IEEE 802.6 Security Features and Enhanced Security Service

The IEEE 802.6 Metropolitan Area Networks (MAN) has several intrinsic security features in its design and envisioned deployment. In fact, it has several security services not normally attributed to OSI Data-Link Layer in the ISO-OSI Security Addendum for the OSI Reference Model. This talk highlights these intrinsic security services in a 802.6 network and compares/contrasts its security capabilities with other IEEE 802.x networks. The talk then develops the security server concept for how enhanced, intermediate (versus end-to-end) security services can be added to the network by a neutral MAN provider. The server concept fits naturally within the MAN architecture and provides a powerful, but flexible mechanism for various security related features. Specifically, services for user authentication, key management, non-repudiation, and session integrity will be illustrated.