针对WLAN Mesh网络节点漫游接人过程中现有协议的不足,通过利用EMSA (efficient mesh security association)初始认证过程中所建立的安全链路和消息认证码技术,并引入修改后的DH( Diffie Hellman)密钥交换过程,提出了一种能有效满足漫游接人性能和安全性需求的接人认证协议.该协议不仅具有基本的SK(session key,会话密钥)安全属性,还具有较小的接人时延,能够适应Mesh网络拓扑变化的特性,在完成双向接人认证过程的同时,完成了密钥的生成,并能较好地隐藏终端节点的身份信息.%The currently protocols about WLAN mesh network node have some deficiency in roaming access process. Based on the security links which was established by EMSA initial authentication process and the message authentication code technology, the improved DH key exchange process is introduced. A new access authentication protocol which can effectively conform to the performance and security in roaming access process is proposed. The proposed protocol not only has the basic SK security, but also has a smaller delay. Moreover, the protocol is suitable to the mesh networks with the characteristic of topology change. The finished mutual access authentication process also complete the key generation, and the protocol can better hide the IDinformation of the terminal node.
展开▼