====== Research ======












===== Journal Papers =====

  * D. Garcia-Carrillo and R. Marin-Lopez. **Lightweight CoAP-Based Bootstrapping Service for the Internet of Things**. Sensors MDPI, 16(3):358, 2016. (**JCR=2.245, Q1**)

  * A. Pérez-Méndez, R. Marín-López and G. López-Millán. //Providing efficient SSO to cloud service access in AAA-based identity federations//. Elsevier Future Generation Computer Systems, 58:13-28, 2016. (**JCR=2.786, Q1**)

  * P. Moreno-Sanchez, R. Marín-López and F. Vidal-Meca.  //An open source implementation of the protocol for carrying authentication for network access: OpenPANA//. IEEE Network (Special Issue in Open Source for Networking: Protocol Stacks), 28(2):49-55, 2014 (**JCR=2.540, Q1**)

  * A. Pérez-Mendez, F. Pereñíguez-García, R. Marín-López, G. López-Millán and J. Hewlett. //Identity Federations Beyond the Web: A Survey//. IEEE Communications Surveys & Tutorials, 16(4):2125-2141, 2014 (**JCR=6.806, Q1**) 

  * J. Santa, F. Pereniguez-Garcia, F. Bernal, P. J. Fernandez, R. Marin-Lopez and A. F. Skarmeta. //A Framework for Supporting Network Continuity in Vehicular IPv6 Communications//. IEEE Intelligent Transportation Systems Magazine, 6(1):17-34, 2014 (**JCR=0.821, Q3**)

  * R. Marin-Lopez, F. Bernal-Hidalgo, S. Das, L. Chen and Y. Ohba. //A new Standard for securing media independent handover: IEEE 802.21A//. IEEE Wireless Communications, 20(6):82-90, 2013. (**JCR=6.524, Q1**)

  * P. Moreno-Sanchez,  R. Marin-Lopez  A. F. Skarmeta. PANATIKI: A Network Access Control Implementation Based on PANA for IoT Devices. Sensors 2013, 13(11), 14888-14917 (**JCR=2.048, Q1**)

  * F. Pereniguez, R. Marin-Lopez, G. Kambourakis, A. Ruiz Martínez, S. Gritzalis, A. F. Gomez. //KAMU: Providing Advanced User Privacy in Kerberos Multi-Domain Scenarios//. International Journal of Information Security (IJIS) vol. 12 (6):505-525 (2013) (**JCR=0.941, Q3**)

  * A. Pérez-Méndez, F. Pereñíguez-García , R. Marín-López and G. López-Millán. Out-of-band federated authentication for Kerberos based on PANA. Elsevier Computer Communications, vol. 36(14):1527–1538 (2013) (**JCR=1.352, Q2**) 

  * A. Ruiz-Martínez, F. Pereñíguez, R. Marín-López, P. M. Ruiz-Martinez, A. F. Gómez-Skarmeta. //Teaching Advanced Concepts in Computer Networks: VNUML-UM Virtualization Tool//. IEEE Transactions on Learning Technologies, 6(1): 85-96, 2013. (**JCR=1.220, Q3**)

  * R. Marin-Lopez, Y. Ohba, F. Pereniguez, and A.F. Gomez. //Analysis of Handover Key Management schemes under IETF perspective//. Elsevier Computer Standards & Interfaces, 32(5-6):266-273, 2010. Special issue on Information and Communications Security, Privacy and Trust: Standards and Regulations. (**JCR = 0.868, Q3**)

  * R. Marin-Lopez, F. Pereniguez, F. Bernal, and A.F. Gomez. //Secure Three-party Key Distribution Protocol for Fast Network Access in EAP-based Wireless Networks//. Elsevier Computer Networks, 54:2651 - 2673, October 2010. (**JCR = 1.176, Q2**)

  * R. Marin Lopez, F. Pereniguez Garcia, Y. Ohba, F. Bernal Hidalgo, and A.F. Gomez-Skarmeta. //A Kerberized Architecture for Fast Re-authentication in Heterogeneous Wireless Networks//. Springer Mobile Networks and Applications, 15(3):392 - 412, 2010. (**JCR=0.683, Q3**)

  * F. Pereniguez, G. Kambourakis, R. Marin-Lopez, S. Gritzalis, and A.F. Gomez. //Privacy-enhanced Fast Re-authentication for EAP-based Next Generation Network//. Elsevier Computer Communications, 33(14):1682 - 1694, 2010. (**JCR = 0.816, Q2**)

  * F. Pereniguez, R. Marin-Lopez, G. Kambourakis, S. Gritzalis, A. F. Gomez. //PrivaKERB: A User Privacy Framework for Kerberos//. Elsevier Computers & Security, vol 30(6-7) : pp 351-552, 2010.  (**JCR = 0.889, Q3**)

  * R.Marin-Lopez, F. Pereñiguez, G. Lopez, and A. Perez-Mendez. //Providing EAP-based Kerberos pre-authentication and advanced authorization for network federations//. Elsevier Computer Standards and Interfaces, vol. 33(5): pp 494-504 (2011). (**JCR = 1.257, Q2**)

  * R. Marín-Lopez, Y. Ohba, F. Pereñiguez and Antonio F. Gomez. //Network Access Security for the Internet: Protocol for Carrying Authentication for Network Access (PANA)//. IEEE Communications Magazine (2012) (**JCR=3.661, Q1**)

  * A. Perez-Mendez, F. Pereñiguez-García, R. Marín-López, G. López-Millán, A cross-layer SSO solution for federating access to kerberized services in the eduroam/DAMe network. Springer Journal International Journal of Information Security, vol 11(6):365-388 (2012) (JCR= 0.480, Q4)

  * R. M. López, A. Dutta, Y. Ohba, H. Schulzrinne, and A. F. Gómez Skarmeta. Network-Layer Assisted Mechanism to Optimize Authentication Delay during Handoff in 802.11 Networks. In Proc. of the 5th Annual International Conference on Mobile and Ubiquitous Systems: Computing, Networking and Services,  ACM Mobiquitous 2007, Philadelphia, USA, Aug. 2007. ACM. (Core A)

  * A. Dutta, S. Das, D. Famolari, Y. Ohba, K. Taniuchi, V. Fajardo, R. Marin-Lopez, T. Kodama y H. Schulzrinne. //Seamless Proactive Handover across Heterogeneous Access Networks//.  Wireless Personal Communications: An International Journal, vol. 43(3):pp. 837–855, Nov. 2007. (**JCR = 0.230, Q3**)

  * A. Dutta, D. Famolari, S. Das, Y. Ohba, V. Fajardo, K. Taniuchi, R. Lopez, and H. Schulzrinne. //Media-Independent Pre-Authentication Supporting Secure Interdomain Handover Optimization//. IEEE Wireless Communications, 15(2), 55–64, vol. 15(2):55–64,  April 2008. (**JCR = 3.180, Q1**) 

  * A. Perez-Mendez, P. J. Fernandez-Ruiz, R. Marin-Lopez, G. Martinez-Perez, A. F. Gomez-Skarmeta, K. Taniuchi. //OpenIKEv2: Design and Implementation of an IKEv2 Solution//. Journal IEICE - Transactions on Information and System, vol. E91-D(5):pp. 1319-1329 (2010). (**JCR = 0.369, Q4**)
  
  * P. M. Ruiz, R. Marin, F. J. Ros and J. A. Martinez. //Enhanced Access Control in Hybrid MANETs Through Utility-Based Pre-Authentication Control//.  Journal Wiley Wireless Communications and Mobile Computing, vol. 10(5):pp. 688-703, May 2010. Special issue Quality of Service and Security in Wireless and Mobile Networks (**JCR = 1.016, Q3**)

  * G. López, Ó. Cánovas, J. D. Jiménez, A. F. Gómez Skarmeta and R. Marin.  //A network access control approach based on the AAA architecture and authorization attributes//. Elsevier Journal of Network and Computer Applications JNCA, vol. 30(3):pp. 900–919, Aug. 2007. (**JCR=1.265, Q2**)

===== Conference papers =====

  * F. Bernal-Hidalgo, F. Pereniguez-Garcia, R. Marin-Lopez and A. F. Gomez-Skarmeta, //"A network access control solution based on PANA for intelligent transportation systems"// In Proc.  2014 International Conference on Connected Vehicles and Expo (ICCVE), Vienna, Austria, November 2014. [[http://ieeexplore.ieee.org/xpl/articleDetails.jsp?reload=true&arnumber=7297587|ICCVE2014]] 

  * F. Pereñiguez-Garcia, R. Marin-Lopez, A. F. Skarmeta-Gomez, "Improving Kerberos Ticket Acquisition during Application Service Access Control". In Proc. 10th International Conference, TrustBus 2013, Prague, Czech Republic, August 2013. [[http://link.springer.com/chapter/10.1007/978-3-642-40343-9_1|TRUSTBUS2013]]

===== Standardization =====


==== IETF RFCs====

  * IETF RFC 7499. //Support of Fragmentation of RADIUS Packets//, April 2015.  [[https://tools.ietf.org/html/rfc7499|RFC7499]]
  
  * IETF RFC 5637. //Authentication, Authorization, and Accounting (AAA) Goals for Mobile IPv6//, September 2009. [[https://tools.ietf.org/html/rfc5637|RFC5637]]
  
  * IETF RFC 5609. //State Machines for the Protocol for Carrying Authentication for Network Access (PANA)//, July 2009. [[https://tools.ietf.org/html/rfc5609|RFC5609]]

  * IETF RFC 5193. //Protocol for Carrying Authentication for Network Access (PANA) Framework//, May 2008. [[https://tools.ietf.org/html/rfc5193|RFC5193]]



==== IETF Internet-Drafts ====

  * IETF Internet-Draft //LoRaWAN Authentication in Diameter//, May 2016. [[https://tools.ietf.org/html/draft-garcia-dime-diameter-lorawan-00|I-D.garcia-dime-diameter-lorawan]]. 

  * IETF Internet-Draft //LoRaWAN Authentication in RADIUS//, May 2016. [[https://tools.ietf.org/html/draft-garcia-radext-radius-lorawan-00|I-D.garcia-radext-radius-lorawan]]. 

  * IETF Internet-Draft //Software-Defined Networking (SDN)-based AAA Infrastructures Management//, November 2015. [[https://tools.ietf.org/html/draft-marin-sdnrg-sdn-aaa-mng-00|I-D.marin-sdnrg-sdn-aaa-mng]]. 

  * IETF Internet Draft //Software-Defined Networking (SDN)-based IPsec Flow Protection//, October 2015. [[https://tools.ietf.org/html/draft-abad-sdnrg-sdn-ipsec-flow-protection-01|I-D.abad-sdnrg-sdn-ipsec-flow-protection]]

  * IETF Internet Draft //Security Framework and Key Management Protocol Requirements for 6TiSCH//, March 2014.[[https://tools.ietf.org/html/draft-ohba-6tisch-security-01|I-D.ohba-6tisch-security]]

  * IETF Internet Draft //GSS-API pre-authentication for Kerberos//, September 2012. [[https://tools.ietf.org/html/draft-perez-krb-wg-gss-preauth-02|I-D.perez-krb-wg-gss-preauth]]

  * IETF Internet Draft //GSS-EAP pre-authentication for Kerberos//, March 2012. [[https://tools.ietf.org/html/draft-perez-abfab-eap-gss-preauth-01|I-D.perez-abfab-eap-gss-preauth]]

  * IETF Internet Draft //Architecture for Fast EAP Re-authentication based on a new EAP method (EAP-FRM) working on standalone mode//, March 2011. [[http://tools.ietf.org/html/draft-marin-eap-frm-fastreauth-03|I-D.marin-eap-frm-fastreauth]]

  * IETF Internet Draft //An EAP Method for Key Distribution Exchange for Handover Re-authentication//, February 2008 [[http://tools.ietf.org/html/draft-ohba-eap-kde-01|I-D.ohba-eap-kde]]

  * IETF Internet Draft //An EAP Method for EAP Extension//, July 2007. [[http://tools.ietf.org/html/draft-ohba-hokey-emu-eap-ext-02|I-D.ohba-hokey-emu-eap-ext]]

  * IETF Internet Draft //Problem Statement and Requirements on a 3-Party Key Distribution Protocol for Handover Keying//, March 2007. [[https://tools.ietf.org/html/draft-ohba-hokey-3party-keydist-ps-01|I-D.ohba-hokey-3party-keydist-ps]]

  * IETF Internet Draft //Use of Context Transfer Protocol (CXTP) for PANA//, March 2006. [[http://tools.ietf.org/html/draft-ietf-pana-cxtp-01|I-D.ietf-pana-cxtp]]

  * IETF Internet Draft //PANA bootstrapping IEEE 802.11 security//, February 2006. [[http://tools.ietf.org/html/draft-marin-pana-ieee802doti-00|I-D.marin-pana-ieee802doti]]

  * IETF Internet Draft //Enriching Bootstrapping With Authorization Information//, October 2005. [[http://tools.ietf.org/html/draft-tschofenig-enroll-bootstrapping-saml-02|I-D.tschofenig-enroll-bootstrapping-saml]]

  * IETF Internet Draft //PANA Mobility Optimizations with Session Keys Context (SKC)//, October 2005. [[http://tools.ietf.org/html/draft-forsberg-pana-skc-00|I-D.forsberg-pana-skc]]

  * IETF Internet Draft //Usage Scenarios and Requirements for Multi-hop EAP Lower Layer//, February 2005. [[http://tools.ietf.org/html/draft-ohba-multihop-eap-00|I-D.ohba-multihop-eap]]

  * IETF Internet Draft //Mobile IPv6 Bootstrapping Architecture Using DHCP//, October 2004. [[http://tools.ietf.org/html/draft-ohba-mip6-boot-arch-dhcp-00|I-D.ohba-mip6-boot-arch-dhcp]]

==== IEEE ====

  * 802.21a-2012 - IEEE Standard for Local and Metropolitan Area Networks: Media Independent Handover Services - Amendment for Security Extensions to Media Independent Handover Services and Protocol, 2012. [[https://standards.ieee.org/findstds/standard/802.21a-2012.html|IEEE-802.21a-2012]]

===== PhD Students =====


===== Past Phd Students =====

  * Dan Garcia-Carrillo “A solution for the bootstrapping problem in Internet-of-Things with Authentication, Authorization and Accounting (AAA) infraestructures”