CAJ | 학술논문

万方数据

计算机工程与应用 계산궤공정여응용
COMPUTER ENGINEERING AND APPLICATIONS
2013年 21期 87-89,105 ,共4页

刘永磊%金志刚劉永磊%金誌剛

류영뢰%금지강

无线局域网%Wi-Fi受保护安装%暴力破解%着色Petri网%个人识别码%协议形式化分析無線跼域網%Wi-Fi受保護安裝%暴力破解%著色Petri網%箇人識彆碼%協議形式化分析
무선국역망%Wi-Fi수보호안장%폭력파해%착색Petri망%개인식별마%협의형식화분석
Wireless Local Area Network(WLAN)%Wi-Fi protected setup%brute force%colored Petri nets%personal identification number%protocol formal analysis

介绍了Wi-Fi联盟的WPS标准并给出了对应的攻击方法--暴力破解攻击，使用CPN对WPS协议及改进协议进行形式化分析并证明AP限制重新发起连接认证的次数为3次时，原协议可完全被攻破而给出的改进协议成功概率仅约为3/108。
개소료Wi-Fi련맹적WPS표준병급출료대응적공격방법--폭력파해공격，사용CPN대WPS협의급개진협의진행형식화분석병증명AP한제중신발기련접인증적차수위3차시，원협의가완전피공파이급출적개진협의성공개솔부약위3/108。
In this paper, an overview of Wi-Fi Protected Setup(WPS)is supplied. A brute force attack is pointed out. Using Colored Petri Nets(CPN), the WPS protocol and the improvement are modeled and it is proven that the security flaws exist and the brute force attack is available. Moreover, under setting retry times of connection authentication to be three times, the original protocol can be completely breached and the success breach probability of the improved protocol is only about 3/108.