System and method for two-way access authentication of wireless local area network based on identity credential

A wireless local area network and identity certificate technology, applied in the field of wireless local area network two-way access authentication system, can solve the problems of reducing access authentication efficiency, delay of WLAN security mechanism authentication message exchange delay, digital certificate maintenance cost and applicability defects, etc.

Active Publication Date: 2016-05-25
NORTHEASTERN UNIV LIAONING
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, the private key of the entity is distributed by the private key generation center (PrivateKeyGenerator, PKG), which leads to a series of security issues such as key escrow and key transmission, making this type of scheme limited to applications in a small-scale trusted network
[0005] It can be seen that the above-mentioned WLAN security mechanism has defects in authentication message exchange delay, digital certificate maintenance cost and applicability, and more importantly, when a mobile user switches between different access routers accessing the network, the complete access authentication process requires Re-execution further reduces the efficiency of access authentication

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • System and method for two-way access authentication of wireless local area network based on identity credential
  • System and method for two-way access authentication of wireless local area network based on identity credential
  • System and method for two-way access authentication of wireless local area network based on identity credential

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0084] The specific implementation manners of the present invention will be described in detail below in conjunction with the accompanying drawings.

[0085] In this embodiment, the system and method for two-way access authentication of a wireless local area network based on an identity credential are applied to an access authentication link of a wireless local area network. The mature 802.11i authentication framework is used in the implementation process. For the bearer of authentication messages, the EAP protocol is used between the mobile user and the access router, and the RADIUS protocol is used between the access router and the authentication server.

[0086] like figure 1 As shown, the two-way access authentication system for WLAN based on identity credentials includes several access routers (including AR1 and AR2), set in an autonomous security domain, and also includes an identity credential management server (ICM) and an authentication server (AS );

[0087] The id...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

A two-way access authentication system and method for a wireless local area network based on identity certificates belongs to the field of wireless network security. The identity certificates of entities in the security domain are managed, including issuing identity certificates and maintaining identity certificates; the authentication server is used to verify the mobile user’s access authentication application and complete the shared key negotiation with the mobile user; the access router is used to The returned verification result controls whether the mobile user accesses the WLAN, and at the same time, the access router receives and forwards the authentication message between the mobile user and the authentication server. In an autonomous security domain, the present invention can not only realize the two-way access authentication and key negotiation between the mobile user and the access network, but also support the efficient access authentication of the mobile user when switching between different access routers, thereby improving access authentication. efficiency.

Description

technical field [0001] The invention belongs to the field of wireless network security, and in particular relates to a two-way access authentication system and method for a wireless local area network based on identity certificates. Background technique [0002] With the rapid development of computer networks and mobile communication technologies, a large number of mobile devices have emerged, and people's demand for ubiquitous network access is becoming more and more urgent. As the extension and extension of the Internet, IEEE802.11 Wireless Local Area Network (WLAN) has become the best solution for the "last mile" access field due to its advantages of flexible deployment, heterogeneous compatibility, low cost, and rich bandwidth. [0003] However, with the widespread deployment of WLAN, its security issues began to emerge. The next-generation wireless communication system requires WLAN to provide users with efficient and secure access services in an open environment, and ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04W12/06H04W12/08H04W12/069
Inventor 高天寒
Owner NORTHEASTERN UNIV LIAONING
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap