From: Roland Hieber <rohieb@rohieb.name>
Date: Tue, 18 May 2010 01:07:05 +0000 (+0200)
Subject: converted lit.bib to unix end lines, svg and pdf version of IEEE 802.1X diagram
X-Git-Url: https://git.rohieb.name/seminar-bachelor.git/commitdiff_plain/79e8c695cc6645c02e8ec73d60a98a8de1ec53b6

converted lit.bib to unix end lines, svg and pdf version of IEEE 802.1X diagram
---

diff --git a/8021X-Overview.pdf b/8021X-Overview.pdf
new file mode 100644
index 0000000..68f3855
Binary files /dev/null and b/8021X-Overview.pdf differ
diff --git a/8021X-Overview.png b/8021X-Overview.png
deleted file mode 100644
index 0921528..0000000
Binary files a/8021X-Overview.png and /dev/null differ
diff --git a/8021X-Overview.svg b/8021X-Overview.svg
new file mode 100644
index 0000000..1547370
--- /dev/null
+++ b/8021X-Overview.svg
@@ -0,0 +1,316 @@
+<?xml version="1.0" encoding="UTF-8" standalone="no"?>
+<!-- Created with Inkscape (http://www.inkscape.org/) -->
+
+<svg
+   xmlns:svg="http://www.w3.org/2000/svg"
+   xmlns="http://www.w3.org/2000/svg"
+   xmlns:xlink="http://www.w3.org/1999/xlink"
+   version="1.1"
+   width="680"
+   height="410"
+   id="svg2">
+  <defs
+     id="defs4">
+    <marker
+       refX="0"
+       refY="0"
+       orient="auto"
+       id="ArrowRed"
+       style="overflow:visible">
+      <path
+         d="m 8.7185884,-4.0017078 -6e-7,8.035443 L -2.2072895,0.01601326 8.7185884,-4.0017078 z"
+         transform="scale(-0.6,-0.6)"
+         id="path4029"
+         style="fill:#cd0019;stroke:#cd0019;stroke-width:0.625;stroke-linejoin:round" />
+    </marker>
+    <marker
+       refX="0"
+       refY="0"
+       orient="auto"
+       id="ArrowBlueBegin"
+       style="overflow:visible">
+      <path
+         d="m 5.2296722,2.4010247 -1e-6,-4.8212658 -6.555526,2.41063314 6.555527,2.41063266 z"
+         id="path5669"
+         style="fill:#166bad;stroke:#166bad;stroke-width:0.625;stroke-linejoin:round" />
+    </marker>
+    <marker
+       refX="0"
+       refY="0"
+       orient="auto"
+       id="ArrowBlueEnd"
+       style="overflow:visible">
+      <path
+         d="m 8.7185884,-4.0017078 -6e-7,8.035443 L -2.2072895,0.01601326 8.7185884,-4.0017078 z"
+         transform="scale(-0.6,-0.6)"
+         id="path9524"
+         style="fill:#166bad;stroke:#166bad;stroke-width:0.625;stroke-linejoin:round" />
+    </marker>
+    <marker
+       refX="0"
+       refY="0"
+       orient="auto"
+       id="ArrowGreen"
+       style="overflow:visible">
+      <path
+         d="m 8.7185884,-4.0017078 -6e-7,8.035443 L -2.2072895,0.01601326 8.7185884,-4.0017078 z"
+         transform="scale(-0.6,-0.6)"
+         id="path8377"
+         style="fill:#00a330;stroke:#00a330;stroke-width:0.625;stroke-linejoin:round" />
+    </marker>
+  </defs>
+  <g
+     transform="translate(0,-642.36218)"
+     id="layer1">
+    <rect
+       width="678.15759"
+       height="408.15759"
+       x="0.92119914"
+       y="643.28351"
+       id="rect9845"
+       style="fill:#ffffff;fill-opacity:1;fill-rule:nonzero;stroke:none" />
+    <path
+       d="m 200.46786,39.567396 a 190,190 0 1 1 -0.0743,0.02453"
+       transform="translate(-42.285615,632.16119)"
+       id="path3635-9"
+       style="fill:none;stroke:#000000;stroke-width:1.20000005;stroke-linejoin:round;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:7.2, 7.2;stroke-dashoffset:0" />
+    <text
+       transform="translate(-0.14271922,-2.1705253)"
+       id="text3833"
+       xml:space="preserve"
+       style="font-size:40px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><textPath
+         xlink:href="#path3635-9"
+         id="textPath3862"><tspan
+   id="tspan3835"
+   style="font-size:14px">Wireless Network</tspan></textPath></text>
+    <g
+       transform="translate(-29.305886,74.799015)"
+       id="g3955"
+       style="font-size:14px;fill:#ffffff;fill-opacity:1">
+      <path
+         d="M 553.44888,300.35714 C 537.14759,278.43164 584.80993,254.64286 600,283.61603 c 10.4848,-28.16229 46.97868,-27.82125 57.02031,0.90862 20.92893,-19.66744 41.29456,-4.55698 32.97969,18.96012 27.6206,22.56448 2.27239,51.68085 -25,33.38325 -3.45504,29.44416 -36.96954,27.87816 -47.0203,1.4137 -10.50508,28.98984 -48.83756,24.3934 -50.95939,-4.3934 -35.73765,12.94113 -38.67029,-30.98694 -13.57143,-33.53118 z"
+         transform="translate(0,552.36218)"
+         id="path3911"
+         style="font-size:14px;fill:#ffffff;fill-opacity:1;stroke:#000000;stroke-width:1.5;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none" />
+      <text
+         x="620.12579"
+         y="859.88141"
+         id="text3913"
+         xml:space="preserve"
+         style="font-size:14px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><tspan
+           x="620.12579"
+           y="859.88141"
+           id="tspan3915"
+           style="font-size:14px;text-align:center;text-anchor:middle;fill:#000000;fill-opacity:1">Internet or other</tspan><tspan
+           x="620.12579"
+           y="877.38141"
+           id="tspan3917"
+           style="font-size:14px;text-align:center;text-anchor:middle;fill:#000000;fill-opacity:1">LAN resources</tspan></text>
+    </g>
+    <g
+       transform="translate(-0.14271922,-2.1705253)"
+       id="g9608"
+       style="stroke-width:2;stroke-miterlimit:4;stroke-dasharray:none">
+      <path
+         d="m 237.85714,854.33172 200,0"
+         id="path3829"
+         style="fill:none;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none" />
+      <path
+         d="m 437.85714,989.33172 0,-250"
+         id="path3831"
+         style="fill:none;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none" />
+      <path
+         d="m 437.85714,789.33172 70,0"
+         id="path3883"
+         style="fill:none;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none" />
+      <path
+         d="m 437.85714,949.33172 70,0"
+         id="path3885"
+         style="fill:none;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none" />
+      <path
+         d="m 437.85714,989.33172 0,49.99998"
+         id="path3887"
+         style="fill:none;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:8, 8;stroke-dashoffset:0" />
+      <path
+         d="m 437.85714,689.33172 0,50"
+         id="path3887-2"
+         style="fill:none;stroke:#000000;stroke-width:2;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:8, 8;stroke-dashoffset:0" />
+    </g>
+    <g
+       transform="translate(-0.14271922,-2.1705253)"
+       id="g9687">
+      <g
+         transform="translate(474.10665,-9.7204)"
+         id="g3673-4">
+        <g
+           id="g3663-4">
+          <path
+             d="m 33.784668,783.55212 c 0,-2.76142 8.954305,-5 20,-5 11.045695,0 20,2.23858 20,5 l 0,30 c 0,2.76142 -8.954305,5 -20,5 -11.045695,0 -20,-2.23858 -20,-5 l 0,-30 m 40,0 c 0,2.76142 -8.954305,5 -20,5 -11.045695,0 -20,-2.23858 -20,-5"
+             id="path3702-8"
+             style="fill:#2586de;fill-opacity:1;fill-rule:nonzero;stroke:#000000;stroke-width:1;stroke-linejoin:round;stroke-miterlimit:4;stroke-opacity:1;stroke-dashoffset:0" />
+          <text
+             x="54.434082"
+             y="809.05212"
+             id="text3622-4"
+             xml:space="preserve"
+             style="font-size:40px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><tspan
+               x="54.434082"
+               y="809.05212"
+               id="tspan3624-4"
+               style="font-size:20px;font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;text-align:center;text-anchor:middle;font-family:Sans;-inkscape-font-specification:Sans">AS</tspan></text>
+        </g>
+      </g>
+      <text
+         x="465.55777"
+         y="741.3316"
+         id="text3961"
+         xml:space="preserve"
+         style="font-size:14px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><tspan
+           x="465.55777"
+           y="741.3316"
+           id="tspan3965">Authentication Server</tspan><tspan
+           x="465.55777"
+           y="758.8316"
+           id="tspan3977">(RADIUS, LDAP, …)</tspan></text>
+    </g>
+    <g
+       transform="translate(-0.14271922,-2.1705253)"
+       id="g9674">
+      <path
+         d="m 197.85714,839.33172 c 0,-2.76142 8.9543,-5 20,-5 11.04569,0 20,2.23858 20,5 l 0,30 c 0,2.76142 -8.95431,5 -20,5 -11.0457,0 -20,-2.23858 -20,-5 l 0,-30 m 40,0 c 0,2.76142 -8.95431,5 -20,5 -11.0457,0 -20,-2.23858 -20,-5"
+         id="path3702-9"
+         style="fill:#8cd4a2;fill-opacity:1;fill-rule:nonzero;stroke:#000000;stroke-width:1;stroke-linejoin:round;stroke-miterlimit:4;stroke-opacity:1;stroke-dashoffset:0" />
+      <text
+         x="218.50656"
+         y="864.83173"
+         id="text3622-6"
+         xml:space="preserve"
+         style="font-size:40px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><tspan
+           x="218.50656"
+           y="864.83173"
+           id="tspan3624-6"
+           style="font-size:20px;font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;text-align:center;text-anchor:middle;font-family:Sans;-inkscape-font-specification:Sans">AP</tspan></text>
+      <path
+         d="m 197.85714,854.33172 -7.5,0 -2.5,-12.5 -2.5,22.5 -2.5,-17.5 -2.5,12.5 -2.5,-7.5"
+         id="path3769-5"
+         style="fill:none;stroke:#000000;stroke-width:0.60000002;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none" />
+      <text
+         x="136.24805"
+         y="825.17426"
+         id="text3967"
+         xml:space="preserve"
+         style="font-size:14px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><tspan
+           x="136.24805"
+           y="825.17426"
+           id="tspan3969">Authenticator</tspan></text>
+    </g>
+    <g
+       transform="translate(-0.14271922,-2.1705253)"
+       id="g9662">
+      <path
+         d="m 44.57101,953.83172 c 0,-2.76142 8.954305,-5 20,-5 11.04569,0 20,2.23858 20,5 l 0,30 c 0,2.76142 -8.95431,5 -20,5 -11.045695,0 -20,-2.23858 -20,-5 l 0,-30 m 40,0 c 0,2.76142 -8.95431,5 -20,5 -11.045695,0 -20,-2.23858 -20,-5"
+         id="path3702"
+         style="fill:#2586de;fill-opacity:1;fill-rule:nonzero;stroke:#000000;stroke-width:1;stroke-linejoin:round;stroke-miterlimit:4;stroke-opacity:1;stroke-dashoffset:0" />
+      <text
+         x="65.220421"
+         y="979.33173"
+         id="text3622"
+         xml:space="preserve"
+         style="font-size:40px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><tspan
+           x="65.220421"
+           y="979.33173"
+           id="tspan3624"
+           style="font-size:20px;font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;text-align:center;text-anchor:middle;font-family:Sans;-inkscape-font-specification:Sans">WN</tspan></text>
+      <path
+         d="m 84.57101,968.83172 7.5,0 2.5,-12.5 2.5,22.5 2.5,-17.5 2.5,12.5 2.5,-7.5"
+         id="path3769"
+         style="fill:none;stroke:#000000;stroke-width:0.60000002;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none" />
+      <text
+         x="5.8368378"
+         y="1004.9916"
+         id="text3971"
+         xml:space="preserve"
+         style="font-size:14px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><tspan
+           x="5.8368378"
+           y="1004.9916"
+           id="tspan3973">Supplicant</tspan></text>
+    </g>
+    <path
+       d="M 80.846407,932.10023 C 115.07628,894.32098 154.21533,886.53229 180.5208,872.21195"
+       id="path3989"
+       style="fill:none;stroke:#cd0019;stroke-width:3;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none;marker-start:none;marker-mid:none;marker-end:url(#ArrowRed)" />
+    <path
+       d="M 194.6332,880.19165 C 173.89849,907.55679 122.76975,934.17899 94.321413,942.5694"
+       id="path3991"
+       style="fill:none;stroke:#cd0019;stroke-width:3;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none;marker-start:none;marker-end:url(#ArrowRed)" />
+    <path
+       d="m 245.64994,824.39687 c 93.23386,-4.92439 179.08464,-11.81371 247.94785,-28.61648"
+       id="path3993"
+       style="fill:none;stroke:#00a330;stroke-width:3;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none;marker-start:none;marker-end:url(#ArrowGreen)" />
+    <path
+       d="M 502.71442,809.50411 C 409.12495,831.45337 339.7979,835.79003 252.7928,840.59475"
+       id="path3995"
+       style="fill:none;stroke:#00a330;stroke-width:3;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none;marker-end:url(#ArrowGreen)" />
+    <path
+       d="M 122.71442,967.16119 C 297.22556,993.13383 332.739,916.63107 492.76096,929.43742"
+       id="path3997"
+       style="fill:none;stroke:#166bad;stroke-width:3;stroke-linecap:butt;stroke-linejoin:miter;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none;marker-start:url(#ArrowBlueBegin);marker-end:url(#ArrowBlueEnd)" />
+    <g
+       transform="translate(199.34754,152.7751)"
+       id="g9536">
+      <text
+         x="-87.653809"
+         y="738.92322"
+         id="text9530"
+         xml:space="preserve"
+         style="font-size:14px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><tspan
+           x="-87.653809"
+           y="738.92322"
+           id="tspan9532"
+           style="font-size:18px;text-align:center;text-anchor:middle">1</tspan></text>
+      <path
+         d="m -77.5,180 a 10,10 0 1 1 -20,0 10,10 0 1 1 20,0 z"
+         transform="translate(0,552.36218)"
+         id="path9534"
+         style="fill:none;stroke:#000000;stroke-width:1.70000005;stroke-linejoin:round;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none;stroke-dashoffset:0" />
+    </g>
+    <g
+       transform="translate(433.19711,69.305818)"
+       id="g9536-8">
+      <text
+         x="-87.653809"
+         y="738.92322"
+         id="text9530-1"
+         xml:space="preserve"
+         style="font-size:14px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><tspan
+           x="-87.653809"
+           y="738.92322"
+           id="tspan9532-8"
+           style="font-size:18px;text-align:center;text-anchor:middle">2</tspan></text>
+      <path
+         d="m -77.5,180 a 10,10 0 1 1 -20,0 10,10 0 1 1 20,0 z"
+         transform="translate(0,552.36218)"
+         id="path9534-1"
+         style="fill:none;stroke:#000000;stroke-width:1.70000005;stroke-linejoin:round;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none;stroke-dashoffset:0" />
+    </g>
+    <g
+       transform="translate(372.76127,212.57416)"
+       id="g9536-9">
+      <text
+         x="-87.653809"
+         y="738.92322"
+         id="text9530-8"
+         xml:space="preserve"
+         style="font-size:14px;font-style:normal;font-weight:normal;fill:#000000;fill-opacity:1;stroke:none;font-family:Bitstream Vera Sans"><tspan
+           x="-87.653809"
+           y="738.92322"
+           id="tspan9532-9"
+           style="font-size:18px;text-align:center;text-anchor:middle">3</tspan></text>
+      <path
+         d="m -77.5,180 a 10,10 0 1 1 -20,0 10,10 0 1 1 20,0 z"
+         transform="translate(0,552.36218)"
+         id="path9534-6"
+         style="fill:none;stroke:#000000;stroke-width:1.70000005;stroke-linejoin:round;stroke-miterlimit:4;stroke-opacity:1;stroke-dasharray:none;stroke-dashoffset:0" />
+    </g>
+  </g>
+</svg>
diff --git a/architektur.tex b/architektur.tex
index d010189..1cb3a1c 100644
--- a/architektur.tex
+++ b/architektur.tex
@@ -7,12 +7,12 @@ Der sichere Netzzugang wird in eduroam durch den Standard \acr{IEEE 802.1X}
 \cite{IEEE802.1X} auf \acr{ISO/OSI}-Layer 2 realisiert. Dabei muss sich der Rechner, der Zugriff auf das physikalische Netz erlangen will (der sogenannte \emph{Supplicant}) bei einem Server (dem \emph{Authenticator} authentifizieren, bevor er Zugriff auf weitere Netzressourcen erhält.
 Die Methode der Authentifizierung kann dabei prinzipiell frei gewählt werden, innerhalb des eduroam-Verbundes werden allerdings aus Gründen der Sicherheit die Protokolle \acr{EAP-TLS}, \acr{EAP-TTLS}, oder \acr{EAP-PEAP} (weiteres dazu später) eingesetzt, die die Authentifizierung über eine gesicherte Verbindung abwickeln.
 
-Der Authenticator wird vom Service Provider bereitgestellt und ist in dessen Netz eingebunden, es kann sich dabei je nach Integrationsgrad und Zugangsmedium um einen Access Point, einen Switch bzw. Router, oder einen dedizierten Server handeln. Er hat die Aufgabe, den Benutzer zu authentifizieren, indem er mit einen \emph{Authentication Server} (\acr{AS}) kommuniziert. Dieser wiederum kann sich im selben Netzwerk befinden, kann aber in der Netzwerktopologie auch beliebig weit entfernt sein.
+Der Authenticator wird vom Service Provider bereitgestellt und ist in dessen Netz eingebunden, es kann sich dabei je nach Integrationsgrad und Zugangsmedium um einen Access Point oder einen Router handeln. Er hat die Aufgabe, den Benutzer zu authentifizieren, indem er mit einen \emph{Authentication Server} (\acr{AS}) kommuniziert. Dieser wiederum kann sich im selben Netzwerk befinden, kann aber in der Netzwerktopologie auch beliebig weit entfernt sein.
 
 \begin{figure}
   \centering
-  \includegraphics[width=0.6\textwidth]{8021X-Overview.png}
-  \caption{Netzzugang durch \acr{IEEE 802.1X} (Lizenz: \acr{CC-BY-SA 3.0 DE})}
+  \includegraphics[width=0.6\textwidth]{8021X-Overview.pdf}
+  \caption{Netzzugang durch \acr{IEEE 802.1X} (\cite{commons8021X}, Lizenz: \acr{CC-BY-SA 3.0})}
 \end{figure}
 
 \subsection{Benutzerauthentifizierung und -authorisierung (IEEE 802.1X, RADIUS)}
diff --git a/lit.bib b/lit.bib
index 23243c5..e1a70df 100644
--- a/lit.bib
+++ b/lit.bib
@@ -1,108 +1,114 @@
-@article{Lopez2007900,
-title = "{A network access control approach based on the AAA architecture and
-authorization attributes}",
-journal = "Journal of Network and Computer Applications",
-volume = "30",
-number = "3",
-pages = "900 - 919",
-year = "2007",
-note = "",
-issn = "1084-8045",
-doi = "DOI: 10.1016/j.jnca.2005.07.010",
-howpublished = "http://www.sciencedirect.com/science/article/B6WKB-4H3Y8R1-2/2/88b43ba7f229ab0fb00316f6032a1e4a",
-author = "Gabriel López and Oscar Cánovas and Antonio F. Gómez and Jesús D. Jiménez and Rafael Marín",
-keywords = "Authorization",
-keywords = "Access control",
-keywords = "Attributes",
-keywords = "SAML",
-keywords = "XACML"
-}
-
-@article{Lopez2008418,
-title = "A proposal for extending the eduroam infrastructure with authorization
-mechanisms",
-journal = "Computer Standards \& Interfaces",
-volume = "30",
-number = "6",
-pages = "418 - 423",
-year = "2008",
-note = "Special Issue: State of standards in the information systems security
-area",
-issn = "0920-5489",
-doi = "DOI: 10.1016/j.csi.2008.03.010",
-howpublished =
-"http://www.sciencedirect.com/science/article/B6TYV-4S0YXPG-B/2/0c98447f805fc208
-08a35c3d64804eb4",
-author = "Gabriel López and Óscar Cánovas and Antonio F. Gómez-Skarmeta and
-Manuel Sánchez",
-keywords = "NAS-SAML",
-keywords = "eduroam",
-keywords = "eduGAIN",
-keywords = "Authorization",
-keywords = "AAA"
-}
-
-@article{10.1109/NSS.2009.47,
-author = {Fernando Bernal and Manuel Sánchez and Gabriel López and Antonio F.
-Gómez-Skarmeta and Óscar Cánovas},
-title = {Trusted Network Access Control in the Eduroam Federation},
-journal ={International Conference on Network and System Security},
-volume = {0},
-isbn = {978-0-7695-3838-9},
-year = {2009},
-pages = {170-175},
-howpublished = {http://doi.ieeecomputersociety.org/10.1109/NSS.2009.47},
-publisher = {IEEE Computer Society},
-address = {Los Alamitos, CA, USA},
-}
-
-@Misc{cookbook,
-title = {{Deliverable DJ5.1.5,3: Inter-NREN Roaming Infrastructure and Service
-  Support Cookbook}},
-author = {S. Winter and T. Kersting and P. Dekkers and L. Guido and S.
-  Papageorgiou and Janos Mohacsi and R. Papez and M. Milinovic and D. Penezic
-  and J. Rauschenbach and J. Tomasek and K. Wierenga and T. Wolniewicz and
-  José-Manuel Macias-Luna and I. Thomson and {JRA5 group}},
-edition = {Third},
-month = {Oct},
-year = {2008},
-howpublished = {http://www.eduroam.org/downloads/docs/GN2-08-230-DJ5.1.5.3-eduroamCookbook.pdf},
-}
-
-@Misc{RFC2865,
-author = "C. Rigney and S. Willens and A. Rubens and W. Simpson",
-year = 2000,
-title = "{RFC 2865}: Remote Authentication Dial In User Service ({RADIUS})"
-}
-
-@Misc{RFC1994,
-author = "W. Simpson",
-year = 1996,
-title = "{RFC 1994}: {PPP} Challenge Handshake Authentication Protocol ({CHAP})"
-}
-
-@Misc{RFC1334,
-author = "B. Loyd and W. Simpson",
-year = 1993,
-title = "{RFC 1334}: {PPP} Authentication Protocols"
-}
-
-@Misc{RFC3748,
-author = "B. Aboba and L. Blunk and J. Vollbrecht  and J. Carlson and H.
-  Levkowetz",
-year = 2004,
-title = "{RFC 3748}: Extensible Authentication Protocol ({EAP})"
-}
-
-@Misc{IEEE802.1X,
-author = "{IEEE Computer Society}",
-year = 2004,
-title= "{802.1X IEEE Standard for Local and metropolitan area networks,
- Port-Based Network Access Control}"
-}
-
-@Misc{eduroam.org,
-author = "eduroam {SA}",
-title = "eduroam Website",
-howpublished = "http://www.eduroam.org"
-}
\ No newline at end of file
+@article{Lopez2007900,
+title = "{A network access control approach based on the AAA architecture and
+authorization attributes}",
+journal = "Journal of Network and Computer Applications",
+volume = "30",
+number = "3",
+pages = "900 - 919",
+year = "2007",
+note = "",
+issn = "1084-8045",
+doi = "DOI: 10.1016/j.jnca.2005.07.010",
+howpublished = "http://www.sciencedirect.com/science/article/B6WKB-4H3Y8R1-2/2/88b43ba7f229ab0fb00316f6032a1e4a",
+author = "Gabriel López and Oscar Cánovas and Antonio F. Gómez and Jesús D. Jiménez and Rafael Marín",
+keywords = "Authorization",
+keywords = "Access control",
+keywords = "Attributes",
+keywords = "SAML",
+keywords = "XACML"
+}
+
+@article{Lopez2008418,
+title = "A proposal for extending the eduroam infrastructure with authorization
+mechanisms",
+journal = "Computer Standards \& Interfaces",
+volume = "30",
+number = "6",
+pages = "418 - 423",
+year = "2008",
+note = "Special Issue: State of standards in the information systems security
+area",
+issn = "0920-5489",
+doi = "DOI: 10.1016/j.csi.2008.03.010",
+howpublished =
+"http://www.sciencedirect.com/science/article/B6TYV-4S0YXPG-B/2/0c98447f805fc208
+08a35c3d64804eb4",
+author = "Gabriel López and Óscar Cánovas and Antonio F. Gómez-Skarmeta and
+Manuel Sánchez",
+keywords = "NAS-SAML",
+keywords = "eduroam",
+keywords = "eduGAIN",
+keywords = "Authorization",
+keywords = "AAA"
+}
+
+@article{10.1109/NSS.2009.47,
+author = {Fernando Bernal and Manuel Sánchez and Gabriel López and Antonio F.
+Gómez-Skarmeta and Óscar Cánovas},
+title = {Trusted Network Access Control in the Eduroam Federation},
+journal ={International Conference on Network and System Security},
+volume = {0},
+isbn = {978-0-7695-3838-9},
+year = {2009},
+pages = {170-175},
+howpublished = {http://doi.ieeecomputersociety.org/10.1109/NSS.2009.47},
+publisher = {IEEE Computer Society},
+address = {Los Alamitos, CA, USA},
+}
+
+@Misc{cookbook,
+title = {{Deliverable DJ5.1.5,3: Inter-NREN Roaming Infrastructure and Service
+  Support Cookbook}},
+author = {S. Winter and T. Kersting and P. Dekkers and L. Guido and S.
+  Papageorgiou and Janos Mohacsi and R. Papez and M. Milinovic and D. Penezic
+  and J. Rauschenbach and J. Tomasek and K. Wierenga and T. Wolniewicz and
+  José-Manuel Macias-Luna and I. Thomson and {JRA5 group}},
+edition = {Third},
+month = {Oct},
+year = {2008},
+howpublished = {http://www.eduroam.org/downloads/docs/GN2-08-230-DJ5.1.5.3-eduroamCookbook.pdf},
+}
+
+@Misc{RFC2865,
+author = "C. Rigney and S. Willens and A. Rubens and W. Simpson",
+year = 2000,
+title = "{RFC 2865}: Remote Authentication Dial In User Service ({RADIUS})"
+}
+
+@Misc{RFC1994,
+author = "W. Simpson",
+year = 1996,
+title = "{RFC 1994}: {PPP} Challenge Handshake Authentication Protocol ({CHAP})"
+}
+
+@Misc{RFC1334,
+author = "B. Loyd and W. Simpson",
+year = 1993,
+title = "{RFC 1334}: {PPP} Authentication Protocols"
+}
+
+@Misc{RFC3748,
+author = "B. Aboba and L. Blunk and J. Vollbrecht  and J. Carlson and H.
+  Levkowetz",
+year = 2004,
+title = "{RFC 3748}: Extensible Authentication Protocol ({EAP})"
+}
+
+@Misc{IEEE802.1X,
+author = "{IEEE Computer Society}",
+year = 2004,
+title= "{802.1X IEEE Standard for Local and metropolitan area networks,
+ Port-Based Network Access Control}"
+}
+
+@Misc{eduroam.org,
+author = "eduroam {SA}",
+title = "eduroam Website",
+howpublished = "http://www.eduroam.org"
+}
+
+@Misc{commons8021X,
+author = "Benutzer Rohieb",
+title = "{Wikimedia Commons: File:8021X-Overview.svg}",
+howpublished = "http://commons.wikimedia.org/wiki/File:8021X-Overview.svg"
+}