针对临时密钥完整性协议(TKIP)潜在的安全缺陷,提出了一种新的可有效提高无线网络安全性的现场可编程门阵列(FPGA)的计数器模式和密码分组链接消息认证模式协议(CCMP)的设计方案.研究了CCMP的机密性原理,分析表明CCMP比TKIP提供了更为安全的保障.在已有的集中式无线局域网(WLAN)分离介质访问控制(MAC)架构下,给出了CCMP模块的实现方法和电路结构.分析比较了现有的4种高级加密标准(AES)实现方案的运行性能,测试结果表明该实现方案能提供更高的加密性能,提高了无线网络的机密性.%Concerning the potential security tlaws of Temporal Key Integrity Protocol (TKIP), a new scheme for implementing counter mode with cipher-block chaining with message authentication code protocol (CCMP) based on Field Programmable Gate Array (FPGA) was proposed. The circuit architecture of CCMP process was implemented based on the existing centralized Wireless Local Area Network (WLAN) split Medium Access Control (MAC) architecture. By comparing the performances of four different Advanced Encryption Standard (AES) implementations, the test results indicate that the proposed scheme can provide higher encryption performance and enhance wireless confidentiality.
展开▼