摘要
在分析WAP协议族中的无线传输层(WTLS)协议后,指出了其中的匿名认证过程存在中间人攻击的风险。本文将Kerberos认证系统加入到WTLS协议中改进了WTLS协议的安全性,详细设计了该解决方案中涉及的数据结构,并给出了一个该方案的仿真模型,讨论了仿真参数的合理设置。
Analysis of the WAP protocol suite of the Wireless Transport Layer Security (WTLS) agreement, reveals that the certification process in the handshake agreement presents a risk of intermediary anonymous attack that we denote man-in-the-middle-attack. This article presents a way to mitigate this risk by addition of a Kerberos authentication system to the WTLS agreement in order to improve the security of the latter. At the same time, the article gives a detailed description of the solutions involved in the data structure, a simulation model of the program, and discusses reasonable values for the simulation parameters.
出处
《北京化工大学学报(自然科学版)》
CAS
CSCD
北大核心
2009年第1期93-96,共4页
Journal of Beijing University of Chemical Technology(Natural Science Edition)
