| IEEE802.1x协议中EAP-TLS认证协议的安全性分析与改进 |
| |
| 引用本文: | 何定养,王玉柱,郑贤路,卢继明,肖洋.IEEE802.1x协议中EAP-TLS认证协议的安全性分析与改进[J].后勤工程学院学报,2011,27(1):92-96. |
| |
| 作者姓名: | 何定养 王玉柱 郑贤路 卢继明 肖洋 |
| |
| 作者单位: | 1. 后勤工程学院后勤信息工程系,重庆,401311
2. 后勤工程学院军事建筑工程系,重庆,401311 |
| |
| 摘 要: | 基于IEEE802.1x协议的体系结构,分析了EAP-TIS认证协议的安全性,详细阐述了EAP-TIS认证协议遭受中间人攻击的过程和原因,并提出了相应的改进方案.通过对Disassociate帧和EAP-Success消息进行加密和数字签名来保证消息的保密性和真实性,从而解决了客户端无法对Disassociate帧和E...
|
| 关 键 词: | 802.1x EAP-TLS 安全性分析 |
Security Analysis and Improvement of EAP-TLS Authentication Protocol in IEEE802.1x |
| |
| HE Ding-yang,WANG Yu-zhu,ZHENG Xian-lu,LU ji-ming,XIAO Yang.Security Analysis and Improvement of EAP-TLS Authentication Protocol in IEEE802.1x[J].Journal of Logistical Engineering University,2011,27(1):92-96. |
| |
| Authors: | HE Ding-yang WANG Yu-zhu ZHENG Xian-lu LU ji-ming XIAO Yang |
| |
| Institution: | HE Ding-yang1,WANG Yu-zhu1,ZHENG Xian-lu1,LU Ji-ming2,XIAO Yang1(1.Dept.of Logistical Information Engineering,LEU,Chongqing 401311,China,2.Dept.of Architecture & Civil Engineering,China) |
| |
| Abstract: | Based on IEEE802.1x protocol architecture,the security of EAP-TLS authentication protocol is analyzed,the process and reasons of the man-in-the-middle attack from which the EAP-TLS authentication protocol suffered are expatiated in detail,and a corresponding improved scheme is supplied.By encryption and digital signatures for Disassociate frame and EAP-Success,the confidentiality and authenticity of message are ensured,which can resolve the authentication problem that client can not validate the message ori... |
| |
| Keywords: | 802 1x EAP-TLS security analysis |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
