无线局域网安全技术研究

发布时间：2018-01-19 08:14

本文关键词： 无线局域网安全技术强健安全网络无线城域网　出处：《西安电子科技大学》2005年硕士论文　论文类型：学位论文

【摘要】：近几年来,各种宽带无线接入技术获得了巨大的发展,其中的安全问题一直是关注的焦点。作为较早进入市场并形成规模的无线技术,无线局域网(WLAN)具有普遍性和特殊性,有较高的研究价值。本文探讨了WLAN 面临的安全威胁和安全需求,研究了802.11 中以有线等价保密(WEP)协议为核心的安全机制存在的安全漏洞,分析802.11i 针对WEP 机制的改进以及长期安全解决方案“强健安全网络”(RSN)。论文还分析了3GPP-WLAN 互通系统的安全威胁、安全需求和安全机制。目前这方面的研究成果较少,未来可能会成为新的研究热点,吸引更多的关注。最后对无线城域网(WMAN)中的安全技术与WLAN 进行了对比研究,发现802.16 规范中的安全机制存在一些问题:基于DES 的数据保密方法缺乏抗重放机制和完整性保护;认证和密钥管理协议存在密码算法降级攻击、重放报文拒绝服务攻击、重认证不够有效、PKI 部署困难等问题,文中给出了协议改进的建议。
[Abstract]:In recent years, a variety of broadband wireless access technology has been greatly developed, in which security issues have been the focus of attention. WLAN (WLAN) has universality and particularity, and has high research value. This paper discusses the security threats and security requirements faced by WLAN, and studies the security vulnerabilities in 802.11 security mechanism based on wired equivalent security protocol. This paper analyzes the improvement of 802.11i for WEP mechanism and the long-term security solution, "strong security network". This paper also analyzes the security threats, security requirements and security mechanisms of 3GPP-WLAN interworking system. At present, there are few research results in this area, which may become a new research hotspot in the future. Attract more attention. Finally, the security technology of WMAN and WLAN are compared and studied. It is found that there are some problems in the security mechanism of 802.16: the method of data security based on DES lacks anti-replay mechanism and integrity protection; Authentication and key management protocols have some problems such as demotion attack of cryptographic algorithm, replay of message denial of service attack, difficulty of PKI deployment and so on. Suggestions for protocol improvement are given in this paper.
【学位授予单位】：西安电子科技大学
【学位级别】：硕士
【学位授予年份】：2005
【分类号】：TN925.93

【引证文献】