| Wireless LAN has enriched the development of network access, but there are a lot of loopholes in security of WLAN based on IEEE 802.11 protocol. So IEEE institute promulgates IEEE 802.1x and IEEE 802.11i respectively to strengthen security of WLAN authentication and key management in June 2001 and June 2004.Against the above aspects, some securities for WLAN are studied in this thesis. In the smaller in scale but higher security requirement scenario in WLAN, fixed passwords cannot meet security requirements, combining with OTP, this thesis presents an identity authentication and key management scheme which provides bidirectional authentication and avoids complicated certificate mechanism. At the meantime, the key framework of Robust Security Network is analysed deeply, and then a new GTK updating scheme based on improving LKH is provided through replacing the unicast by multicast and without more key storage, which reduces the communication traffic of GTK updating from O (n) to O (log(n)), and only needs some hash algorithms. In addition, IEEE 802.1x mechanism is analysed, and how to interaction among the client, AP and the authentication server as well. Finally, EAP-TTLS authentication client under Win32 and the server under Linux are designed and implemented respectively, and then tests about the system.The main objective of this research is to boost up WLAN security based on IEEE 802.11i, implement the related drafts, and then present a rapid and effective group key refresh scheme. We believe that this work will be valuable and significant for the research in IEEE 802.11i. |
PDF Full Text Request