东南大学学报(英文版)2008,Vol.24Issue(1):25-28,4.
新完善的WAPI协议安全性分析
Security analysis of newly ameliorated WAPI protocol
摘要
Abstract
Based on thorough researches on the Chinese wireless local area network (WLAN) security standard,i.e.,WLAN authentication and privacy infrastructure (WAPI),the security of the authentication access process is analyzed with the CK (Canetti-Krawczyk) model and the BAN (Burrows-Abadi-Needham) logic.Results show that it can achieve the alleged authentication and key negotiation goals.Besides those alleged, further analyses indicate that the authentication access process can satisfy other security requirements,such as mutual identity authentication,mutual key control,key confirmation,message integrity check,etc.If the used elliptic curve encryption algorithm and the hash algorithm are secure enough,the protocol can efficiently realize mutual authentication between STAs (station) and APs (access point).Therefore,WAPI can be applied to replace the security mechanism used in the original WLAN international standard to enhance its security.关键词
无线局域网/WAPI/认证/密钥协商/CK模型Key words
wireless local area network (WLAN)/WLAN authentication and privacy infrastructure (WAPI)/authentication/key negotiation/CK model分类
信息技术与安全科学引用本文复制引用
庞辽军,李慧贤,王育民..新完善的WAPI协议安全性分析[J].东南大学学报(英文版),2008,24(1):25-28,4.基金项目
The National Basic Research Program of China(973 Program) (No.G1999035805),the Natural Science Foundation of Shannxi Province (No.2007F37),China Postdoctoral Science Foundation (No.20060401008,20070410376). (973 Program)
