基于WAPI瓣校园无线局域网安全认证分析与解决方案

发布时间：2018-04-03 11:28

本文选题：无线局域网　切入点：安全技术　出处：《河北大学》2010年硕士论文

【摘要】：网络可以使人们在任意时间、任何地点、以任意方式共享资源,无线局域网更是因其安装灵活、使用方便而广泛应用于学校、医院、机场、酒店、会展中心、体育场馆等热点地区。但是,由于无线局域网使用开放性的无线传输介质,也使他面临诸多安全威胁。比如,数据更容易被窃听、截获或篡改,无线设备更容易遭到拒绝服务、假冒攻击等。首先介绍了无线局域网的相关知识和相关标准,描述了无线局域网的安全需求及安全问题。之后介绍了无线局域网安全技术：有加密技术、身份认证技术和访问控制技术。其次,介绍并分析了我国无线局域网标准WAPI的安全认证协议。WAPI是国家标准GB15629.11中采用的安全机制,由WAI和WPI两部分组成,分别实现对用户身份的鉴别和对传输数据的加密。详细描述了基于端口访问的WAI身份鉴别过程。WAPI能为用户提供全面的安全保护。然后,针对WAPI可能遭到的中间人攻击,做了改进性建议。最后,基于WAPI给出了校园无线局域网的解决方案。
[Abstract]:WLAN can be widely used in schools, hospitals, airports, hotels and convention centers because of its flexible installation and convenient use.Sports venues and other hot spots.However, because WLAN uses open wireless transmission medium, it also faces many security threats.For example, data is more vulnerable to eavesdropping, intercepting or tampering, wireless devices are more vulnerable to denial of service, counterfeit attacks and so on.Firstly, the related knowledge and standards of WLAN are introduced, and the security requirements and security problems of WLAN are described.Then it introduces the security technology of WLAN: encryption technology, identity authentication technology and access control technology.Secondly, this paper introduces and analyzes the security authentication protocol of WAPI. WAPI is the security mechanism used in the national standard GB15629.11, which is composed of WAI and WPI, which can authenticate the user identity and encrypt the transmitted data respectively.This paper describes in detail the WAI authentication process based on port access. WAPI can provide comprehensive security protection for users.Then, in view of WAPI may be attacked by the man-in-man, made improvement recommendations.Finally, the solution of campus WLAN based on WAPI is given.
【学位授予单位】：河北大学
【学位级别】：硕士
【学位授予年份】：2010
【分类号】：TN925.93

【参考文献】