

Doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 1 A Network Enrollment Protocol Duncan Kitchin, Intel.

Published byTaylor Scott Modified over 10 years ago

Similar presentations

Presentation on theme: "Doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 1 A Network Enrollment Protocol Duncan Kitchin, Intel."— Presentation transcript:

1 doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 1 A Network Enrollment Protocol Duncan Kitchin, Intel

2 doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 2 Problem Statement 802.11 requires per-node configuration –SSID –encryption keys, mechanisms This is too complex for many products and/or users –TVs, VCRs, DVD players (no keyboard…) –consumers expect these products to work out of the box Security implications –the greatest security flaw we could introduce is making the system too difficult to configure correctly

3 doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 3 Proposed Solution – What the User Sees User sees press a button at either end enrollment –same as used for garage door openers, cordless phones, cordless mice, keyboards Pressing a button on the AP makes it temporarily open for enrollment Two buttons at station, scan and enroll –first illuminates APs, cycling through list –second attempts enrollment in last AP illuminated

4 doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 4 New Packets Use new generic management type & subtype, with action enroll –subaction illuminate –subaction enroll request –subaction enroll response

5 doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 5 Scanning Station determines available APs by existing active or passive scanning, and maintains a list Each time the scan button is pressed, sends an enroll/illuminate packet to the next AP on the list An AP receiving an enroll/illuminate packet emits an audible or visual indication

6 doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 6 Enrollment Process Station and AP create a Diffie-Hellman tunnel –Station creates DH value, sends to AP –AP never advertises that it is open, but accepts an enrollment request if it is and responds with its own DH value and encrypted parameters The tunnel is then used by the AP to send back to the station: –credentials for future authentication –other configuration parameters such as SSID

7 doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 7 Packet Formats See 00/xxx for generic management frame type enroll/illuminate –no additional contents enroll/request –Diffie-Hellman element enroll/response –Diffie-Hellman element –configuration data, plus encrypted-content security credential elements

8 doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 8 Process Summary enroll/illuminate indication request enroll/request enroll/response

Download ppt "Doc.: IEEE 802.11-00/410 Submission November 2000 Duncan Kitchin, IntelSlide 1 A Network Enrollment Protocol Duncan Kitchin, Intel."

Similar presentations

Doc.: IEEE 802.11-09/0413r0 Submission March 2009 Dan Harkins, Aruba NetworksSlide 1 A Study Group for Enhanced 802.11 Security Date: 2009-03-13 Authors:

Doc.: IEEE /0413r0 Submission March 2009 Dan Harkins, Aruba NetworksSlide 1 A Study Group for Enhanced Security Date: Authors:
Doc.: IEEE 802.11-98/178 Submission July 2000 A. Prasad, A. Raji Lucent TechnologiesSlide 1 A Proposal for IEEE 802.11e Security IEEE 802.11 Task Group.

Doc.: IEEE /178 Submission July 2000 A. Prasad, A. Raji Lucent TechnologiesSlide 1 A Proposal for IEEE e Security IEEE Task Group.
Doc.: IEEE 802.11-00/087 Submission May, 2000 Steven Gray, NOKIA Jyri Rinnemaa, Jouni Mikkonen Nokia Slide 1.

Doc.: IEEE /087 Submission May, 2000 Steven Gray, NOKIA Jyri Rinnemaa, Jouni Mikkonen Nokia Slide 1.
Doc.: IEEE 802.11-10/0527r0 Submission March 2010 Slide 1 A Periodic 5 MHz Measurement Pilot for Channel Scan Date: 2010-05-11 Authors:

Doc.: IEEE /0527r0 Submission March 2010 Slide 1 A Periodic 5 MHz Measurement Pilot for Channel Scan Date: Authors:
Doc.: IEEE 802.11-07/2456r0 Submission September 2007 Ganesh Venkatesan (Intel Corporation)Slide 1 What is Home CE Environment? Date: 2007-09-16 Authors:

Doc.: IEEE /2456r0 Submission September 2007 Ganesh Venkatesan (Intel Corporation)Slide 1 What is Home CE Environment? Date: Authors:
Doc.: IEEE 802.11-00/39 Submission March 2000 Keith Amann, SpectraLink CorporationSlide 1 802.11 MAC Enhancements: Additional Requirements Considerations.

Doc.: IEEE /39 Submission March 2000 Keith Amann, SpectraLink CorporationSlide MAC Enhancements: Additional Requirements Considerations.
Doc.: IEEE 802.11-00/351 Submission October 2000 Maarten Hoeben, Menzo Wentink, IntersilSlide 1 Enhance D-QoS through Virtual DCF Maarten Hoeben, Menzo.

Doc.: IEEE /351 Submission October 2000 Maarten Hoeben, Menzo Wentink, IntersilSlide 1 Enhance D-QoS through Virtual DCF Maarten Hoeben, Menzo.
Doc.: IEEE 802.11-09/1012r0 Submission September 2009 Dan Harkins, Aruba NetworksSlide 1 Suite-B Compliance for a Mesh Network Date: 2009-09-15 Authors:

Doc.: IEEE /1012r0 Submission September 2009 Dan Harkins, Aruba NetworksSlide 1 Suite-B Compliance for a Mesh Network Date: Authors:
Overview of the 802.10 SDE Protocol Presented by Ken Alonge Chair, 802.10.

Overview of the SDE Protocol Presented by Ken Alonge Chair,
IEEE P802 Handoff ECSG Submission July 2003 Bernard Aboba, Microsoft Detection of Network Attachment (DNA) and Handoff ECSG Bernard Aboba Microsoft July.

IEEE P802 Handoff ECSG Submission July 2003 Bernard Aboba, Microsoft Detection of Network Attachment (DNA) and Handoff ECSG Bernard Aboba Microsoft July.
Doc.: IEEE 802.11-12/1043 Submission NameAffiliationsAddressPhoneemail Giwon ParkLG Electronics LG R&D Complex 533, Hogye- 1dong, Dongan-Gu, Anyang, Kyungki,

Doc.: IEEE /1043 Submission NameAffiliationsAddressPhone Giwon ParkLG Electronics LG R&D Complex 533, Hogye- 1dong, Dongan-Gu, Anyang, Kyungki,
Doc.:IEEE 802.11-11/1523r4 Submission November 2011 Access Delay Reduction for FILS: Network Discovery & Access congestion Improvements Slide 1 Authors:

Doc.:IEEE /1523r4 Submission November 2011 Access Delay Reduction for FILS: Network Discovery & Access congestion Improvements Slide 1 Authors:
Submission doc.: IEEE 802.11-11/1326r1 August 2011 Hiroki Nakano, Trans New Technology, Inc.Slide 1 Early Key Generation by ECDH and PKC Date: 2011-09-22.

Submission doc.: IEEE /1326r1 August 2011 Hiroki Nakano, Trans New Technology, Inc.Slide 1 Early Key Generation by ECDH and PKC Date:
Doc.: IEEE 802.11-01/039 Submission January 2001 Haverinen/Edney, NokiaSlide 1 Use of GSM SIM Authentication in IEEE802.11 System Submitted to IEEE802.11.

Doc.: IEEE /039 Submission January 2001 Haverinen/Edney, NokiaSlide 1 Use of GSM SIM Authentication in IEEE System Submitted to IEEE
IEEE INFOCOM 2004 MultiNet: Connecting to Multiple IEEE 802.11 Networks Using a Single Wireless Card.

IEEE INFOCOM 2004 MultiNet: Connecting to Multiple IEEE Networks Using a Single Wireless Card.
Doc.: IEEE 802.11-02/380r0 Submission May 2002 Duncan Kitchin, IntelSlide 1 802.11 WG Assigned Numbers Authority Duncan Kitchin Intel Corporation.

Doc.: IEEE /380r0 Submission May 2002 Duncan Kitchin, IntelSlide WG Assigned Numbers Authority Duncan Kitchin Intel Corporation.
Doc.: IEEE 802.11-03/095r0 Submission January 2003 Dan Harkins, Trapeze Networks.Slide 1 Fast Re-authentication Dan Harkins.

Doc.: IEEE /095r0 Submission January 2003 Dan Harkins, Trapeze Networks.Slide 1 Fast Re-authentication Dan Harkins.
Doc.: IEEE 802.11-02/689r0 Submission November 2002 Dan Harkins, Trapeze Networks.Slide 1 Re-authentication when Roaming Dan Harkins.

Doc.: IEEE /689r0 Submission November 2002 Dan Harkins, Trapeze Networks.Slide 1 Re-authentication when Roaming Dan Harkins.
Doc.: IEEE 802.11-10/1125r0 Submission September 2010 Marc Emmelmann, Fraunhofer FOKUSSlide 1 How does the (new) Fast Initial Link Set- Up PAR address.

Doc.: IEEE /1125r0 Submission September 2010 Marc Emmelmann, Fraunhofer FOKUSSlide 1 How does the (new) Fast Initial Link Set- Up PAR address.
Doc.: IEEE 802.11-00/684R2 Submission November 2002 Martin Lefkowitz, Trapeze NetworksSlide 1 Extended Keymap ID Martin Lefkowitz Trapeze Networks.

Doc.: IEEE /684R2 Submission November 2002 Martin Lefkowitz, Trapeze NetworksSlide 1 Extended Keymap ID Martin Lefkowitz Trapeze Networks.

Similar presentations

Ads by Google