| With the development of technologies of computer and network science, the wireless LAN develops very fastly. More and more people work with laptops and notebooks. for come-and-go between cities, many commercial customers need to deal with their business by notebooks, wireless LAN accord with their needs.Nowaday the protocol which applies to WLAN is 802.11.But as WLAN's transmit medium is atmosphere, it exposure in air, it is very easy to wire tapping by hackers. It's important to research the security of WLAN. Traditional technologies such as WEP are proved they are not enough safe to protect the WLAN's safety, so many secure tech are developed. VPN is one of them.The VPNs can be divided into a few kinds by the protocol they use, such as PPTP, L2TP, IPSec and SSL. IPSec VPN is a scheme which is implementing most widely. It can adopt almost all of encrypt algorithms, and it's ratified by most companies and organizes. But it also has some problems that can not be solved commendably. SSL VPN is a new VPN technology and for it's easy to implement, its client software is simpler, it plays a very important role in VPN market. It also can solve the problems which are faced by IPSec VPN. This project adopts the SSL VPN.First the thesis analyses the technology characteristics of WLAN based on 802.11 protocol and the excellences and disadvantages of SSL VPN and IPSec VPN. Then study the PKI(Public Key Infrastructure) and the validate mechanism based on digital certification. Aiming at the characteristics of WLAN the thesis introduces some new technologies to improve the deficiencies of WLAN's transmission. The thesis designs a full VPN framework which includes identity authentication module, keys management module and access control module, and implements some of these modules. At last using the PKI and OpenSSL to establish a SSL gateway. It can improve the SSL VPN's efficiency preferably. |
PDF Full Text Request