Security Analysis on Chinese Wireless LAN Standard and Its Solution

Published: 01 Jan 2005, Last Modified: 10 Feb 2025ICPP Workshops 2005EveryoneRevisionsBibTeXCC BY-SA 4.0
Abstract: China has established its national standard for Wireless LAN, called GB15629.11-2003, in which, WLAN Authentication and Privacy Infrastructure (WAP1) was proposed. However, WAP1 can be proved insecure with the Canetti-Krawczyk model. Further analysis shows that in the standard there are also other vulnerabilities, such as inability to provide identity protection and resist key consistency attack, lack of private key verification and desirable security attributes like perfect forward secrecy, key control, etc. Therefore, a new protocol is proposed to fix the security problems of WAP1, especially those in the authentication and key agreement procedure. This protocol is designed and analyzed with a modular methodology and proved secure with the Canetti-Krawczyk model, thus it can guarantee the desirable security attributes. In addition, the presented protocol has a better performance than WAP1 in computational overhead and can also be applied to IEEE 802.11i as an authenticated key agreement protocol.
Loading

OpenReview is a long-term project to advance science through improved peer review with legal nonprofit status. We gratefully acknowledge the support of the OpenReview Sponsors. © 2025 OpenReview