Zobacz poprzedni temat :: Zobacz następny temat |
Autor |
Wiadomość |
tomoyq60
Zwiastujący Szatana
Dołączył: 18 Lis 2010
Posty: 206
Przeczytał: 0 tematów
Ostrzeżeń: 0/5 Skąd: England
|
Wysłany: Czw 16:27, 16 Gru 2010 Temat postu: a lot of popularity in the domestic terminal WAPI |
|
|
WAPI and 802.11i authentication is a contrast to what makes the difference is really small, core algorithm is different. And
It is expected that future terminals, especially mobile telecommunication terminal unit of EVDO, network cards and other equipment, will gradually from the WAPI compatible with the Wifi on the gradual transition to WAPI. This strategy is sensible, because the existing wifi network is a large-scale swing, Shanghai, Beijing, Zhejiang and other provinces have been completed by the end of 2008 25,000 wifi hotspots coverage,[link widoczny dla zalogowanych], and the user is a normal wifi device in use Internet. So at least now, compatible with this road is correct.
a later stage, based on WAPI,[link widoczny dla zalogowanych], when the terminal is catching on, they might come to a country across the board, all Centrino, Blackberry, iPhone then are finished, brush on the WAPI home sold in China again! So then there are two
2, a lot of popularity in the domestic terminal WAPI, taking advantage of 3G terminal when the hot depth of this technology to each 3G user, switch 802.11i to WAPI is straightforward.
So what is it? This is actually a homegrown wifi authentication protocol, using a more advanced algorithm, security, \Why is it said? Because the fundamental purpose of national implementation of WAPI is to protect data from being stolen in other countries. WPA IEEE established the United States, in some ways, if the IEEE \Ministry of Industry would think so I feel quite normal,[link widoczny dla zalogowanych], after all,[link widoczny dla zalogowanych], while back in Europe, Huawei's equipment has also been suspected of a country is suspected of stealing the secrets about her.
1, in foreign countries, universal WAPI, went abroad to promote the encryption technology to Intel, Cisco and other manufacturers recognized the encryption technology in the existing wifi add WAPI support;
wrote here have suddenly realized why the talks had been unsuccessful CDMA2000 + wifi, and it was states 'acquiescence' of it? There had so many gimmicks in, ha ha. I hope you can see after a few years in China is also strong with the wifi was a strong supporter of our fans this WLAN. Wifi after all the hardships experienced so many have today, to be China's operators are \
welcome to discuss, there are discussions, there is progress!
????????
????????????
????????
???????????? two-way authentication (AP and MT AS achieved through mutual authentication)
???????????? one and two differential (MT and Radius between), MT is not able to identify the legality of AP
????????
????????
???????????? Identification
???????????? identification process is simple; credentials as a public key digital certificate; wireless users and wireless access point position on the other, not only wireless access point access control, but also to ensure the security of the wireless user access; customers side support multiple certificate, user multiple use to assure the roaming
???????????? identification process more complicated; user is usually the user name and password; AP backend Radius server to authenticate the user;
????????
????????
???????????? identify objects
???????????? user
???????????? user
????????
????????
???????????? Key Management
????????????Complete Works of (AS unified management of the LAN)
???????????? AP and the Radius server shared key to be set manually; AP and MT are defined between the only certification system structure, different vendors may not be compatible with the specific design; the high cost of achieving compatibility
????????
????????
???????????? algorithm
???????????? 192 位 elliptic curve algorithm (ECC192)
???????????? specific agreements with the relevant
????????
????????
???????????? security vulnerability
???????????? not identified
???????????? user credentials simple, easily stolen, and any use after being stolen;: shared key management security risk
????????
????????
????????????<td rowspan=\ key
???????????? dynamic (based on users,[link widoczny dla zalogowanych], based on the identification, communication of dynamic updates)
???????????? dynamic
????????
????????
???????????? algorithm
???????????? State secret encryption algorithm approved by the Office (SMS4)
???????????? 128 bit AES and 128 bit RC4
????????
????
The table above
WAPI
Therefore, the existing wifi device, so that telecommunications and wifi compatible so-called WAPI is a difficult thing. Communications Weekly has said, WAPI has been in the 2008 Beijing Olympic Games to deploy large-scale demonstration projects, and won a score of zero failure rate. It is understood that the latest WAPI wireless modules for mobile phones can support WAPI / WAPI + WiFi / WAPI + WiFi + Bluetooth and other functions.
as WAPI and other WiFi WLAN technology is the same as the physical layer, MAC layer protocol and is not the same, it is easy to support in the same two standard WLAN chip.
because I used to stay in this term only heard of the stage, then checked on the net specifically to find information. As we all know, usually our routers, network cards have a lot of encryption, WEP, WAP, WPA2-PSK, etc., then go there AES, TKIP bunch of jerky term. In fact, these we can not care, because in addition to WEP, the other by the IEEE 802.11i encryption standard is required, the agreement is to enhance the development of wifi network security performance, the introduction of higher security WPA encryption, combined with the industry AES and other popular encryption algorithms. Every time we connect to the router, if the router uses WPA encryption, the client and AP has a range of certification process.
Post został pochwalony 0 razy
|
|
Powrót do góry |
|
|
|
|
|
|
Nie możesz pisać nowych tematów Nie możesz odpowiadać w tematach Nie możesz zmieniać swoich postów Nie możesz usuwać swoich postów Nie możesz głosować w ankietach
|
|