Title:	DISRUPTION-TOLERANT, LARGE-SCALE WIRELESS LAN ROAMING ARCHITECTURE FOR EDUROAM
Author(s):	Hideaki Goto, Hao Liu, Shunichi Kinoshita, Motonori Nakamura,Hideaki Sone
ISBN:	978-989-8533-20-3
Editors:	Hans Weghorn
Year:	2013
Edition:	Single
Keywords:	Eduroam, Delegate Authentication System, RADIUS, disruption-tolerant WLAN roaming, client certificate
Type:	Short Paper
First Page:	191
Last Page:	195
Language:	English
Cover:
Full Contents:	click to dowload
Paper Abstract:	Eduroam, the world-wide de-facto standard Wireless LAN (WLAN) roaming system for research and educational institutions, is based on the IEEE802.1X standard, and its conventional authentication network consists of the hierarchically-connected RADIUS servers/proxies. Although eduroam has realized a large-scale roaming system, it is still suffering from several shortcomings such as unstable and slow user authentication and weakness against network/proxy failures. RadSec, an alternative transport for RADIUS, was proposed to solve or ease some of these problems. However, the long-haul communications across continents still exist, and they may affect to the stability and reliability of user authentication. On the other hand, the high deployment and operational costs of RADIUS servers at both the national operative body and the member institutions are the hurdles in some countries having hundreds of institutions. A centralized authentication system called Delegate Authentication System (DEAS) was developed and incorporated into eduroam in Japan to deal with the problems. In this paper, we propose a disruption-tolerant, large-scale WLAN roaming system based on DEAS combined with a certificate-based authentication mechanism. The system can significantly reduce the authentication request exchanges across countries and is tolerant of temporal service interruptions of the network as well as RADIUS proxies. The proposed system is expected to provide eduroam users with stable and reliable network connections.
	Go Back