Analysis of EAP-FAST protocol

Abstract

One of the core security concepts of Wireless LAN is the authentication. An 802.1X/EAP framework allows a variety of specific methods to be used for the authentication. Certificate-based authentication methods provide strong security as well as allow shared key-based methods to be used. This paper analyzes wide deployed TLS-based EAP protocols defined in RFCs, used in WLAN. We mainly focus on the EAP-FAST protocol because it differs from other TLS-based EAP types on using shared secret keys instead of certificates, thus significantly increasing performance. We validated different authentication scenarios of EAP-FAST protocol using AVISPA model checker.