| Today, technologies of wireless LAN develop rapidly and are used more and more widely. At the same time, wireless network security becomes an important aspect in research of wireless LAN. In order to enhance security of wireless networks, WLAN Authentication and Privacy Infrastructure (WAPI), a kind of WLAN security technology, should be implemented in WLAN according to Chinese standard.WLAN security technologies based on GB15629.11 are researched in this thesis. Performance of the existing international security standards is analyzed, and advantage of GB15629.11 WLAN security theory is presented. Besides, security architecture of GB15629.11 is introduced. Security access technology and functional modules of GB15629.11 are designed and implemented, too.Firstly, architecture, logical service interfaces and relationship between these interfaces are described in this thesis.Then, the details of certificate authentication procedure based on port access control in GB15629.11 are introduced. Certificate authentication procedure has two ways of authenticating method, centered or distributed authentication management and distributing mechanism, controllable session negotiation dynastic key, high reliable ciphering algorithm, expandable or evolvable embedded authentication and algorithm modules.Finally, the implementation of the initial access technology of mobile station aregiven in this thesis. the processes of implementing communication using message queue in STA and AP terminals in the Linux operating system and the designing of all modules are given.. |
PDF Full Text Request