节点文献

无线局域网密钥管理机制研究

Research of Key Management in WLAN

【作者】 周贵堂

【导师】 林柏钢;

【作者基本信息】 福州大学 , 计算机应用技术, 2006, 硕士

【摘要】 无线局域网(Wireless Lan)是高速发展的现代无线通信技术在计算机网络中的典型应用。从开始出现到现在规模,尽管才短短几年时间,WLAN却能依其灵活移动性、安装简单快速、运行成本低廉、可扩展性强、便于维护和管理等原因,发展十分迅速。但是WLAN的安全标准的研究却始终跟不上WLAN技术的发展,在密钥管理方面上,安全问题尤其突出。由于缺乏必要的密钥管理机制来产生和分发密钥,很多IEEE802.11WLAN在很不安全的环境下工作。这些WLAN对于刚入门的新手来说都是一个很容易攻击的目标,只要他刚好在运行此无线局域网建筑物的附近。本文首先讨论了无线局域网从开始出现到现在,为解决安全问题,推出的安全措施。这些措施最典型的是Wi-Fi标准技术,相继采用了如WEP、WPA、VPN、802.11x、802.11i等方法试图保证WLAN安全。本文描述了这些措施,并分析这些措施存在的安全漏洞。其次,本文介绍了一些基本的密钥管理技术,描述了密钥管理的管理策略,密钥管理的基本要素和密钥的生成方法,重点介绍了密钥分配协议(公开密钥分发和秘密密钥分发)。然后,本文根据WEP、IEEE802.1X存在的密钥管理问题,提出基于广播的密钥分发方法,为WEP配置密钥分发机制。这种方法能够动态地生成和分发密钥,能够实现密钥的更新。接着,本文就基于广播的密钥分发方法存在的问题,提出一种基于组播密钥分发机制的密钥分发方法。该方法在增加少量的密钥存储空间和占用适量的带宽的情况下,对组播的密钥分发帧进行加密,有效减小了密钥分发帧的长度。最后,本文介绍了无线局域网的密钥管理系统,描述了强安全网络(RSN)的相关密钥管理机制,并分析了其中存在的问题。提出利用改进的Diffie-Hellman密钥交换方案和改进的SAKA算法,解决RSN中的密钥生成和更新问题。

【Abstract】 With the high development of wirelss communication technology,WLAN has already become the typical applicantion of the network。WLAN has been resreached for only several years,with the flexible movement、fast and simple installment、the lower cost 、 robust expansibility and the convenience of maintenance and management,it developes quickly。But the research of it’s security standard can’t match with the development of the Wlan technology.The security problem is outstanding in key management.Without key management mechanism to generate and distribute key, As a consequence many IEEE 802.11 WLANs are operated in a completely insecure manner,representing an easy-to-attack target for even the most unskilled attackers, who happen to pass by near a building where an IEEE 802.11 WLAN is operated. First,This arcticle discuss the wlan security method from its appearance till now.The outstanding method is Wi-Fi standard technology,it adopt several methods to security wlan such as WEP,WPA,802.11X,802.11i.This arcticle describe this methods and their shortage are analyzed. Then,This arcticle introduce the technology of key management,describe the strategy of key management,the fator of the key management and the generation of key,The key distribution protocol is emphasized.(the public key distribution and the secret key distribution) And then under the key management problem of WEP and IEEE802.1X,this arcticle propose a key distribution based on the brocast key distribution frame,configure WEP with key distribution mechanism.This mechanism can generate , update and distribute the key dynamicly. Then under the problem of the key distribution based on the brocast key distribution frame,this arcticle propose a key distribution based on the multicast key distribution frame.With a few more storage and a few more bandwidth , this mechanism secure the key distribution frame,make the key distribution frame shorter. At the last,this arcticle introduce wlan key managemenet system,describe the key management mechanism of RSN,analyze the problem in RSN.The improved Diffie-Hellman arithmetic and the improved SAKA arithmetic are proposed to resolve the problem of the key generation and updation.

  • 【网络出版投稿人】 福州大学
  • 【网络出版年期】2006年 06期
  • 【分类号】TN918.82
  • 【被引频次】2
  • 【下载频次】275
节点文献中: