Pre-Authentication Based Enhancement for Access Control in Hybrid MANETs

We analyze the problem of reducing packet losses due to the authentication time which is required when an ad hoc node switches across different gateways in a mobile ad hoc network connected to Internet (hybrid MANET). Our goal is to provide a mechanism allowing Internet gateways to accept only authorized traffic without decreasing the overall performance of the system. We propose a solution based on pre-authentication which uses utility-based optimal control to choose with which gateways to pre-authenticate over time. Our simulation results show that the proposed scheme outperforms traditional schemes across a variety of network scenarios and configurations.

[1]  A. M. Abdullah,et al.  Wireless lan medium access control (mac) and physical layer (phy) specifications , 1997 .

[2]  Larry J. Blunk,et al.  PPP Extensible Authentication Protocol (EAP) , 1998, RFC.

[3]  Leon Gommans,et al.  Generic AAA Architecture , 2000, RFC.

[4]  William A. Arbaugh,et al.  Proactive key distribution using neighbor graphs , 2004, IEEE Wireless Communications.

[5]  Tao Zhang,et al.  MPA assisted optimized proactive handoff scheme , 2005, The Second Annual International Conference on Mobile and Ubiquitous Systems: Networking and Services.

[6]  Dan Simon,et al.  PPP EAP TLS Authentication Protocol , 1999, RFC.

[7]  Bernard Aboba,et al.  Extensible Authentication Protocol (EAP) , 2004, RFC.

[8]  Glen Zorn,et al.  Diameter Extensible Authentication Protocol (EAP) Application , 2005, RFC.

[9]  Bernard Aboba,et al.  RADIUS (Remote Authentication Dial In User Service) Support For Extensible Authentication Protocol (EAP) , 2003, RFC.

[10]  Charles E. Perkins,et al.  Ad hoc On-Demand Distance Vector (AODV) Routing , 2001, RFC.

[11]  Dan Simon,et al.  Extensible Authentication Protocol (eap) Key Management Framework , 2007 .

[12]  Andreas Hafslund,et al.  2-Level Authentication Mechanism in an Internet connected MANET , .

[13]  Christos Politis,et al.  AAA context transfer for seamless and secure multimedia services over All-IP infrastructures , 2004 .

[14]  Charlie Kaufman,et al.  Internet Key Exchange (IKEv2) Protocol , 2005, RFC.

[15]  Haiyun Luo,et al.  URSA: ubiquitous and robust access control for mobile ad hoc networks , 2004, IEEE/ACM Transactions on Networking.

[16]  Dan Forsberg,et al.  Protocol for Carrying Authentication for Network Access (PANA) , 2008, RFC.

[17]  Jeong Hyun Yi,et al.  Efficient node admission for short-lived mobile ad hoc networks , 2005, 13TH IEEE International Conference on Network Protocols (ICNP'05).

[18]  G.Q. Maguire,et al.  MIPMANET-mobile IP for mobile ad hoc networks , 2000, 2000 First Annual Workshop on Mobile and Ad Hoc Networking and Computing. MobiHOC (Cat. No.00EX444).

[19]  Yanghee Choi,et al.  FAST INTER-AP HANDOFF USING PREDICTIVE AUTHENTICATION SCHEME IN A PUBLIC WIRELESS LAN , 2002 .