摘要
在对以太网接入控制中的802.1x技术(特别是华为802.1x技术)进行分析的基础上,针对接入用户使用兼容客户端,去除了标准客户端软件中扩展特性的问题,通过分析标准客户端数据帧,使用WinCap开发兼容类客户端,确认了兼容客户端产生的根源,提出了基于Challenge认证的客户端软件版本检测方法,在每次客户端向设备端请求认证时,通过发送以随机数产生的不同的版本检测帧,切断/非法客户软件重放攻击方式的兼容性实现途径,确认客户端软件的合法性.
In this paper, by capturing frame between supplicant and authenticator, and developing compatible supplicant using WinCap, Ethemet access control technology, 802. 1x, especially Huawei 802. 1x, is analyzed. Then in order to keep subscriber away from invalid supplicant, a method is proposed for detecting supplicant version. This checking version method is based on challenge authentication, and transmits different checking version frame from an original random number between authenticator and supplicant when authentication has started. It determines the supplicant version by removing the playback attack source data of invalid supplicant.
出处
《昆明理工大学学报(理工版)》
2007年第2期43-47,共5页
Journal of Kunming University of Science and Technology(Natural Science Edition)
