Abstract: Based on the thoroughly researches and analysis on the WLAN Authentication and Privacy Infrastructure (WAPI) access authentication process, i.e. the WAI protocol, this paper analyzes and verifies its authentication access process with CK model. Result of analysis indicates that the authentication access process of WAI can meet the security requirements of WLAN, such as data privacy protection, integrity protection, mutual identity authentication, mutual key control, private-key confirmation, etc. Therefore, WAPI can be applied to replace the original security mechanism WEP used in WLAN and to enhance its security.

Key words: WLAN, authentication, key agreement

摘要： 研究和分析无线局域网鉴别和保密基础设施WAPI的接入鉴别过程，即WAI协议，利用CK模型，对其安全认证和密钥协商过程进行了安全性分析。分析结果表明，WAI能够实现消息完整性保护、相互的实体认证、相互的密钥控制、密钥确认等安全属性，满足无线局域网的安全目标，从而可以用来替代WEP增强无线局域网的安全性。

关键词: 无线局域网, 认证, 密钥协商

CLC Number: 

• TN913.2