摘要: 回顾与分析了无线局域网的新一代安全标准IEEE 802.11i与四次握手协议。结合对实际协议的分析,指出四次握手协议的缺陷及可能带来的攻击,针对802.11i建议的方案及其局限性和仍然可能存在的攻击,提出了TPTK随机丢弃队列、消息1身份认证的改进设计,并对改进设计进行了验证与分析。
关键词:
WLAN,
802.11i,
802.1x,
四次握手协议,
PTK
Abstract: This paper reviews and analyzes WLAN’s new generation of security standard IEEE 802.11i and the 4-way handshaking protocol. With the analysis to this practical protocol, the paper indicates the vulnerability on 4-way handshaking and the possible attack. After reviewing the proposed solution of 802.11i standard, the paper analyzes its incompletion and vulnerability, and gives out two schemes of improvement design, a TPTK random-drop queue to the supplicant, and adding authentication to the initial message. In the end, system validating and analysis are made.
Key words:
WLAN,
802.11i,
802.1x,
4-way handshaking,
PTK
王小军;陆建德. 基于802.11i四次握手协议的攻击分析与改进[J]. 计算机工程, 2007, 33(03): 169-171.
WANG Xiaojun; LU Jiande. Analysis and Improvement Against the Attack on 4-way Handshaking Protocol of 802.11i[J]. Computer Engineering, 2007, 33(03): 169-171.