Evaluation of Security Architecture for Wireless Local Area Networks by Indexed Based Policy Method: A Novel Approach

10.6633/IJNS.200807.7(1).01

Debabrata Nayak；Deepak B. Phatak；Ashutosh Saxena

802.1X ； EAP ； security policy factor ； security policy index ； SQoS ； WPA ； WVPN ； WVLAN

International Journal of Network Security

7卷1期（2008 / 07 / 01）

1 - 14

英文

In this paper, we have focus existing and proposed WLAN security technologies designed to improve 802.11 standard by applying security policies. We have extensively analyzed the effect of crypto parameters over WLAN based on packet level characteristics by applying security policy to individual packet. We have also analyzed the effect of TCP and UDP traffic over our proposed WLAN test bed architecture. We found that TCP and UDP traffic behaves erratically, when policy index changes causing drastically degradation of system performance. We present a detail study of performance overhead caused by the most widely used security protocols such as WEP, IPSEC VPN and 802.1X. Furthermore, we analyze the effectiveness of such solution, based on measurement of policy indexing model implementation. Performance measurement indicates that 802.1X and VPN policy based method can be used based on the service time in future wireless systems, while it can simultaneously provide both the necessary flexibility to network operators and a high level of confidence to end users. We have coined security policy factor (SPF), which is defined as the percentage overhead in terms of bit rate caused by security policy Pφ with respect to security policy P0. Based on SPF designer can decide there best optimized Secure WLAN infrastructure.