Construction And Simulation Of Authentication Scheme Based On DAA In WLAN

With the development of WLAN(Wireless Local Area Network),it's widely applied in fields of life,economy and scientific research.But the exposed security problems is an major obstacle to the application of WLAN.It has set up the security scheme in the beginning of WLAN,and the authentication technology is the basis of the scheme.But the authentication technology adopted by WLAN cann't protect the user's privacy effectively.In 2003,to ensure the anonymity in the TPM authentication,Trusted Computing Group issued DAA(Direct anonymous attestation) scheme.Howere,the scheme is only suitable for small trusted computing network.To protect the user's privacy in authentication,this article introduces an anthenticaton scheme suitable for WLAN based on DAA.The scheme could identifies the user's authentication,and prevents unanthorized users from occupying resource of network,deleting,or tampering data.In the meanwhile,it protects the privacy of legitimate users.The realization of the simulation of the improved scheme not only lays the foundation for the further application,but also provides a theoretical basis for the rearch on privacy proteciton of personalized informaton service which based on WLAN. The main works of this paper are as follows:Firstly,a special Hash function algorithm for Direct Anonymous Attestation Scheme is studied and presented.The design principle of this algorithm is same as the MD and SHA algorithms.Simple nonlinear transform and logistic function are used in this algorithm.The algorithm's speed of execution is very suite for DAA scheme.Further more,the algorithm can satisfy the required security performance,such as one-way and collision resistance.Secondly,in order to achieve the anonymity,this article mainly proposes an anonymous authentication of Wireless Local Area Network based on the DAA.In the construction,it achieves the function of TPM by a client software,and ptomotes the efficiency by reducing alternation between client and issuer.The scheme is based on Zero-knowledge and group signature,so it keeps the anonymity of authentication.In addition,it proves the security of the scheme in theory with BAN-like logic. Finally,in order to reduce the cost,improve the validity and accuracy of research. we realize the simulation of the improved scheme by OPNET Modeler education version,compare it with the open system model on the essential parameters,such as global delay,global load and global throughput.In the simulation,we construct the improved model base on the existing models in OPNET in the pattern of bottom-up.