• Title/Summary/Keyword: IEEE 802.11x

Search Result 57, Processing Time 0.033 seconds

802.11b 기반의 무선랜 인증 및 보안 기술

  • 박애순;윤미영;김영진
    • Information and Communications Magazine
    • /
    • v.19 no.8
    • /
    • pp.114-127
    • /
    • 2002
  • 무선랜 기술은 사설망 내에서의 무선랜 기술을 기반으로 발전해 왔다. 최근 공중망을 기반으로 무선랜 기술이 발전하면서, IEEE 802.11b(1)에서 이루어지던 인증 및 보안 기술로는 안전성을 만족할 수 없게 되었고, 여기에 사용자의 이동성 보장은 필수사항으로 요구되고 있다. 본 논문에서는 지금까지 이루어지던 무선랜 인증 및 보안기술을 사용자의 이동성 보장을 위한 framework으로 발전시키기 위하여 필요한 인증 및 보안기술과, IEEE 802.11b 기반의 무선랜 망에서 필요한 향상된 인증 및 보안기술에 대하여 다양한 관점에서 기술한다. 802.11b 기반으로 이루어지는 보안 및 인증 기술을 보다 향상된 사용자 인증, 데이터 기밀성 향상을 위하여 802.1x(2)기반으로 실현하는 인증기술에 대하여 기술한다. 본 논문의 전개는 이동성을 요구하지 않는 경우의 기본적인 인증 메커니즘인 EAP-MD5(3)기반의 challenge/response 메커니즘과, 이동성을 필요로 하는 경우의 인증을 위한 MIP 인증 메커니즘(4-7)에 대하여 기술한다. 마지막으로 사용자의 증가 및 서비스 영역의 확대로 요구되는 새로운 framework에 대하여 기술한다.

Fast and Secure Handoff Mechanism for IEEE 802.11i System (IEEE 802.11i 환경에서 신속하고 보안성 있는 핸드오프 메커니즘)

  • Park, Jae-Sung;Lim, Yu-Jin
    • Journal of the Institute of Electronics Engineers of Korea TC
    • /
    • v.43 no.11 s.353
    • /
    • pp.159-167
    • /
    • 2006
  • IEEE 802.11i standard specifies full authentication and preauthentication for secure handoff in 802.11 wireless LAN (WLAN). However, the full authentication is too slow to provide seamless services for handoff users, and preauthentication may fail in highly populated WLAN where it is highly probable that the cache entry of a preauthenticated user is evicted by other users before handoff. In this paper, we propose a fast and secure handoff scheme by reducing authentication and key management delay in the handoff process. When a user handoffs, security context established between the user and the previous access point (AP) is forwarded from the previous AP to the current AP, and the session key is reused before the handoff session terminates. The freshness of session key is maintained by regenerating session keys after handoff session is terminated. The proposed scheme can achieve considerable reduction in handoff delay with providing the same security level as 802.1X authentication by letting an AP authenticate a handoff user before making an robust security network association (RSNA) with it.

Inter-AP Security Transition Mechanism and Its FSM in WLAN AP Supporting Fast Roaming (이동 무선랜 접속장치의 접속점 보안 천이 메커니즘과 유한상태머신)

  • Chung ByungHo;Kang You Sung;Oh KyungHee;Kim SangHa
    • The Journal of Korean Institute of Communications and Information Sciences
    • /
    • v.30 no.6C
    • /
    • pp.601-606
    • /
    • 2005
  • Recently with the high expectation of voice over WLAN service, to supped fast inter-AP security transition in WLAN AP is one of the most actively investigating issues. It is also very important to minimize inter-AP security transition latency, while maintaining constantly the secure association from old AP when a station transits to new AP. Hence, this paper first defines secure transition latency as a primary performance metric of AP system in WLAN supporting IEEE802.11i, 802.1x, and 802.11f, and then presents low latency inter-AP security transition mechanism and its security FSM whose objective is to minimize inter-AP transition latency. Experiment shows that the proposed scheme outperforms the legacy 802.1X AP up to $79\%$ with regard to the transition latency.

A study on the Analysis of Radio Characteristics about Communication Mode in a Road (공용도로에서의 통신방식에 대한 전파특성 분석 연구)

  • Choi, Gi-Do;Lim, Ki-Taek;Cho, Hyung-Rae
    • The Journal of The Korea Institute of Intelligent Transport Systems
    • /
    • v.15 no.1
    • /
    • pp.95-101
    • /
    • 2016
  • Vehicular communications is system which can be applied for transmission of various safety messages or Intelligent Transportation Systems(ITS) applications by combining vehicle/road technology with Information and Communication Technology(ICT). In recent years, a variety of ITS services are available such as driving information, road conditions, V2X messages as well as navigation and traffic jams notification. In general, vehicular communications can be used for vehicle-to-vehicle and vehicle-to-infrastructure communication by adopting IEEE802.11p/1609 standard which is commonly known as wireless access in vehicular environments. In this paper, WAVE communication standard based on the IEEE802.11p is explained and signal characteristics in WAVE communication is introduced. Also, The H/W and S/W characteristics in Road Side Station and On Board Equipment for the Vehicle to Everything communication are analyzed. Received Signal Strength which is power of receiving signal of communication equipment is measured in test road to estimate the real WAVE communication's performance. It is shown that the implemented WAVE communication technology is satisfactory to provide ITS services.

An Improvement of Performance for Data Downstream in IEEE 802.11x Wireless LAN Networks (IEEE 802.11x 무선 랜에서의 데이터 다운스트림 성능 향상)

  • Kim, Ji-Hong;Kim, Yong-Hyun;Hong, Youn-Sik
    • Journal of the Institute of Electronics Engineers of Korea TC
    • /
    • v.43 no.11 s.353
    • /
    • pp.149-158
    • /
    • 2006
  • We proposed a method for improving a performance of TCP downstream between a desktop PC as a fixed host and a PDA as a mobile host in a wired and wireless network based on IEEE 802.11x wireless LAN. With data transmission between these heterogeneous terminals a receiving time during downstream is slower than that during upstream by 20% at maximum. The reason is that their congestion window size will be oscillated due to a significantly lower packet processing rate at receiver compared to a packet sending rate at sender. Thus it will cause to increase the number of control packets to negotiate their window size. To mitigate these allergies, we proposed two distinct methods. First, by increasing a buffer size of a PDA at application layer an internal processing speed of a socket receive buffer of TCP becomes faster and then the window size is more stable. However, a file access time in a PDA is kept nearly constant as the buffer size increases. With the buffer size of 32,768bytes the receiving time is faster by 32% than with that of 512bytes. Second, a delay between packets to be transmitted at sender should be given. With an inter-packet delay of 5ms at sender a resulting receiving time is faster by 7% than without such a delay.

An interleaver design of low latency for IEEE 802.11a Wireless LAN (IEEE 802.11a 무선 랜에 적용할 Low Latency 인터리버 설계)

  • Shin, Bo-Young;Lee, Jong-Hoon;Park, June;Won, Dong-Youn;Song, Sang-Seob
    • Proceedings of the IEEK Conference
    • /
    • 2003.11c
    • /
    • pp.200-203
    • /
    • 2003
  • By minimizing the burst error of data and correcting the error, we can define the convolution coding and interleaving in IEEE 802.11a wireless tan system. Two step block interleaver was decided by coded bits per OFDM symbol and due to this it comes to the delay time in IEEE 802.11a. This is the point of the question which we must consider. We try to decrease the delay time by all 48-clock from interleavings, and we have proposed a way carried out the interleaving outputs per symbol. So in comparison with the existing interleaver, we can decrease the delay time in reading and writing data, as well as reduce the delay time of bit re-ordering per symbol. Also this scheme is apply in all x-QAM cases.

  • PDF

A Ticket-based Authentication mechanism Suitable for Efficient Handoff in the Centralized WLAN Environment (중앙집중식 무선랜 환경에서의 효율적인 핸드오프를 지원하는 티켓 기반의 인증 메커니즘)

  • Woo, Byung-Duk;Park, Chang-Seop
    • Annual Conference of KIPS
    • /
    • 2009.11a
    • /
    • pp.683-684
    • /
    • 2009
  • 최근 IEEE 802.11n 표준의 상용화와 함께 무선랜 환경에서 실시간 멀티미디어 서비스를 이용하려는 수요가 증가하고 있다. 그러나 IEEE 802.11i 보안표준에서 정의한 IEEE 802.1x 인증과정은 끊김 없는 실시간 멀티미디어 서비스를 제공하기에는 핸드오프 지연시간이 너무 길다. 본 논문은 Ticket이라는 새로운 인증 기법을 도입하여 고속의 로밍을 지원하는 핸드오프 메커니즘을 소개한다.

무선랜 환경에서의 PKI 구축

  • 이종후;서인석;윤혁중;류재철
    • Review of KIISC
    • /
    • v.13 no.1
    • /
    • pp.77-91
    • /
    • 2003
  • 무선랜에서의 보안문제는 크게 두가지 측면에서 지적할 수 있는데, 첫 번째는 승인된 사용자에게만 접속을 허용하는 접속에 관한 보안이며, 다른 하나는 스니퍼 등을 이용해 무선랜을 통해 전송되는 내용 자체를 몰래 보는 도청 행위를 방어할 수 있는 보안이다. 특히 유선 네트워크와 달리 무선랜에서는 AP(Access Point)만 설치되어 있는 곳이면 누구나 쉽게 AP를 통해 네트워크를 이용할 수 있다. 이에 따라 무선랜에서 보다 중요성이 강조되는 보안문제는 접속에 관한 보안, 즉 사용자 인증이라고 할 수 있다. 그러나 무선랜 표준인 IEEE802.11b에서의 인증은 사용자 인증이 아닌 디바이스 인증에 머물고 있는 실정이며, 이 또한 매우 취약하다. 이에 따라 IEEE802.1x가 강력한 사용자 인증을 제공할 수 있는 메커니즘으로 개발되었다. IEEE802.1x에서는 EAP-TLS, LEAP, PEAP 등의 다양한 사용자 인증 메커니즘의 사용이 가능하다. 이러한 사용자 인증메커니즘은 모두 공개키 암호기술을 이용하고 있어 무선랜 환경에서의 PKI 구축이 요구된다. 본 고에서는 무선랜에서의 사용자 인증 메커니즘에 대해서 알아보고, 유선 네트워크와는 다른 특성을 갖는 무선랜 환경에서 PKI 구축시 고려해야 할 사항들에 대해서 분석하였다.

A Unified Time-domain Channel Estimator for OFDM based Ubiquitous Broadband Access (OFDM 기반의 유비쿼터스 광대역 접속을 위한 단일화 시간영역 채널 추정기)

  • Seo, Jeong-Wook;Kwak, Jae-Min;Kim, Dong-Ku
    • Journal of the Institute of Electronics Engineers of Korea TC
    • /
    • v.47 no.1
    • /
    • pp.19-24
    • /
    • 2010
  • This paper proposes a unified time-domain channel estimator (UTD-CE) for ubiquitous wireless broadband access based on orthogonal frequency division multiplexing (OFDM) systems. As a part of a software radio platform for ubiquitous services, the proposed UTD-CE can be exploited with the simply changeable parameters, pilot symbols and pilot subcarriers allocation, which are usually different according to the system specifications such as IEEE802.11x WiFI, IEEE802.16x WiMAX, DMB, Media FLO, DVB-H, etc. Given the pilot information, the channel frequency responses (CFRs) of data subcarriers will be analogously estimated by Wiener filtering and discrete Fourier transform (DFT)-based interpolation in the UTD-CE. Simulation results indicate that the proposed method significantly outperforms the conventional time-domain channel estimator when the pilot information is changed.

Analysis of V2V Broadcast Performance Limit for WAVE Communication Systems Using Two-Ray Path Loss Model

  • Song, Yoo-Seung;Choi, Hyun-Kyun
    • ETRI Journal
    • /
    • v.39 no.2
    • /
    • pp.213-221
    • /
    • 2017
  • The advent of wireless access in vehicular environments (WAVE) technology has improved the intelligence of transportation systems and enabled generic traffic problems to be solved automatically. Based on the IEEE 802.11p standard for vehicle-to-anything (V2X) communications, WAVE provides wireless links with latencies less than 100 ms to vehicles operating at speeds up to 200 km/h. To date, most research has been based on field test results. In contrast, this paper presents a numerical analysis of the V2X broadcast throughput limit using a path loss model. First, the maximum throughput and minimum delay limit were obtained from the MAC frame format of IEEE 802.11p. Second, the packet error probability was derived for additive white Gaussian noise and fading channel conditions. Finally, the maximum throughput limit of the system was derived from the packet error rate using a two-ray path loss model for a typical highway topology. The throughput was analyzed for each data rate, which allowed the performance at the different data rates to be compared. The analysis method can be easily applied to different topologies by substituting an appropriate target path loss model.