請用此 Handle URI 來引用此文件:
http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/50909
標題: | 針對半誠實的網路管理者的無線網路匿名認證 Anonymous WiFi Authentication against Honest-but-curious Administrators |
作者: | Yung-Chi Huang 黃詠娸 |
指導教授: | 蕭旭君(Hsu-Chun Hsiao) |
關鍵字: | 無線網路,位置隱私權,匿名認證, WiFi,Location Privacy,Anonymous Authentication, |
出版年 : | 2020 |
學位: | 碩士 |
摘要: | 如今無線熱點已經廣泛部署在世界各地,然而這可能會導致位置和軌跡隱私洩露的風險,大部分過去的研究都著重在針對竊聽者可以取得的可用來唯一識別身份的MAC地址來做防範,目前的無線網路認證機制所使用的身分認證其實也會有同樣的隱私洩露風險。因此,我們提出了一個針對半誠實的網路管理者的無線網路匿名認證機制,透過直接匿名認證的特性,我們使用直接匿名認證的簽章作為無線網路認證時的身份認證可以達成匿名性和不可聯繫性,此外,我們有做出一個可以簡易部署的實作,它是由嵌入X.509的擴充欄位在用戶端的證書,搭配FreeRadius伺服器上可客製化的證書驗證機制來完成的,我們驗證我們設計的安全性和易佈署性,並且證明我們的設計和EAP-TLS相比只會增加部分邊際延遲,而和常用的PEAP相比則近乎相同。 Nowadays, wireless hotspots have been widely deployed around the world, which may lead to significant location and trajectory privacy risks. While most previous work focuses on protecting MAC addresses which can be used as a unique identifier against eavesdroppers, the authentication identity of existing WiFi authentication mechanisms can also be used by administrators to track users. In our work, we propose a new authentication mechanism for WiFi which supports anonymous authentication against honest-but-curious administrators. Leveraging the properties of Direct Anonymous Attestation (DAA), our scheme can achieve anonymity and unlinkability with a DAA signature as an authentication identity while authenticated by the authentication server in the WiFi network. We further build an implementation of our scheme by using an X.509 extension embedded in the client certificate and importing a customized certificate validation check on FreeRadius server. We validate the security property and demonstrate the deployability of our solution. We show that our scheme introduced marginal overhead compared with EAP-TLS and performs similarly to the widely-deployed PEAP. |
URI: | http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/50909 |
DOI: | 10.6342/NTU202002851 |
全文授權: | 有償授權 |
顯示於系所單位: | 資訊網路與多媒體研究所 |
文件中的檔案:
檔案 | 大小 | 格式 | |
---|---|---|---|
U0001-1008202017413300.pdf 目前未授權公開取用 | 2.81 MB | Adobe PDF |
系統中的文件,除了特別指名其著作權條款之外,均受到著作權保護,並且保留所有的權利。