Ç¥ÁØÈ­ Âü¿©¾È³»

TTAÀÇ Ç¥ÁØÇöȲ

Ȩ > Ç¥ÁØÈ­ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ

Ç¥ÁعøÈ£ [ÆóÁö] TTAE.IF-RFC2716 ±¸Ç¥ÁعøÈ£
Á¦°³Á¤ÀÏ 2005-12-21 ÃÑÆäÀÌÁö 34
ÇѱÛÇ¥Áظí EAP-TLS ÀÎÁõ ÇÁ·ÎÅäÄÝ
¿µ¹®Ç¥Áظí PPP EAP TLS Authentication Protocol
Çѱ۳»¿ë¿ä¾à º» Ç¥ÁØÀº PPP¸¦ À§ÇÑ ÀÎÁõ ¹æ½ÄÀ¸·Î Á¦¾ÈµÈ EAP(Extensible Authentication Protocol)ÀÇ ³»ºÎ ÀÎÁõ ¹æ½Ä Áß Çϳª·Î TLS(Transport Layer Security)¸¦ »ç¿ëÇϱâ À§ÇÏ¿© Á¦¾ÈµÇ¾ú´Ù.
EAP´Â ±Ô°Ý ³»ºÎ¿¡¼­ MD5-CHAP(Message Digest Number 5 - Challenge Handshake Authentication Protocol), OTP(One Time Password), Generic Token Card µîÀ» ÀÎÁõ ¹æ½ÄÀ¸·Î °¡Áö°í ÀÖÀ¸¸ç, À̵éÀº ¸ðµÎ ÀÎÁõ ¼­¹ö°¡ ´Ü¸»À» ÀϹæÇâÀ¸·Î ÀÎÁõÇÏ´Â ¹æ½ÄÀ» ÃëÇÏ°í ÀÖ´Ù. ±×·¯³ª ³×Æ®¿öÅ©°¡ ÁøÈ­ÇÏ°í ´Ù¾çÇÑ °ø°Ý ¹æ½ÄÀÌ ½ÃµµµÊ¿¡ µû¶ó,PPP, IEEE 802.11 ±â¹ÝÀÇ ¹«¼±·£, 3GPP µîÀÇ ´Ù¾çÇÑ ³×Æ®¿öÅ©¿¡ »ç¿ëÀÚ°¡ ¾ÈÀüÇÑ Á¢±ÙÀ» ÇÒ ¼ö ÀÖµµ·Ï »óÈ£ ÀÎÁõÀÌ ÇÊ¿äÇÏ°Ô µÇ¾úÀ¸¸ç, ³×Æ®¿öÅ©»ó¿¡¼­ ÁÖ°í ¹Þ´Â µ¥ÀÌÅÍ¿¡ ´ëÇÑ ±â¹Ð¼º ¹× ¹«°á¼ºÀ» º¸Àå ¹Þ±â À§ÇØ Å° ±³È¯ ±â´ÉÀÌ Ãß°¡ÀûÀ¸·Î ÇÊ¿äÇÏ°Ô µÇ¾ú´Ù. TLS´Â ±âÁ¸ÀÇ ÀÎÅͳݿ¡¼­ TCP ä³Î º¸¾ÈÀ» À§ÇØ »ç¿ëµÇ¾î ¿ÔÀ¸¸ç, »óÈ£ ÀÎÁõ ¹× Å°±³È¯ ±â´ÉÀ» Áö¿øÇÏ°í ÀÖ´Ù. ±×·¯¹Ç·Î EAPÀÇ ÀÎÁõ ¹æ½ÄÀ¸·Î TLS¸¦ »ç¿ëÇϱâ À§ÇØ TLSÀÇ ÇÏÀ§ ÇÁ·ÎÅäÄÝÀÌ TCP°¡ ¾Æ´Ñ EAP·Î º¯°æÇϸ鼭 »ý±â´Â Â÷ÀÌÁ¡À» ¹Ý¿µÇϱâ À§ÇÏ¿© º» Ç¥ÁØÀ» ±¸¼ºÇÑ´Ù
¿µ¹®³»¿ë¿ä¾à This standard is intended to use TLS as an EAP authentication method.EAP supports MD5-CHAP(Message Digest Number 5 - Challenge Handshake Authentication Protocol), OTP(One Time Password), Generic Token Card in its specification, and these EAP methods have focused on authenticating a client to a server. But it may be desirable to support mutual authentication and additionally key management, since variant kinds of networks and attacks to them are being developed. TLS has been used for secure TCP channel in Internet, and it supports mutual authentication and integrity-protected ciphersuite negotiation. This document describes how EAP-TLS, which includes support for fragmentation and reassembly, provides for these TLS mechanisms within EAP in place of TCP.
±¹Á¦Ç¥ÁØ IETF RFC 2716
°ü·ÃÆÄÀÏ TTAE.IF-RFC2716.pdf
Ç¥ÁØÀÌ·Â
±¸ºÐ ÀÏÀÚ Ç¥ÁعøÈ£ º¯°æ³»¿ª
ÆóÁö 2009-12-22 TTAE.IF-RFC5216 ÁÂÃøÇ¥ÁØÀ¸·Î °³Á¤µÇ¾î º» Ç¥ÁØ ÆóÁö
°³Á¤ 2009-12-22 TTAE.IF-RFC5216

ÀÌÀü
½º¸¶Æ® ¸ð¹ÙÀÏ OK ¿ä±¸ »çÇ×
´ÙÀ½
±¹°¡ÃÖ»óÀ§µµ¸ÞÀÎ º¸¾È°­È­¸¦ À§ÇÑ DNS º¸¾È À§ÀÓ·¹ÄÚµå µî·Ï EPP(Extensible Provisioning Protocol)