资料下载
×
IEEE 802.11i标准
消耗积分:2 |
格式:rar |
大小:333 |
2008-07-12
李艳
分享资料个
IEEE 802.11i [21], an IEEE standard ratified June 24,
2004, is designed to provide enhanced security in the
Medium Access Control (MAC) layer for 802.11
networks. The 802.11i specification defines two classes of
security algorithms: Robust Security Network Association
(RSNA), and Pre-RSNA. Pre-RSNA security consists of
Wired Equivalent Privacy (WEP) and 802.11 entityauthentication. RSNA provides two data confidentiality
protocols, called the Temporal Key Integrity Protocol
(TKIP) and the Counter-mode/CBC-MAC Protocol
(CCMP), and the RSNA establishment procedure,
including 802.1X authentication and key management
protocols.
This paper analyzes security aspects of the 802.11i
specification, considering data confidentiality, integrity,
mutual authentication, and availability. Our analysis
suggests that 802.11i is a well-designed standard for data
confidentiality, integrity, and mutual authentication,
promising to improve the security of wireless networks.
At the same time, some vexing Denial-of-Service (DoS)
attacks remain. We review the known DoS attacks and
describe appropriate countermeasures. We also describe
two new DoS attacks – RSN Information Element (RSN
IE) Poisoning and 4-Way Handshake Blocking – and
present countermeasures for these. We also analyze the
failure-recovery strategy in 802.11i and discuss associated
tradeoffs. Finally we outline an improved version of
802.11i that addresses all the vulnerabilities discussed in
this paper.
2004, is designed to provide enhanced security in the
Medium Access Control (MAC) layer for 802.11
networks. The 802.11i specification defines two classes of
security algorithms: Robust Security Network Association
(RSNA), and Pre-RSNA. Pre-RSNA security consists of
Wired Equivalent Privacy (WEP) and 802.11 entityauthentication. RSNA provides two data confidentiality
protocols, called the Temporal Key Integrity Protocol
(TKIP) and the Counter-mode/CBC-MAC Protocol
(CCMP), and the RSNA establishment procedure,
including 802.1X authentication and key management
protocols.
This paper analyzes security aspects of the 802.11i
specification, considering data confidentiality, integrity,
mutual authentication, and availability. Our analysis
suggests that 802.11i is a well-designed standard for data
confidentiality, integrity, and mutual authentication,
promising to improve the security of wireless networks.
At the same time, some vexing Denial-of-Service (DoS)
attacks remain. We review the known DoS attacks and
describe appropriate countermeasures. We also describe
two new DoS attacks – RSN Information Element (RSN
IE) Poisoning and 4-Way Handshake Blocking – and
present countermeasures for these. We also analyze the
failure-recovery strategy in 802.11i and discuss associated
tradeoffs. Finally we outline an improved version of
802.11i that addresses all the vulnerabilities discussed in
this paper.
声明:本文内容及配图由入驻作者撰写或者入驻合作网站授权转载。文章观点仅代表作者本人,不代表电子发烧友网立场。文章及其配图仅供工程师学习之用,如有内容侵权或者其他违规问题,请联系本站处理。 举报投诉
评论(0)
发评论
- 相关下载
- 相关文章
