Title :
Security analysis on Chinese wireless LAN standard and its solution
Author :
Zhang, Fan ; Ma, Jianfeng
Author_Institution :
Dept. of Comput., Xidian Univ., Xi´´an, China
Abstract :
China has established its national standard for Wireless LAN, called GB15629.11-2003, in which, WLAN Authentication and Privacy Infrastructure (WAP1) was proposed. However, WAP1 can be proved insecure with the Canetti-Krawczyk model. Further analysis shows that in the standard there are also other vulnerabilities, such as inability to provide identity protection and resist key consistency attack, lack of private key verification and desirable security attributes like perfect forward secrecy, key control, etc. Therefore, a new protocol is proposed to fix the security problems of WAP1, especially those in the authentication and key agreement procedure. This protocol is designed and analyzed with a modular methodology and proved secure with the Canetti-Krawczyk model, thus it can guarantee the desirable security attributes. In addition, the presented protocol has a better performance than WAP1 in computational overhead and can also be applied to IEEE 802.11i as an authenticated key agreement protocol.
Keywords :
IEEE standards; cryptography; data privacy; message authentication; protocols; telecommunication standards; wireless LAN; Canetti-Krawczyk model; Chinese wireless LAN standard; GB15629.11-2003; IEEE 802.11i; WAP1; WLAN Authentication and Privacy Infrastructure; authenticated key agreement protocol; forward secrecy; identity protection; key consistency attack; key control; private key verification; security analysis; Authentication; Communication system security; Data security; Educational programs; National security; Privacy; Protection; Protocols; Resists; Wireless LAN;
Conference_Titel :
Parallel Processing, 2005. ICPP 2005 Workshops. International Conference Workshops on
Print_ISBN :
0-7695-2381-1
DOI :
10.1109/ICPPW.2005.79
