Ȩ > Ç¥ÁØÈ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ
Ç¥ÁعøÈ£ | [ÆóÁö] TTAE.IF-RFC2716 | ±¸Ç¥ÁعøÈ£ | |||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Á¦°³Á¤ÀÏ | 2005-12-21 | ÃÑÆäÀÌÁö | 34 | ||||||||||||
ÇѱÛÇ¥Áظí | EAP-TLS ÀÎÁõ ÇÁ·ÎÅäÄÝ | ||||||||||||||
¿µ¹®Ç¥Áظí | PPP EAP TLS Authentication Protocol | ||||||||||||||
Çѱ۳»¿ë¿ä¾à | º» Ç¥ÁØÀº PPP¸¦ À§ÇÑ ÀÎÁõ ¹æ½ÄÀ¸·Î Á¦¾ÈµÈ EAP(Extensible Authentication Protocol)ÀÇ ³»ºÎ ÀÎÁõ ¹æ½Ä Áß Çϳª·Î TLS(Transport Layer Security)¸¦ »ç¿ëÇϱâ À§ÇÏ¿© Á¦¾ÈµÇ¾ú´Ù.
EAP´Â ±Ô°Ý ³»ºÎ¿¡¼ MD5-CHAP(Message Digest Number 5 - Challenge Handshake Authentication Protocol), OTP(One Time Password), Generic Token Card µîÀ» ÀÎÁõ ¹æ½ÄÀ¸·Î °¡Áö°í ÀÖÀ¸¸ç, À̵éÀº ¸ðµÎ ÀÎÁõ ¼¹ö°¡ ´Ü¸»À» ÀϹæÇâÀ¸·Î ÀÎÁõÇÏ´Â ¹æ½ÄÀ» ÃëÇÏ°í ÀÖ´Ù. ±×·¯³ª ³×Æ®¿öÅ©°¡ ÁøÈÇÏ°í ´Ù¾çÇÑ °ø°Ý ¹æ½ÄÀÌ ½ÃµµµÊ¿¡ µû¶ó,PPP, IEEE 802.11 ±â¹ÝÀÇ ¹«¼±·£, 3GPP µîÀÇ ´Ù¾çÇÑ ³×Æ®¿öÅ©¿¡ »ç¿ëÀÚ°¡ ¾ÈÀüÇÑ Á¢±ÙÀ» ÇÒ ¼ö ÀÖµµ·Ï »óÈ£ ÀÎÁõÀÌ ÇÊ¿äÇÏ°Ô µÇ¾úÀ¸¸ç, ³×Æ®¿öÅ©»ó¿¡¼ ÁÖ°í ¹Þ´Â µ¥ÀÌÅÍ¿¡ ´ëÇÑ ±â¹Ð¼º ¹× ¹«°á¼ºÀ» º¸Àå ¹Þ±â À§ÇØ Å° ±³È¯ ±â´ÉÀÌ Ãß°¡ÀûÀ¸·Î ÇÊ¿äÇÏ°Ô µÇ¾ú´Ù. TLS´Â ±âÁ¸ÀÇ ÀÎÅͳݿ¡¼ TCP ä³Î º¸¾ÈÀ» À§ÇØ »ç¿ëµÇ¾î ¿ÔÀ¸¸ç, »óÈ£ ÀÎÁõ ¹× Å°±³È¯ ±â´ÉÀ» Áö¿øÇÏ°í ÀÖ´Ù. ±×·¯¹Ç·Î EAPÀÇ ÀÎÁõ ¹æ½ÄÀ¸·Î TLS¸¦ »ç¿ëÇϱâ À§ÇØ TLSÀÇ ÇÏÀ§ ÇÁ·ÎÅäÄÝÀÌ TCP°¡ ¾Æ´Ñ EAP·Î º¯°æÇÏ¸é¼ »ý±â´Â Â÷ÀÌÁ¡À» ¹Ý¿µÇϱâ À§ÇÏ¿© º» Ç¥ÁØÀ» ±¸¼ºÇÑ´Ù |
||||||||||||||
¿µ¹®³»¿ë¿ä¾à | This standard is intended to use TLS as an EAP authentication method.EAP supports MD5-CHAP(Message Digest Number 5 - Challenge Handshake Authentication Protocol), OTP(One Time Password), Generic Token Card in its specification, and these EAP methods have focused on authenticating a client to a server. But it may be desirable to support mutual authentication and additionally key management, since variant kinds of networks and attacks to them are being developed. TLS has been used for secure TCP channel in Internet, and it supports mutual authentication and integrity-protected ciphersuite negotiation. This document describes how EAP-TLS, which includes support for fragmentation and reassembly, provides for these TLS mechanisms within EAP in place of TCP. | ||||||||||||||
±¹Á¦Ç¥ÁØ | IETF RFC 2716 | ||||||||||||||
°ü·ÃÆÄÀÏ | TTAE.IF-RFC2716.pdf | ||||||||||||||
Ç¥ÁØÀÌ·Â |
|