| 基于密钥服务器的IEEE 802.11i密钥更新方案 |
| |
| 引用本文: | 周贤伟,白浩瀚,覃伯平.基于密钥服务器的IEEE 802.11i密钥更新方案[J].计算机工程与应用,2007,43(1):148-151. |
| |
| 作者姓名: | 周贤伟 白浩瀚 覃伯平 |
| |
| 作者单位: | 北京科技大学,信息工程学院,北京,100083 |
| |
| 摘 要: | 随着WLAN的广泛应用,无线安全越来越受到人们关注,密钥管理作为安全系统的实现基础亟待解决。针对IEEE802.11i标准为产生新的对等密钥PTK,STA与AP之间需要重新进行四步握手协议而加重STA开销的问题,提出一种基于密钥服务器的密钥更新方案(KSRS)。该方案对802.11i的密钥层次结构进行修改,增加了密钥更新层,可达到集中密钥更新的目的;结合STA的漫游特性,借鉴集中式密钥管理思想,引入可信实体KS来分发并更新密钥,可提供灵活的密钥管理操作。经性能分析,该方案的开销较小,能更加适应STA的移动性。
|
| 关 键 词: | 无线局域网 强安全网络 扩展认证协议 消息完整性码 |
| 文章编号: | 1002-8331(2007)01-0148-04 |
| 修稿时间: | 2006-08 |
Key server based re-keying scheme of IEEE 802.11i |
| |
| ZHOU Xian-wei,BAI Hao-han,QIN Bo-ping.Key server based re-keying scheme of IEEE 802.11i[J].Computer Engineering and Applications,2007,43(1):148-151. |
| |
| Authors: | ZHOU Xian-wei BAI Hao-han QIN Bo-ping |
| |
| Affiliation: | School of Information Engineering,University of Science and Technology Beijing, Beijing 100083,China |
| |
| Abstract: | With the wide application of WLAN,wireless security has become a serious concern for an increasing number of people.As the basis of implementing a security system,key management is a problem to be solved urgently.To derivate a new Pairwise Transient Key(PTK),4-Way Handshake needs to be carried out repeatedly between STA and AP,which worsens the overheads of STA.Aiming at this problem,a Key Server based Re-keying Scheme(KSRS) is proposed.This scheme adds a new level called Re-keying Level to the key hierarchy of 802.11i,which can implement centralized re-keying.Considering roaming character of STA and referring the centralized key management approach,this scheme uses an authentic entity called Key Server(KS) to distribute and refresh the keys,which can provide flexible operations for key management.A performance analysis on this scheme shows that it has lower overheads;thus it can be more suitable for mobility of STA. |
| |
| Keywords: | WLAN RSN EAP MIC |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
