北京交通大学学报(自然科学版)
北京交通大學學報(自然科學版)
북경교통대학학보(자연과학판)
JOURNAL OF NORTHERN JIAOTONG UNIVERSITY
2009年
2期
73-81
,共9页
无线局域网%低时延切换%两级认证%临时身份
無線跼域網%低時延切換%兩級認證%臨時身份
무선국역망%저시연절환%량급인증%림시신빈
wireless local area networks%low latency handoff%two-stage authentication%temporary certificate
IEEE 802.11无线局域网已得到了广泛的部署.在无线局域网中,终端移动时经常发生切换,需要进行安全认证,这导致较长的处理时延,降低了服务质量.目前的认证方法,如AAA和IEEE 802.1x,不能支持低时延切换.本文提出了一种两级认证方法,移动终端在快速切换协议中可以执行认证.在漫游到新域之前从目标接入点获取一个临时身份,通过使用该临时身份继续认证快速接入.移动终端在短时间内必须执行再认证,以便完成正常的认证过程,否则,认证接入将被终止.仿真结果表明,本文提出的两级认证方法在切换过程中显著地减少了切换时延和丢包率.
IEEE 802.11無線跼域網已得到瞭廣汎的部署.在無線跼域網中,終耑移動時經常髮生切換,需要進行安全認證,這導緻較長的處理時延,降低瞭服務質量.目前的認證方法,如AAA和IEEE 802.1x,不能支持低時延切換.本文提齣瞭一種兩級認證方法,移動終耑在快速切換協議中可以執行認證.在漫遊到新域之前從目標接入點穫取一箇臨時身份,通過使用該臨時身份繼續認證快速接入.移動終耑在短時間內必鬚執行再認證,以便完成正常的認證過程,否則,認證接入將被終止.倣真結果錶明,本文提齣的兩級認證方法在切換過程中顯著地減少瞭切換時延和丟包率.
IEEE 802.11무선국역망이득도료엄범적부서.재무선국역망중,종단이동시경상발생절환,수요진행안전인증,저도치교장적처리시연,강저료복무질량.목전적인증방법,여AAA화IEEE 802.1x,불능지지저시연절환.본문제출료일충량급인증방법,이동종단재쾌속절환협의중가이집행인증.재만유도신역지전종목표접입점획취일개림시신빈,통과사용해림시신빈계속인증쾌속접입.이동종단재단시간내필수집행재인증,이편완성정상적인증과정,부칙,인증접입장피종지.방진결과표명,본문제출적량급인증방법재절환과정중현저지감소료절환시연화주포솔.
IEEE 802.11 WLANs are widely deployed nowadays. While a mobile device is moving around, it may need to do handoff that usually requires authentication, this results in long processing delay and leads to degradation of quality of services provisioned to the mobile device. Existing authentication methods such as AAA and IEEE 802.1x mechanisms are unable to accommodate low-latency handoff. In this work, we propose a two-stage authentication approach that allows a mobile device to perform authentication through fast handover protocol and obtain a temporary certificate from the targeted access point before roaming to the new domain, so that it can resume the authorized access quickly by using the temporary certificate. The mobile device must perform re-authentication to complete the normal authentication process within a short period; otherwise its authorized access will be terminated. Simulation results show that our two-stage authentication approach significantly reduces the handoff latency and packet loss during the handoff process.
