EAP-SIM with no SIM Card
Jouni Malinen
j at w1.fi
Thu Nov 3 11:09:21 EDT 2011
On Thu, Nov 03, 2011 at 11:58:02AM -0200, Ronaldo Afonso wrote:
> Is it possible to configure wpa_supplicant for EAP-SIM authentication with
> no SIM Card?
Yes, wpa_supplicant can be built with Milenage-based simulator for
SIM/USIM authentication.
> I just want to simulate a EAP-SIM client authentication.
Add these to build configuration in wpa_supplicant/.config:
CONFIG_USIM_SIMULATOR=y
CONFIG_SIM_SIMULATOR=y
> I'm using a configuration file like that:
>
> # EAP-SIM with a GSM SIM or USIM
> network={
> ssid="vexatt-eap"
> key_mgmt=WPA-EAP
> eap=SIM
> pin="1234"
> pcsc=""
> }
Remove pin and pcsc entries and add these:
identity="1232010000000000"
password="90dca4eda45b53cf0f12d7c9c3bc6a89:cb9cccc4b9258e6dca4760379fb82581"
In other words, you will need to build the identity (1 | IMSI for
EAP-SIM) and set Milenage parameters in the password. See
hostapd/hlr_auc_gw.milenage_db for more details on Milenage.
Similarly, for EAP-AKA you can use:
identity="0232010000000000"
password="90dca4eda45b53cf0f12d7c9c3bc6a89:cb9cccc4b9258e6dca4760379fb82581:000000000123"
> but it seems wpa_supplicant is trying to get some information from a SIM
> Card.
The pcsc parameter in the network block indicates that a real SIM card
is to be used through PC/SC.
--
Jouni Malinen PGP id EFC895FA
More information about the HostAP
mailing list