计算机应用与软件Issue(2):290-293,4.DOI:10.3969/j.issn.1000-386x.2016.02.067
基于公钥密码体制的802.1x 双向认证研究
STUDY ON PUBLIC KEY CRYPTOGRAPHY-BASED 802.1X BIDIRECTIONAL AUTHENTICATION
摘要
Abstract
In order to solve the problems of the unequal authentication between applicant and authenticator and the plaintext transmission of the control frame and management frame,according to the analysis on 802.1x/EAP authentication process,we proposed an improved scheme of 802.1x/EAP bidirectional authentication which is based on public key cryptosystem.The scheme uses the authentication property of the introduced public key cryptosystem to achieve bidirectional authentication between applicant and authentication server.Meanwhile it uses symmetric key cryptosystem to achieve the bidirectional authentication between each pair of supplicant,authenticator and authentication server and encrypts the sensitive domains of control frame and management frame.The scheme can protect the confidentiality of authentication process,authenticates the identity of AP,and effectively prevents the man-in-the-middle attacks and denial of service attacks.It was proved by simulation experiments that in average the scheme was about 13.1% higher in successful authentication than the original protocol,the number of the successful STA access had the significant increase,roughly about 26% of total STA numbers,and the descending rate of STA access number was slow and stable while the number of attacks was more than 50.关键词
802.1x/双向认证/公钥密码/中间人攻击/拒绝服务攻击Key words
802.1x/Bidirectional authentication/Public key cryptography/Man-in-the-middle attack/Denial of service attacks分类
信息技术与安全科学引用本文复制引用
蒋华,张乐乾,阮玲玲..基于公钥密码体制的802.1x 双向认证研究[J].计算机应用与软件,2016,(2):290-293,4.基金项目
国家自然科学基金重点项目(61262074);桂林电子科技大学研究生教育创新计划资助项目(GDYCSZ201422)。 ()
