Bilkent University
Department of Computer Engineering


Mobile User Authentication Using EAP-SIM Integrated With OpenID


Bahar Berna Akkoç
MSc Student Student
Computer Engineering Department
Bilkent University

In field of information technology and security user authentication and identity management is one of the most remarkable issues in the matter of trust. Up to recent, centralized, within same network, or same domain of control based identity management has been considered. However, increasingly, users are accessing external systems which brings the need to link the user identity across distinct systems. ID management is now associated with cross-company, cross-doman, cross-system. So, federated (decentralized) ID management rises. Single-sign-on systems(SSO) are on another side of the federated id mechanisms. In SSO, users access control of multiple independant IT systems by logging-in once and gain accsess through all the systems. OpenID is an open standart to enable users SSO and enable services federated id management in a portable, user-centric, decentralized manner. Extensible Authentication Protocol (EAP) is an authentication framework for transporting authentication protocols used in point to point connections. EAP-SIM is a standart for wireless LAN access using SIM authentication in GSM.

In this study we propose a scheme for user authenticaion using OpenID integrated with EAP-SIM. With this study we address the aspect of mobile phone user authentication in federated identity management.

Keywords: federated identity, single-sign-on, OpenID, EAP, EAP-SIM, user authentication, decentralized id.


DATE: 19 March, 2012, Monday @ 15:40