Featured Case Studies

Deploying both MMS and VAS solutions in 130 countries for a leading service provider

Developing a next-generation Ethernet edge aggregation node for a leading OEM

Delivering innovation assurance for a Tier-1 operator-branded portal

Perspectives & Favorites

Aricent and Connected Planet Team Up for a Live Webinar on the “10 Steps to 4G Service Assurance”

The Future of Telecom Testing

The Realities of 4G: What’s to Come

Google Opens Up Android

Port-based Network Access Control (PNAC)

Aricent Port-based Network Access Control (PNAC) software is a portable implementation of IEEE standard 802.1X. It can provide security services in both LAN switches and Wireless LAN access points (APs). The PNAC software product reduces the time-to-market for OEMs and VARs who need to incorporate security services in their switching/routing equipment. The product offers easy portability and maintenance on multiple platforms.

When used in LAN switches, PNAC offers access control to protected resources existing in the switched network. When used in WLAN APs, it provides authentication of the WLAN stations and additionally improves the security by using the periodically exchanged key used to encrypt the data. The PNAC solution can easily be ported to various leading operating systems and switch hardware using well-defined external interfaces.

Aricent’s Companion Lifecycle Services

The majority of Aricent’s products are delivered with tailored combinations of our Lifecycle Services, including Global Innovation and Design, Product Development, Testing and Certification, Network Engineering, Maintenance and Support, and Business Operations and Systems Integration. Aricent’s engineers and consultants have successfully completed thousands of services engagements globally using flexible delivery models ranging from on-site to off-shore. Aricent’s services offer deep communications domain expertise, cost and time efficiencies, quick ramp up and contemporary commercial engagement models including end-to-end commitments.

Architecture

Architecture of Aricent Port-based Network Access Control

Features

Supports Port Authentication: In the case of point-to-point links, the frames are forwarded only if the port is authenticated
Supports MAC Address Authentication: In the case of shared LANs, the frames are forwarded only if the sender (MAC address) is authenticated for that port
Interfaces with RADIUS clients for authentication and key refreshing
Authenticator supports EAP-MD5, TLS and TTLS authentication mechanisms; and Supplicant supports EAP-MD5 authentication mechanism
Provides a Local Authentication mechanism under which authentication is performed based on locally-configured users and passwords
Provides interface to communicate the session key to the WLAN driver, if present
Supports Supplicant functionality
Supports all MIB objects as specified in the 802.1x standard
Provides SNMP support for configuration and management
Highly portable code which uses flexible buffer and timer management libraries
Easily integrated with different types of switch hardware from various vendors

Deliverables

Source code written in C

Porting Process Document