摘要
在分析IEEE802.1x协议认证机制的基础上,针对IEEE802.1x缺乏源真实性和完整性保护的缺陷,提出IEEE802.1x协议认证机制的改进方案(AIP)。该方案通过在EAPOL包中增加了一个Protection字段,可弥补IEEE802.1x的中间人攻击和会话劫持等缺陷。经性能分析,该方案相对原方案而言,具有源真实性和完整性保护等优点。
Based on the analysis of the IEEE 802.1 x authentication mechanism, to fetch up the flaws that IEEE 802.1 x lacks source authenticity and integrity protection, an improved IEEE 802. 1 x authentication mechanism (AlP) was proposed. By adding a Protection part into EAPOL packets, this scheme can fetch up the flaws of IEEE 802.1 x, such as intermediary attack and session hijack. Through the capability analysis, the scheme has more advantages as source authenticity and integrity protection than the original one.
出处
《计算机应用》
CSCD
北大核心
2006年第12期2894-2896,共3页
journal of Computer Applications
基金
国家自然科学基金资助项目(60573050)