WPA/WPA2PSK的安全性分析与改进

计算机与现代化 ›› 2013, Vol. 1 ›› Issue (1): 153-157.doi:

WPA/WPA2PSK的安全性分析与改进

吴一尘

中国人民解放军电子工程学院网络系，安徽合肥230037

收稿日期:2012-09-24 修回日期:1900-01-01 出版日期:2013-02-06 发布日期:2013-02-06

Security Analysis and Improvement of WPA/WPA2PSK

WU Yichen

Network Department， Electronic Engineering Institute of PLA， Hefei 230037, China

Received:2012-09-24 Revised:1900-01-01 Online:2013-02-06 Published:2013-02-06

摘要/Abstract

摘要：

为了克服WEP本身的弱点给无线网络安全带来的影响，WiFi联盟提出了WPA/WPA2安全方案。但在实际应用中，WPA/WPA2依然存在一些缺陷可被攻击者利用。特别是在预共享密钥（WPA/WPA2PSK）模式下，攻击者只要截获几个特定的无线数据包，就可以通过字典破解获取用户密码，严重威胁无线网络的安全性。通过分析字典破解的原理，提出一种基于对称密钥加密技术的WPA/WPA2PSK动态密钥协商过程改进方法，改进后的密钥协商过程能够避免用户密码遭受字典破解，增强了WPA/WPA2PSK模式的安全性。



关键词: 关键词：无线局域网, 字典破解, 密钥协商, 对称密钥

Abstract:

In order to overcome the vulnerability of WEP itself, WiFi Alliance puts forward WPA/WPA2 security solutions. But in actual applications, WPA/WPA2 still exist some defects which can be attacked. Especially in WPA/WPA2PSK mode, user passphrase can be acquired through the dictionary attack after capturing several specific wireless packets. Through the analysis of the dictionary attack principle, an improved method of dynamic key negotiation in WPA/WPA2PSK mode is developed. The improved method is based on symmetric key encryption technology and could avoid user passphrase suffering from dictionary attack. The improved method strengthens the safety of WPA/WPA2PSK mode.



Key words: Key words: WLAN, dictionary attack, key negotiation, symmetric key

吴一尘. WPA/WPA2PSK的安全性分析与改进[J]. 计算机与现代化, 2013, 1(1): 153-157.

WU Yichen. Security Analysis and Improvement of WPA/WPA2PSK[J]. Computer and Modernization, 2013, 1(1): 153-157.

[1]	谢婉娟. 基于多路密钥协商的物联网安全通信方法[J]. 计算机与现代化, 2015, 0(2): 86-.
[2]	李素娟. 基于ID口令认证的Ad Hoc网密钥协商协议[J]. 计算机与现代化, 2013, 1(9): 183-185.
[3]	李国朋;刘小琼. 基于无证书的两方认证密钥协商协议[J]. 计算机与现代化, 2011, 12(12): 13-16.