Securing Wireless Local Area Networks with GoC PKI: Addendum to Report DRDC Ottawa CR 2007-239

PDF

Authors
  1. Spagnolo, J.
  2. Cayer, D.
Corporate Authors
NRNS Inc, Ottawa ON (CAN);Defence R&D Canada - Ottawa, Ottawa ONT (CAN)
Abstract
Defence R&D Canada led a project in which a wireless virtual private networking (VPN) architecture was set up in a test bed in the Network Information Operation (NIO) lab for 802.11/a/b/g communications. The goal of this initial work was to aid in developing a security policy for use of wireless local area networks (WLAN) in government enterprise networks. The NIO section sanctioned some initial work to examine the use of Government of Canada (GoC) Public Key Infrastructure (PKI) certificates to regulate user access to the WLAN and to the Internet Protocol Security (IPsec) based VPN. The work focused on the establishment and protection of digital identities, mutual authentication, authorization, data privacy and integrity, as well as wireless network policy management and dissemination. The initial work provided sufficient functionality to demonstrate the feasibility of using GoC PKI issued certificates for WLAN and VPN authentication. However, the initial work concluded that the test bed must undergo several improvements before it can be presented as a completely integrated solution for GoC enterprise network environments. The NIO section approved additional work to address some of the outstanding issues. The results of this latest work are presented in this addendum report. We conclude that the combination of Wi-Fi Protected Access 2 (WPA2) when operating in enterprise mode, GoC PKI issued and smart card protected user credentials, as well as wireless network policy managed

Il y a un résumé en français ici.

Report Number
DRDC-OTTAWA-CR-2008-142 — Contractor Report
Date of publication
01 Jul 2008
Number of Pages
38
DSTKIM No
CA031066
CANDIS No
529755
Format(s):
Hardcopy;CD ROM

Permanent link

Document 1 of 1

Date modified: