The Design And Implementation Of Dynamic Security Model Based On Wireless Network

With the development of wireless network technology, leaks existed in the safety precautions of wireless network have become so striking that its security can no longer guaranteed. Therefore, a dynamic security model must be constructed to realize the protection of user data in wireless network.Propose the ideas and design solutions to build a dynamic security model, comprehensively utilize dynamic testing technique for wireless network attacking, two-way authentication mechanisms for terminal device of dynamic wireless network, dynamic key distribution as well as other techniques to create the dynamic security model.Propose and build wireless network dynamic security model according to the MAC address filtering of wireless network card that access to terminal device, and enhance dynamic detection means. Adopt802.1x Authentication for network terminal device and assign and set the value of security status for each terminal. RADIUS is used as Certificate Server. Use private virtual network to provide data encryption services for the interaction between the terminal and the wireless network resources, in order to effectively ensure data security in wireless network. The model mainly consists of three parts, authentication features, encryption features, and security status management.VPN security gateway technology has been improved mostly on the aspects of function and security. Adopt the means of hardware encryption and decryption card processing instead software application to realize over thousands of hand-shakes per second; adopt the means of load balancing to assign large number of operations to access requests to multiple VPN authentication servers by increasing load balancing proxy server; the use of load balancing algorithm can realize approximately the same load for different servers so as to solve the performance problems facing large number of VPN application accesses.RADIUS authentication server has been improved in terms of security. On one hand, to improve the structure of the RADIUS authentication server; on the other hand, its strategies need to be improved in order to make sure RADIUS server can provide good security authentication service for wireless network.Conduct test on the dynamic security model and test of man-in-the-middle attacks and session hijacking attack on the system. The result shows that the dynamic security model can provide good security for wireless network.