淡江大學機構典藏:Item 987654321/35890
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 64178/96951 (66%)
Visitors : 9305129      Online Users : 231
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library & TKU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
    •  Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: https://tkuir.lib.tku.edu.tw/dspace/handle/987654321/35890


    Title: 無線網路跨網認證機制可行模式之研究
    Other Titles: A research of affordable models on authentication mechanism for inter-WLAN
    Authors: 徐正宗;Hsu, Tseng-chung
    Contributors: 淡江大學電機工程學系碩士班
    李維聰;Lee, Wei-tsong
    Keywords: 無線區域網路;認證;802.1x;WLAN;Roaming Authentication;IEEE 802.1x
    Date: 2005
    Issue Date: 2010-01-11 07:16:51 (UTC+8)
    Abstract: 1. 研究目的:本論文將提出結合802.1x驗證和WLAN加密技術以解決目前無線網路目前所面臨的安全問題:a. 憑證服務:使用公開金鑰憑證來驗證WLAN中的使用者和電腦。b. PEAP和密碼保護:使用簡單的使用者名稱和密碼。本論文所提出的兩種方式其基本架構,主要是使用Microsoft公司的Windows Server 2003做為安全認證平台,並使用執行Microsoft Windows XP和Microsoft Pocket PC的用戶端電腦模擬無線網路用戶。2. 研究內容:本論文實驗架構是以IEEE 802.1x標準為基礎,搭配使用遠端驗證撥號使用者服務(RADIUS)和公開金鑰基礎結構(PKI)所建構的,可應用於有數千名無線網路使用者的無線區域網路,而RADIUS和PKI架構在設計之初即考慮到其他網路應用,如:遠端存取和加密檔案系統的使用。最後本論文亦提供解決跨網路漫遊時不同認證方式的問題。3. 研究結果:本論文提出的改善安全方式是使用「可延伸的驗證通訊協定–傳輸層安全性(EAP-TLS)」通訊協定以802.1x無線網路硬體搭配遠端驗證撥號使用者服務(RADIUS)驗證及公開金鑰基礎結構(PKI)為基礎,增強無線網路通訊安全性的問題,以實體的模擬網路來驗證並得到令人滿意的結果:例如在無線用戶端、無線存取點(AP)及RADIUS伺服器三者之間的相互驗證,以決定無線網路的授權問題與存取控制,並以加密金鑰的安全管理來加強無線網路流量的加密機制。本論文最後並提出以MSA、IAOS的觀念,企圖用來改善因使用不同的認證方式導致後端RADIUS Server認證格式不相容的問題。
    In this paper, we proposed an advanced security solution for 802.11 based on 802.1x wireless authentication with EAP-TLS protocol, we built a trial network to test and verify our improvement & advantages of our theory. Furthermore, we provide an affordable model of “Multi-stack Authentication, MSA” to solve the variety authentication standards, which implemented in popular wireless networks. It brings a new concept of “Integrated Authentication Operation System, IAOS”, which allows the parts upon the authentication process into individual integral part. It benefits the WLAN service provider to build their WLAN economically and efficiency.
    Appears in Collections:[Graduate Institute & Department of Electrical Engineering] Thesis

    Files in This Item:

    File SizeFormat
    0KbUnknown301View/Open

    All items in 機構典藏 are protected by copyright, with all rights reserved.

    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library & TKU Library IR teams. Copyright ©   - Feedback