WPA3-SAE安全性分析及攻击可行性研究
Security analysis and attack feasibility study on WPA3-SAE
申海霞 1李涵 1赵斐 1曹铁勇1
作者信息
- 1. 陆军工程大学 指挥控制工程学院,江苏 南京 210007
- 折叠
摘要
对WPA3-SAE的基本原理与工作过程进行了剖析,分别通过理论分析与实践验证的方式研究其安全性,进而对其在实际应用过程中潜在安全隐患、脆弱性以及可能的攻击方法进行分析与验证.实践证明,WPA3-SAE可以抵抗De-authentication、Disassociation等基于管理帧的拒绝服务攻击与离线字典攻击,有效提高了Wi-Fi网络的安全性;然而它在实际应用中也存在安全漏洞,使得攻击者对其进行降级攻击、侧信道攻击、缓存攻击及暴力破解密码成为可能.
Abstract
In this paper,we firstly analyzed the basic principle and detailed process of WPA3-SAE,then studied its security through theoretical analysis and practical verification respectively.Furthermore,we analyzed and verified the potential security risks,vulnerabilities and possible attack methods during its practical application.Experimental results show that WPA3-SAE can resist denial of service attacks based on management frames,such as De-authentication attack and Disassociation attack.Also,it can defend against offline dictionary attacks.It improves the security of Wi-Fi networks effectively.However,it also has security loopholes in practical applications,which make it possible for attackers to carry out downgrade attacks,side channel attacks,cache attacks and brute force password cracking attacks.
关键词
WPA3-SAE/安全性分析/脆弱性分析/攻击可行性/实验验证Key words
WPA3-SAE/security analysis/vulnerability analysis/attack feasibility/experimental verification引用本文复制引用
出版年
2024
国家科技期刊平台
NSTL
万方数据