無線網狀網路環境提供合法用戶直接透過任何一個鄰近的網狀路由器或是透過已經鏈結網狀路由器的其他合法用戶連結網際網路以達到其便利性之目標。因此如何確保唯有合法的用戶才能藉由網狀路由器或已經鏈結網狀路由器的合法用戶連上網際網路及如何鑑別與用戶通訊的網狀路由器及已經鏈結網狀路由器的合法用戶是否合法?變成是整個無線網狀網路必須解決的重要問題之一。本論文規劃研發適合無線網狀網路環境的相互鑑別機制。同時,我們的技術使用戶與網狀路由器或中介用戶之間建立一把會議金鑰用來保護傳送的資料。我們進一步注意到隱藏用戶的目前位置、行蹤與真實身份以保障用戶的隱私。另外,也考慮用戶於不同無線網狀網路中的漫遊議題以提昇其便利性。 One of the important functions in wireless mesh networks is that any legitimate client can connect to Internet by either any nearby mesh router or other legitimate client who has linked some mesh router. An obvious problem of this function is how to ensure that only legitimate client can connect to Internet by either any mesh router or other legitimate client who has linked some mesh router and how to prove legitimacy of a mesh router and a client who has linked some mesh router. This paper proposes mutual authentication scheme which is suitable for wireless mesh network. At the same time, we set up a session key between a client and a mesh router or between a client and an intermediary client to protect transmitted data. We further pay attention to hide location, track, and identity of clients to protect privacy of clients. Moreover, we also consider roaming issues for clients in different wireless mesh networks.