摘要
无线接入扩展传统有线网络的同时,也增加了外界入侵的渠道。针对有线网络与无线扩展形成的新边界的安全问题,在802.11 i的基础上提出改进的安全方案,采用CCMP数据加密和基于"数字证书+USBkey+SSID"的802.1X认证机制,实现对认证发起者的身份鉴别、无线设备的认证和安全准入。
Wireless access adds new external intrusion channel wlfile extending conventional wired network. For tile new security problem from wired network and wireless extension, the paper proposes an improved security scheme on the basis of 802. 11 i. The scheme uses CCMP data encryption and 802.1X authentication mechanism integrating digital certificate, USBkey and SSID, to identify supplicant, authenticate wireless devices and implement secure access.
出处
《计算机与现代化》
2010年第5期160-163,共4页
Computer and Modernization
