eap client side transport
play

EAP Client-side Transport draft-boursetty-eap-cst-00.txt IETF 57 - PowerPoint PPT Presentation

Aug 21, 2022 •541 likes •628 views

EAP Client-side Transport draft-boursetty-eap-cst-00.txt IETF 57 EAP WG July 2003 A typical EAP setup Access Target Client NAS Network Network AAA server S 2 A new EAP setup Authentication AuthToken AuthServer Integrity Client

  1. EAP Client-side Transport draft-boursetty-eap-cst-00.txt IETF 57 EAP WG July 2003

  2. A typical EAP setup Access Target Client NAS Network Network AAA server S 2

  3. A new EAP setup Authentication AuthToken AuthServer Integrity Client Server Encryption S 3

  4. Why this new setup? � Purpose of this setup: – Service separation – Interoperability � Advantages of this setup: – Security on the client side – Flexibility on the Client side – Ease of deployment of the authentication method S 4

  5. The protocol stack Authentication EAP-X EAP-X EAP EAP EAP EAP EAP EAP EAP-CST EAP-CST EAP EAP over over EAP-CST EAP-CST AAA AAA Service Service LDA LDA Local Link Local Link AAA AAA AuthToken Client Server AuthServer S 5

  6. Why this new protocol stack? � Broaden the scope encompassed by Authentication Tokens � Distinguish the Authentication Token from the Local link S 6

  7. Thank you for your attention! Any feedback welcome! florent.bersani@francetelecom.com FT R&D S 7

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Modern client-side defenses Deian Stefan Today How can we build flexible and secure client-side

Modern client-side defenses Deian Stefan Today How can we build flexible and secure client-side

CSE 127: Computer Security Modern client-side defenses Deian Stefan Today How can we build flexible and secure client-side web applications (from vulnerable/untrusted components) Modern web sites are complicated Many acting parties on a site

867 views • 62 slides
CSCC09 Programming on the Web Thierry Sans Architecture of a Web Application Client Side

CSCC09 Programming on the Web Thierry Sans Architecture of a Web Application Client Side

CSCC09 Programming on the Web Thierry Sans Architecture of a Web Application Client Side Server Side Web Server Web Browser Web Technologies Content Resources Presentation management Client Side Processing Multimedia The evolution of

1.24k views • 23 slides
CSE 154 LECTURE 6: JAVASCRIPT Client-side scripting client-side script : code runs in browser

CSE 154 LECTURE 6: JAVASCRIPT Client-side scripting client-side script : code runs in browser

CSE 154 LECTURE 6: JAVASCRIPT Client-side scripting client-side script : code runs in browser after page is sent back from server often this code manipulates the page or responds to user actions What is JavaScript? a lightweight

643 views • 29 slides
Cookies and Sessions Thierry Security assumptions You have absolutely no control on the client

Cookies and Sessions Thierry Security assumptions You have absolutely no control on the client

Cookies and Sessions Thierry Security assumptions You have absolutely no control on the client Client Side Server Side Web Server Database Web Browser Cookies The big picture key/value pairs data Client Side Server Side HTTP request

783 views • 13 slides
Modern client-side defenses Deian Stefan Today How can we build flexible and secure client-side

Modern client-side defenses Deian Stefan Today How can we build flexible and secure client-side

CSE 127: Computer Security Modern client-side defenses Deian Stefan Today How can we build flexible and secure client-side web applications (from vulnerable/untrusted components) Modern web sites are complicated Modern web sites are

709 views • 57 slides
DC3158 Summary Summary Client Side Exploitation Attack Chaining. Client Side

DC3158 Summary Summary Client Side Exploitation Attack Chaining. Client Side

DEFCON DC3158 Summary Summary Client Side Exploitation Attack Chaining. Client Side Exploitation Script Based Attack Powershell,Jscript,Vbscript Vbscript:still people use IE, you can call wmic and powershell script to execute.

428 views • 15 slides
Client-Side Direct I/O for NFS Mike Kupfer kupfer@Eng.Sun.COM 28 February 1997 1 Client-Side

Client-Side Direct I/O for NFS Mike Kupfer kupfer@Eng.Sun.COM 28 February 1997 1 Client-Side

Client-Side Direct I/O for NFS Mike Kupfer kupfer@Eng.Sun.COM 28 February 1997 1 Client-Side Direct I/O for NFS Connectathon 1997 Disclaimer This is not a product announcement. 2 Client-Side Direct I/O for NFS Connectathon 1997

311 views • 16 slides
CSE392/ISE331 Attacks against the client-side of web applications Nick Nikiforakis

CSE392/ISE331 Attacks against the client-side of web applications Nick Nikiforakis

CSE392/ISE331 Attacks against the client-side of web applications Nick Nikiforakis nick@cs.stonybrook.edu Despite the same origin policy Many things can go wrong at the client-side of a web application Popular attacks Cross-site

266 views • 15 slides
Pluggable transport work Flashproxy can do IPv6. Upcoming Flashproxy Tor Browser Bundle

Pluggable transport work Flashproxy can do IPv6. Upcoming Flashproxy Tor Browser Bundle

Pluggable transport work Flashproxy can do IPv6. Upcoming Flashproxy Tor Browser Bundle (TBB) Windows package Obfsproxy packages: debs and bridge-side docs (and obfsproxy in our ec2 images) Client-side Obfsproxy TBBs New

1.02k views • 47 slides
CSE 510 Web Data Engineering Client-Side Programming JavaScript UB CSE 510 Web Data Engineering

CSE 510 Web Data Engineering Client-Side Programming JavaScript UB CSE 510 Web Data Engineering

CSE 510 Web Data Engineering Client-Side Programming JavaScript UB CSE 510 Web Data Engineering Web Programming Paradigms So far we have seen server-side programming Next Enrich user experience, interactivity with client- side

759 views • 24 slides
Cutting-edge Think Tank BLACK HAT EUROPE 2008 CLIENT-SIDE SECURITY Overview of various

Cutting-edge Think Tank BLACK HAT EUROPE 2008 CLIENT-SIDE SECURITY Overview of various

Cutting-edge Think Tank BLACK HAT EUROPE 2008 CLIENT-SIDE SECURITY Overview of various Client-Side Hacking Tricks and Techniques pdp Information Security Researcher, founder of the GNUCITIZEN group OBJECTIVES I was planning to...

948 views • 59 slides
Write Fast, Read in the Past: Causal Consistency for Client-side Apps with SwiftCloud App App

Write Fast, Read in the Past: Causal Consistency for Client-side Apps with SwiftCloud App App

Challenge: Database Access for Client-side Apps Write Fast, Read in the Past: Causal Consistency for Client-side Apps with SwiftCloud App App Presented by Marek Zawirski App App Inria / UPMC-LIP6, Paris (now at Google, Zrich) Marek

469 views • 13 slides
CLIENT-SIDE STATIC ANALYSIS Ben Livshits, Microsoft Research Overview of Todays Lecture 2

CLIENT-SIDE STATIC ANALYSIS Ben Livshits, Microsoft Research Overview of Todays Lecture 2

CLIENT-SIDE STATIC ANALYSIS Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Client-side JavaScript Browser Analysis of JavaScript Plugins eval and code Extensions obfuscation Firefox extension model

812 views • 51 slides
Storing Data Thierry Sans Modern Web Platform Client Side Server Side Web API Database Why

Storing Data Thierry Sans Modern Web Platform Client Side Server Side Web API Database Why

Storing Data Thierry Sans Modern Web Platform Client Side Server Side Web API Database Why using a database Persistency Concurrency (avoid race conditions) Query Scalability SQL vs NoSQL databases Relational database (SQL

475 views • 10 slides
Web Engineering 1. Introduction 2. Client Side Programming Prof. Dr. Dr. h.c. mult. Gerhard

Web Engineering 1. Introduction 2. Client Side Programming Prof. Dr. Dr. h.c. mult. Gerhard

Content Web Engineering 1. Introduction 2. Client Side Programming Prof. Dr. Dr. h.c. mult. Gerhard Krger, Albrecht Schmidt 3. Server Side Programming Universitt Karlsruhe Fakultt fr Informatik Institut fr Telematik Wintersemester

395 views • 17 slides
Web Engineering 1. Introduction 2. Client Side Programming Prof. Dr. Dr. h.c. mult. Gerhard

Web Engineering 1. Introduction 2. Client Side Programming Prof. Dr. Dr. h.c. mult. Gerhard

Content Web Engineering 1. Introduction 2. Client Side Programming Prof. Dr. Dr. h.c. mult. Gerhard Krger, Albrecht Schmidt 3. Server Side Programming Universitt Karlsruhe Fakultt fr Informatik Institut fr Telematik Wintersemester

532 views • 14 slides
OEBB Reliant Behavioral Health 866-750-1327 ibhsolutions.com Access Code: OEBB OEBB

OEBB Reliant Behavioral Health 866-750-1327 ibhsolutions.com Access Code: OEBB OEBB

OEBB Reliant Behavioral Health 866-750-1327 ibhsolutions.com Access Code: OEBB OEBB Employee Assistance Program (EAP) What Is An EAP? 2 Work-Life Balance Resource Counseling & Other Work-Life Services Confidential

296 views • 8 slides
New e-mail rule: Only e-mail me at "benjones@cs.washington.edu" Include "[CSE

New e-mail rule: Only e-mail me at "benjones@cs.washington.edu" Include "[CSE

Implementing Trees and Midterm Review Friday, July 13, 2018 1:05 PM New e-mail rule: Only e-mail me at "benjones@cs.washington.edu" Include "[CSE 373]" somewhere in the title. Lecture 12 Page 1 Lecture 12 Page 2 Lecture 12

267 views • 3 slides
Keeping Up (With the Joneses) Some thoughts and ideas for being productive and effective in

Keeping Up (With the Joneses) Some thoughts and ideas for being productive and effective in

Keeping Up (With the Joneses) Some thoughts and ideas for being productive and effective in todays fast-paced industry Scott Lowe, VCDX 39 vExpert, Author, Blogger, Geek http://blog.scottlowe.org / Twitter: @scott_lowe Before we start

535 views • 11 slides
Vogtle 3 & 4 COL Southern Nuclear Operating Company Vogtle Units 3 & 4 Combined Licenses

Vogtle 3 & 4 COL Southern Nuclear Operating Company Vogtle Units 3 & 4 Combined Licenses

SNCR00010 Vogtle 3 & 4 COL Southern Nuclear Operating Company Vogtle Units 3 & 4 Combined Licenses and Limited Work Authorization Mandatory Hearing Environmental Overview Panel 1 September 28, 2011 Dale Fulton SNC SNCR00010

293 views • 7 slides
2020 Campaign .cat.com 1 Caterpillar: Confidential Green October 10, 2020 Why now? September

2020 Campaign .cat.com 1 Caterpillar: Confidential Green October 10, 2020 Why now? September

2020 Campaign .cat.com 1 Caterpillar: Confidential Green October 10, 2020 Why now? September 10, 2020 .cat.com 2 Caterpillar: Confidential Green Agenda 1. Mental health during the time of Covid-19 2. RUOK? employee orientation 3. EAP

476 views • 45 slides
COMMUNICATION TO GAIN COOPERATION LifeServices Employee Assistance Program (EAP)

COMMUNICATION TO GAIN COOPERATION LifeServices Employee Assistance Program (EAP)

COMMUNICATION TO GAIN COOPERATION LifeServices Employee Assistance Program (EAP) 1-800-822-4847 Margie Roop, LPCC-S; CEAP; SAP, Regional Director HAVE YOU EVER Walked away from a conversation wonderingwhat just

561 views • 33 slides
Computer Graphics Seminar MTAT.03.296 Spring 2014 Raimond Tunnel Contact Information

Computer Graphics Seminar MTAT.03.296 Spring 2014 Raimond Tunnel Contact Information

Computer Graphics Seminar MTAT.03.296 Spring 2014 Raimond Tunnel Contact Information Raimond Tunnel jee7@ut.ee Konstantin Tretjakov kt@ut.ee Karl-Aksel Puulman macobo@ut.ee Organizational Information 16 seminars:

820 views • 44 slides
IEEE 802.1X Pre-Authentication Bernard Aboba Microsoft Submission Slide 1 Bernard Aboba,

IEEE 802.1X Pre-Authentication Bernard Aboba Microsoft Submission Slide 1 Bernard Aboba,

11 July 2002 doc.: IEEE 802.11-02/389r0 IEEE 802.1X Pre-Authentication Bernard Aboba Microsoft Submission Slide 1 Bernard Aboba, Microsoft 11 July 2002 doc.: IEEE 802.11-02/389r0 Outline Goals Conclusions Overview of

508 views • 20 slides

More recommend