Secure Public Internet Access Handler (SPINACH)

This paper describes a system that controls access to computer networks through publicly accessible LANs, enabling network administrators to authorize users either on a permanent or occasional basis. The system has been designed with minimal assumptions about the software and hardware required of users, and requires very little specialized equipment within the network infrastructure. We enumerate the requirements for such a system, describe the design and implementation of the system, and note tradeoffs between security and efficiency.

[1]  Ralph E. Droms,et al.  Dynamic Host Configuration Protocol , 1993, RFC.

[2]  Jeffrey I. Schiller,et al.  An Authentication Service for Open Network Systems. In , 1998 .

[3]  Bill Cheswick,et al.  Firewalls and internet security - repelling the wily hacker , 2003, Addison-Wesley professional computing series.

[4]  Sandeep K. Singhal,et al.  Designing an academic firewall: policy, practice, and experience with SURF , 1996, Proceedings of Internet Society Symposium on Network and Distributed Systems Security.

[5]  William Cheswick,et al.  Firewalls and Internet Security , 1994 .

[6]  Neil Haller,et al.  The S/KEY One-Time Password System , 1995, RFC.

[7]  Simson L. Garfinkel,et al.  Practical UNIX Security , 1991 .

[8]  Ralph E. Droms,et al.  DHCP Options and BOOTP Vendor Extensions , 1993, RFC.

[9]  W. Richard Stevens,et al.  Unix network programming , 1990, CCRV.