基于802.11i的四次握手协议的攻击

首先介绍无线局域网的新一代安全标准IEEE 802.11i,并详细阐述四次握手协议。结合实际情况,指出四次握手协议的缺陷及其可能带来的攻击,并描述IEEE 802.11i建议的方案,及其局限性和仍然存在的攻击。最后提出TPTK随机丢弃队列、消息1身份认证的解决方案。     

基于802.11i四次握手协议的攻击分析与改进

回顾与分析了无线局域网的新一代安全标准IEEE 802.11i与四次握手协议。结合对实际协议的分析，指出四次握手协议的缺陷及可能带来的攻击，针对802.11i建议的方案及其局限性和仍然可能存在的攻击，提出了TPTK随机丢弃队列、消息1身份认证的改进设计，并对改进设计进行了验证与分析。     

基于显式阻塞通知的自组织网络MAC协议

IEEE802.11 DCF协议利用RTS/CTS握手机制解决无线网络中重要的隐终端问题.但是该协议并不能解决所有的隐终端问题,如隐接收终端问题.本文提出一种显式阻塞通知（Explicit Blocking Notification,EBN）机制的握手协议来解决无线自组织网络中的隐接收终端问题.通过采用RTS/CTS/BN/DATA/ACK握手序列来提前通知邻居节点隐终端的当前状态,避免邻居节点盲目的分组传输.仿真结果显示,EBN机制可以获得比IEEE802.11 DCF协议更加稳定的流量,同时节约带宽资源,减小分组延迟.     

IEEE 802.11i 协议的形式化分析

Furqan提出运用串空间理论对IEEE 802.11i协议进行形式化验证的基础上,对IEEE 802.11i 协议的串空间模型进行了改进,并证明了Furqan没有证明的保密性以及服务器的认证性。分析结果证明,在目前的攻击者模型中,IEEE 802.11i 协议是安全的。     

IEEE802.11i中四次握手过程的安全分析和改进

对IEEE802.11i协议中四次握手过程的临时会话密钥的协商和建立过程中的安全性进行了分析，发现在四次握手过程中存在安全隐患，并因此可能受到DoS(拒绝服务)攻击。在此基础上提出了一种改进方法，使四次握手过程的安全性得到进一步增强。     

802.11i的认证安全性分析

IEEE设计802.11i协议解决无线局域网的安全问题.802.11i协议的形式化分析,对于确保该协议的正确性至关重要.利用串空间理论对802.11i协议进行建模,在串空间模型中验证协议的认证属性.结果表明,802.11i协议能够安全实现它的认证功能.     

IEEE802.11i安全机制分析与实现

研究了IEEE802.11i协议的安全机制,对IEEE802.11i强安全网络连接的安全性进行了分析,并在实际网络平台中对其进行实现与验证。     

802.11i中的四次握手协议安全性分析及改进

分析了IEEE802.11i标准中四次握手协议容易受到DoS攻击的原因,提出了两种改进方案,并对其安全性进行了分析,分析结果表明,这两种方案通过改变密钥的产生和分发过程能够有效地阻止DoS攻击。     

基于802.11i的无线局域网安全加密技术研究

为了提高无线局域网的安全性,解决传统安全机制WEP协议中所存在的缺陷,给出了一种基于IEEE802.11i的无线局域网安全模型.在分析了IEEE802.11i协议的体系结构和安全机制的基础上,对IEEE802.11i的数据加密技术进行了剖析,详细分析了TKIP和CCMP协议的加解密过程和安全性能,结果表明,TKIP的安全性能仍有局限性,只是一种过渡方案,而CCMP才是健壮的数据保密协议.     

WLAN主要安全标准的演化与改进

无线网络因其连接方便又灵活已经非常普及了,但是无线网络的安全性一直是一个突出问题。IEEE和Wi—Fi先后出台了相应的标准和协议来保证无线网络的安全性,包括国际上通用的IEEE802．11标准,WPA,IEEE802．11i（WPA2）,并用密码技术在其演化过程中做了很多改进,提高了WLAN的安全性。     

无线自组织网络中TCP稳定性的分析及改进

在无线自组织网络中,基于IEEE 802.11的TCP流存在严重的不稳定性,其原因与MAC协议、路由协议和TCP本身均有一定的关系,但最根本之处在于MAC协议的不公平性以及假的链路失效消息导致了不必要的耗时的路由发现过程.结合IEEE802.11的MAC协议和DSR路由协议,对这些原因进行了深入的理论分析和仿真实验,并提出了针对MAC协议和路由协议的改进算法.仿真结果证明,提出的改进算法不仅能基本上避免TCP流的不稳定性,还能够极大地提高TCP流的平均吞吐量.     

Evaluating transport protocol performance over a wireless mesh backbone

IEEE 802.11n wireless physical layer technology increases the deployment of high throughput wireless indoor mesh backbones for ubiquitous Internet connectivity at the urban and metropolitan areas. Most of the network traffic flows in today’s Internet use ‘Transmission Control Protocol’ (TCP) as the transport layer protocol. There has been extensive works that deal with TCP issues over wireless mesh networks as well as noisy wireless channels. Further, IEEE 802.11n is well known for its susceptibility to increased channel losses during high data rate communication. This paper investigates the dynamics of an end-to-end transport layer protocol like TCP in the presence of burst and correlated losses during IEEE 802.11n high data rate communication, while maintaining fairness among all the end-to-end flows. For this purpose, we evaluate four TCP variants-Loss Tolerant TCP (LT-TCP), Network Coded TCP (TCP/NC), TCP-Horizon and Wireless Control Protocol (WCP), where the first two protocols are known to perform very well in extreme lossy networks, and the last two are specifically designed for mesh networks. Our evaluation shows that WCP performs better in a IEEE 802.11n supported mesh networks compared to other three variants. However, WCP also results in negative impact at high data rates, where end-to-end goodput drops with the increase in physical data rate. The analysis of the results reveals that explicit loss notifications and flow balancing are not sufficient to improve transport protocol performance in an IEEE 802.11n supported mesh backbone, rather a specific mechanism is required to synchronize the transport queue management with lower layer scheduling that depends on IEEE 802.11n features, like channel bonding and frame aggregation. The findings of this paper give the direction to design a new transport protocol that can utilize the full capacity of IEEE 802.11n mesh backbone.     

Runtime optimization of IEEE 802.11 wireless LANs performance

IEEE 802.11 is the standard for wireless local area networks (WLANs) promoted by the Institute of Electrical and Electronics Engineers. Wireless technologies in the LAN environment are becoming increasingly important and the IEEE 802.11 is the most mature technology to date. Previous works have pointed out that the standard protocol can be very inefficient and that an appropriate tuning of its congestion control mechanism (i.e., the backoff algorithm) can drive the IEEE 802.11 protocol close to its optimal behavior. To perform this tuning, a station must have exact knowledge of the network contention level; unfortunately, in a real case, a station cannot have exact knowledge of the network contention level (i.e., number of active stations and length of the message transmitted on the channel), but it, at most, can estimate it. We present and evaluate a distributed mechanism for contention control in IEEE 802.11 wireless LANs. Our mechanism, named asymptotically optimal backoff (AOB), dynamically adapts the backoff window size to the current network contention level and guarantees that an IEEE 802.11 WLAN asymptotically achieves its optimal channel utilization. The AOB mechanism measures the network contention level by using two simple estimates: the slot utilization and the average size of transmitted frames. These estimates are simple and can be obtained by exploiting information that is already available in the standard protocol. AOB can be used to extend the standard 802.11 access mechanism without requiring any additional hardware. The performance of the IEEE 802.11 protocol, with and without the AOB mechanism, is investigated through simulation. Simulation results indicate that our mechanism is very effective, robust, and has traffic differentiation potentialities.     

Revealing the problems with 802.11 medium access control protocol in multi-hop wireless ad hoc networks

The IEEE 802.11 medium access control (MAC) protocol is a standard for wireless LANs, it is also widely used in almost all test beds and simulations for the research in wireless mobile multi-hop ad hoc networks. However, this protocol was not designed for multi-hop networks. Although it can support some ad hoc network architecture, it is not intended to support the wireless mobile ad hoc network, in which multi-hop connectivity is one of the most prominent features. In this paper, we focus on the following question: can IEEE 802.11 MAC protocol function well in multi-hop networks? By presenting several serious problems encountered in transmission control protocol (TCP) connections in an IEEE 802.11 based multi-hop network, we show that the current TCP protocol does not work well above the current 802.11 MAC layer. The relevant problems include the TCP instability problem found in this kind of network, the severe unfairness problem, and the incompatibility problem. We illustrate that all these problems are rooted in the MAC layer. Furthermore, by revealing the in-depth cause of these problems, we conclude that the current version of this wireless LAN protocol does not function well in multi-hop ad hoc networks. We thus doubt whether the current WaveLAN based system is workable as a mobile multi-hop ad hoc test bed. All the results shown in this paper are based on NS2 simulations, and are compatible with the results from the OPNET simulations.     

Design and evaluation of a novel MAC layer handoff protocol for IEEE 802.11 wireless networks

In recent years, the IEEE 802.11 wireless network family has become one of the most important set of standards in the wireless communications industry. IEEE 802.11 compliant devices are inexpensive and easier to configure and deploy than other wireless technologies. In an IEEE 802.11 wireless network, wireless terminals can move freely. As a result, when the wireless terminal moves away from its current access point, it must switch to another access point to maintain the active connection. This is known as the MAC layer handoff process. MAC layer handoff latency should be minimized to support real-time applications and to provide mobile devices with seamless roaming in IEEE 802.11 wireless networks. This paper proposes a novel MAC layer handoff protocol over IEEE 802.11 wireless networks by introducing advertisement messages sent from other mobile nodes and from which wireless terminals are able to receive the information of access points in their neighborhood. A mobile node can try to associate with access points based on the prediction before starting the probe process. The experimental results demonstrate that our solution can reduce MAC layer handoff latency to meet the requirements of real-time applications.     

A Wireless LAN under High Load and in Noise: Throughput Evaluation

IEEE 802.11 specifies a network technology for wireless local area networks (LANs) and mobile user connections. The fundamental access mechanism in the IEEE 802.11 MAC protocol is the Distributed Coordination Function (DCF). The throughput of LANs with the DCF mechanism under high load and in noise is evaluated by an analytical method, which ensures high estimation accuracy for any values of protocol parameters and bit error rates.     

引入移动IP技术的WLAN安全漫游解决方案

给出了一种将移动IP技术融入无线局域网的方案，该方案基于IEEE802.11协议，采用了专为移动网络设计的Diamcter Mobile IP应用协议来实现认证，授权和计费管理，在实现了跨不同管理区域的漫游功能的同时，提供了相互认证以及数据的完整性和保密性，同时尽量少影响现有的IEEE802.11系统。     

Dynamic adaptation of CSMA/CA MAC protocol for wide area wireless mesh networks

Though the popular IEEE 802.11 DCF is designed primarily for Wireless LAN (WLAN) environments, today it is being widely used for wide area wireless mesh networking. The protocol parameters of IEEE 802.11 such as timeout values, interframe spaces, and slot durations, sufficient for a general WLAN environment, need to be modified in order to efficiently operate in wide area wireless mesh networks. The current wide area wireless mesh network deployments use manual configuration of these parameters to the upper limit which essentially makes the networks operate at lower system efficiency. In this paper, we propose d802.11 (dynamic 802.11) which dynamically adapts the protocol parameters in order to operate at varying link distances. In fact, in 802.11, a transmitter can face ACK/CTS timeout even when it started receiving ACK/CTS packet before the timeout value. We present three strategies, (i) multiplicative timer backoff (MTB), (ii) additive timer backoff (ATB), and (iii) link RTT memoization (LRM), to adapt the ACK_TIMEOUT in d802.11 in order to provide better adaptation for varying link dimensions. Through extensive simulation experiments we observed significant performance improvement for the proposed strategies. We also theoretically modeled the maximum link throughput as a function of the link dimension for the proposed system. Our results show that the LRM technique provides the best adaptation compared to all other schemes.