CN102752174B - System and method for testing safety performance of wireless local area network (WLAN) - Google Patents
System and method for testing safety performance of wireless local area network (WLAN) Download PDFInfo
- Publication number
- CN102752174B CN102752174B CN201210255233.7A CN201210255233A CN102752174B CN 102752174 B CN102752174 B CN 102752174B CN 201210255233 A CN201210255233 A CN 201210255233A CN 102752174 B CN102752174 B CN 102752174B
- Authority
- CN
- China
- Prior art keywords
- test
- wireless
- security performance
- local area
- area network
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
本发明公开了一种无线局域网安全性能测试系统及方法,该系统包括无线局域网安全性能测试平台(101)、无线设备测试床(102)、无线接入点测试服务器(103)和无线接入点测试服务器(103);无线设备测试床(102)、无线接入点测试服务器(103)和安全性能测试服务器(104)设备通过有线局域网连通;无线局域网安全性能测试平台(101)在局域网内分别通过无线设备测试床接口(106)、无线接入点测试服务器接口(107)。方法包括步骤1:管理员登录无线局域网安全性能测试平台(101)的账户管理(201),注册用户,分配权限;步骤2:用户登录无线局域网安全性能测试平台(101),进行设备管理;步骤3:用户进行设备注册。本发明能实现无线局域网安全性能测试。
The invention discloses a wireless local area network security performance testing system and method, the system comprising a wireless local area network security performance testing platform (101), a wireless device test bed (102), a wireless access point test server (103) and a wireless access point The test server (103); the wireless device test bed (102), the wireless access point test server (103) and the security performance test server (104) are connected through a wired LAN; the wireless LAN security performance test platform (101) is respectively Through the wireless device test bed interface (106), the wireless access point test server interface (107). The method includes step 1: the administrator logs in to the account management (201) of the wireless local area network security performance testing platform (101), registers users, and assigns permissions; step 2: the user logs in to the wireless local area network security performance testing platform (101), and performs device management; step 3: The user registers the device. The invention can realize the safety performance test of the wireless local area network.
Description
技术领域 technical field
本发明涉及一种网络安全测试系统及其方法,具体是一种基于WEB远程控制的无线局域网安全性能测试系统及方法,本发明属于无线网络安全技术领域。 The invention relates to a network security testing system and method thereof, in particular to a WEB remote control-based wireless local area network security performance testing system and method, and the invention belongs to the technical field of wireless network security.
背景技术 Background technique
无线局域网(Wireless LAN, WLAN) ,一般用于宽带家庭,大楼内部以及园区内部,典型距离覆盖几十米至几百米,目前采用的技术主要是 802.11a /b/g 系列。 WLAN 利用无线技术在空中传输数据、话音和视频信号,作为传统布线网络的一种替代方案或延伸。 无线局域网特点的出现使得原来有线网络所遇到的问题迎刃而解,它可以使用户任意对有线网络进行扩展和延伸。只要在有线网络的基础上通过无线接入点、无线网桥、无线网卡等无线设备使无线通信得以实现。对比于传统的有线网络,无线局域网的应用价值体现在:可移动性、布线容易、组网灵活和成本优势等,使得无线技术在互联网接入和移动通信中得到了广泛应用。 Wireless local area network (Wireless LAN, WLAN) is generally used in broadband homes, inside buildings, and inside parks. The typical distance covers tens of meters to hundreds of meters. Currently, the technologies used are mainly 802.11a /b/g series. WLAN uses wireless technology to transmit data, voice and video signals over the air as an alternative or extension to traditional wired networks. The emergence of wireless local area network features solves the problems encountered by the original wired network, and it allows users to expand and extend the wired network arbitrarily. As long as wireless communication is realized through wireless devices such as wireless access points, wireless bridges, and wireless network cards on the basis of wired networks. Compared with the traditional wired network, the application value of WLAN is reflected in: mobility, easy wiring, flexible networking and cost advantages, etc., making wireless technology widely used in Internet access and mobile communication.
无线的应用的确给人们带来巨大的便利,但同时,它的使用也是具有不安定因素的。首要的问题就是无线局域网安全隐患问题。无线局域网的使用,是建立在无线电波传送的基础上的。那么无线电波这种无形隐形的传输方式,很难让人掌控。安全问题必然不好控制。现如今无线局域网的安全问题主要表现在容易侵入、非法的无线接入点(Access Point,AP)、经授权使用服务、服务和性能的限制、地址欺骗和会话拦截和流量分析与流量侦听等。针对以上问题,无线局域网的安全问题越来越得到高度重视,继而对无线局域网组网设备安全测试显得尤为重要。 Wireless applications do bring great convenience to people, but at the same time, its use is also unstable. The first and foremost issue is the hidden danger of wireless LAN security. The use of wireless LAN is based on the transmission of radio waves. Then radio waves, an invisible and invisible transmission method, are difficult for people to control. Security issues are bound to be difficult to control. Today's wireless LAN security problems are mainly manifested in easy intrusion, illegal wireless access points (Access Point, AP), authorized use of services, service and performance restrictions, address spoofing and session interception, traffic analysis and traffic interception, etc. . In view of the above problems, more and more attention has been paid to the security of wireless local area network, and then it is particularly important to test the security of wireless local area network networking equipment.
IEEE 802.11系列标准从早期的有线等效保护(Wired Equivalent Privacy, WEP),到后来的无线保护接入(Wireless Protected Access, WPA)和无线保护接入2(Wireless Protected Access V2, WPA2)(即802.11i标准),不断在完善无线局域网的安全机制。我国自主研发无线局域网标准GB15629.11中,也使用了无线鉴别和保密基础结构(Wireless Authentication Privacy Infrastructure, WAPI)作为安全保障机制。但这些安全机制都存在一定安全隐患。 IEEE 802.11 series standards from the early Wired Equivalent Privacy (WEP), to the later Wireless Protected Access (WPA) and Wireless Protected Access 2 (Wireless Protected Access V2, WPA2) (ie 802.11 i standard), constantly improving the security mechanism of wireless LAN. my country's self-developed wireless LAN standard GB15629.11 also uses the Wireless Authentication Privacy Infrastructure (WAPI) as a security mechanism. However, these security mechanisms have certain security risks.
WEP虽然通过加密提供安全保障,但仍存在许多缺陷,a)缺少密钥管理;b)完整性检查值算法不合适;c)RC4算法存在弱点;d)认证信息易于伪造。WPA机制中的临时密钥完整性协议(Temporal Key Integrity Protocol, TKIP)包裹在WEP外面并不是一个理想的安全协议设计;消息完整性校验的安全性能很弱,必须采用一定的对策才能保证安全:TKIP复杂的每包密钥(Per-Packet Key)生成方法是为了适应WEP使用的RC4算法,虽然扩展了序列长度,但部分重用机制从理论上仍存在漏洞。WAPI中也存在一些不足,由于证书鉴别过程与密钥协商过程脱节,且缺乏相应的密钥确认机制,任何拥有合法证书的攻击者都可以通过认证;仅使用公钥证书作为身份凭证,灵活性不够高等等。 Although WEP provides security through encryption, there are still many defects, a) lack of key management; b) integrity check value algorithm is not suitable; c) RC4 algorithm has weaknesses; d) authentication information is easy to forge. It is not an ideal security protocol design to wrap the Temporal Key Integrity Protocol (TKIP) in the WPA mechanism outside of WEP; the security performance of message integrity verification is very weak, and certain countermeasures must be taken to ensure security : TKIP's complex per-packet key (Per-Packet Key) generation method is to adapt to the RC4 algorithm used by WEP. Although the sequence length is extended, the partial reuse mechanism still has loopholes in theory. There are also some deficiencies in WAPI, because the certificate authentication process is out of touch with the key negotiation process, and lacks the corresponding key confirmation mechanism, any attacker with a legal certificate can pass the authentication; only use the public key certificate as the identity certificate, flexibility Not tall enough etc.
鉴于WEP、 WPA、WPA2和WAPI四种安全机制中存在的安全隐患,针对无线局域网安全性能的测试显得意义重大。本专利申请从四种安全机制的角度出发,对现有无线局域网组网设备分类测试,测试设备对安全机制的支持及支持稳定度,从而对无线局域网的安全性能进行测试与评估,也是保障无线局域网安全的重要手段。 In view of the potential safety hazards in the four security mechanisms of WEP, WPA, WPA2 and WAPI, it is of great significance to test the security performance of wireless LAN. Starting from the perspective of four security mechanisms, this patent application classifies and tests the existing wireless local area network networking equipment, and tests the support and stability of the security mechanism of the equipment, so as to test and evaluate the security performance of the wireless local area network. An important means of LAN security.
现有无线局域网性能测试的方法主要有主动测试技术与被动分析技术。所谓主动测试,即测试者通过模拟针对无线局域网的攻击行为,构造并执行测试用例,同时分析无线局域网的防御能力以确定其中是否存在安全威胁。主动测试技术具有良好的扩展性,也适用于未知漏洞的检测和分析。针对无线局域网,可以将主动测试分为以下三类:针对机密性的主动测试、针对完整性的主动测试、针对可用性的主动测试。由于非法入侵或攻击而导致协议数据更改、行为异常、数据前后不一致性、网络流量异常等现象,基于这些特征的统计与分析方法即被动分析技术。被动分析技术包括了各种检测技术,如统计分析、模式匹配、协议分析、命令解析、状态转移分析、分布式入侵检测等。此外,被动分析依赖于已有的成熟规则库与模式库,通过分析监测到的信息,与模式库进行匹配,以判断是否存在针对无线局域网的非法入侵和攻击。 Existing WLAN performance testing methods mainly include active testing technology and passive analysis technology. The so-called active test means that the tester constructs and executes test cases by simulating the attack behavior against the wireless local area network, and at the same time analyzes the defense capability of the wireless local area network to determine whether there is a security threat in it. Active testing technology has good scalability and is also suitable for detection and analysis of unknown vulnerabilities. For wireless local area networks, active tests can be divided into the following three categories: active tests for confidentiality, active tests for integrity, and active tests for usability. Due to illegal intrusion or attack, protocol data changes, abnormal behavior, data inconsistency, abnormal network traffic and other phenomena, the statistics and analysis methods based on these characteristics are passive analysis techniques. Passive analysis technology includes various detection technologies, such as statistical analysis, pattern matching, protocol analysis, command analysis, state transition analysis, distributed intrusion detection, etc. In addition, passive analysis relies on the existing mature rule base and pattern base. By analyzing the monitored information, it matches with the pattern base to determine whether there are illegal intrusions and attacks on the wireless LAN.
现有对WLAN的安全测试主要集中在物理环境测试与加密认证状况测试。物理环境测试主要测试信号的干扰等物理因素造成的安全隐患,加密与认证状况测试主要测试WLAN是否使用了数据加密和用户认证机制。目前WLAN安全测试工具较少,国际上比较成熟的产品有:福禄克(Fluke)公司的网络综合协议分析仪系列、网络万用表系列、网络通系列网络分析仪和美国艾尔麦(AirMagnet)公司的便携式电脑无线网测试分析仪等。国内的相关产品只有冠群金辰公司于2004年初开发的WLAN入侵检测系统。该类产品的实现基本都是基于无线入侵检测,只能检测出一些常见的攻击行为,不能主动的进行分析测试,对WLAN安全保护能力有限,扩展性较差,无力面对新的安全漏洞。 Existing security tests for WLANs mainly focus on physical environment tests and encryption authentication status tests. The physical environment test mainly tests the security risks caused by physical factors such as signal interference, and the encryption and authentication status test mainly tests whether the WLAN uses data encryption and user authentication mechanisms. At present, there are few WLAN security testing tools, and the relatively mature products in the world include: Fluke’s network comprehensive protocol analyzer series, network multimeter series, Netcom series network analyzers and AirMagnet’s portable Computer wireless network test analyzer, etc. The domestic related products are only the WLAN intrusion detection system developed by CA Jinchen Company in early 2004. The implementation of this type of product is basically based on wireless intrusion detection, which can only detect some common attack behaviors, and cannot actively analyze and test. It has limited WLAN security protection capabilities, poor scalability, and is unable to deal with new security vulnerabilities.
针对以上WLAN安全测试工具存在的缺陷与不足,本专利提出了一种基于WEB远程控制的无线局域网安全性能测试系统及方法。其中涉及一种基于渗透测试的无线局域网安全性能测试方案,渗透测试是通过模拟恶意黑客的攻击方法,来评估计算机网络系统安全的一种评估方法。这个过程包括对系统的任何弱点、技术缺陷或漏洞的被动分析与主动测试,这个分析是从一个攻击者可能存在的位置来进行的,并且从这个位置有条件主动利用安全漏洞执行攻击。方案中设计了具体的渗透测试平台,构建了针对无线局域网的攻击样本库,并且制定具体的渗透测试执行流程,并且操作简易,自动化集成度高。 In view of the defects and deficiencies in the above WLAN security testing tools, this patent proposes a WLAN security performance testing system and method based on WEB remote control. It involves a wireless local area network security performance testing scheme based on penetration testing. Penetration testing is an evaluation method for evaluating the security of computer network systems by simulating the attack method of malicious hackers. This process includes passive analysis and active testing of any weaknesses, technical flaws or loopholes in the system. This analysis is carried out from a position where an attacker may exist, and from this position, the security hole is conditionally and actively exploited to carry out the attack. In the plan, a specific penetration testing platform is designed, an attack sample library for wireless LAN is built, and a specific penetration testing execution process is formulated, which is easy to operate and highly integrated in automation.
发明内容 Contents of the invention
技术问题:本发明的目的在于实现无线局域网安全性能测试,提供一种基于WEB远程控制的无线局域网安全性能测试系统及方法。 Technical problem: The purpose of the present invention is to realize the security performance test of the wireless local area network, and provide a system and method for testing the security performance of the wireless local area network based on WEB remote control.
技术方案:为解决上述技术问题,本发明提供了一种无线局域网安全性能测试系统,该系统包括无线局域网安全性能测试平台、无线设备测试床、无线接入点测试服务器和无线接入点测试服务器;其中, Technical solution: In order to solve the above technical problems, the present invention provides a wireless local area network security performance testing system, the system includes a wireless local area network security performance testing platform, a wireless device test bed, a wireless access point test server and a wireless access point test server ;in,
无线设备测试床、无线接入点测试服务器和安全性能测试服务器设备通过有线局域网连通; The wireless device test bed, the wireless access point test server and the security performance test server are connected through a wired LAN;
无线局域网安全性能测试平台在局域网内分别通过无线设备测试床接口、无线接入点测试服务器接口、无线局域网安全性能测试平台与安全性能测试服务器接口与无线设备测试床、无线接入点测试服务器和安全性能测试服务器进行通信; The wireless local area network security performance test platform connects with the wireless device test bed, wireless access point test server and The security performance testing server communicates;
无线局域网安全性能测试平台,与无线设备测试床接口通信,对待测无线设备进行配置,发送提取设备信息、开始网络连通性测试、结束网络连通性测试、安全协议符合性验证指令; The wireless local area network security performance test platform communicates with the wireless device test bed interface, configures the wireless device to be tested, sends and extracts device information, starts the network connectivity test, ends the network connectivity test, and verifies the compliance of the security protocol;
无线局域网安全性能测试平台,与无线接入点测试服务器接口通信,对无线测试环境进行信道参数配置和接入点配置; The wireless LAN security performance testing platform communicates with the wireless access point test server interface, and performs channel parameter configuration and access point configuration for the wireless test environment;
无线局域网安全性能测试平台,与安全性能测试服务器接口通信,对待测无线设备进行脆弱性分析和渗透性测试; The wireless local area network security performance testing platform communicates with the security performance testing server interface, and conducts vulnerability analysis and penetration testing of the wireless equipment to be tested;
无线设备测试床用于待测无线设备配置,配合无线接入点测试服务器和安全性能测试服务器完成安全协议符合性验证和设备协议安全测试; The wireless device test bed is used for the configuration of the wireless device to be tested, and cooperates with the wireless access point test server and the security performance test server to complete the security protocol compliance verification and device protocol security test;
无线接入点测试服务器用于信道参数配置和接入点配置,配合无线设备测试床和安全性能测试服务器完成安全协议符合性验证和设备协议安全测试; The wireless access point test server is used for channel parameter configuration and access point configuration, and cooperates with the wireless device test bed and security performance test server to complete security protocol compliance verification and device protocol security testing;
安全性能测试服务器用于脆弱性分析和渗透性测试,配合无线设备测试床和无线接入点测试服务器完成安全协议符合性验证和设备协议安全测试。 The security performance test server is used for vulnerability analysis and penetration testing, and cooperates with the wireless device test bed and wireless access point test server to complete security protocol compliance verification and device protocol security testing.
优选的,所述无线局域网安全性能测试平台包括:账户管理,项目管理,报告管理,帮助说明,设备管理,设备注册,设备协议安全测试,安全协议符合性验证; Preferably, the WLAN security performance testing platform includes: account management, project management, report management, help instructions, device management, device registration, device protocol security testing, and security protocol compliance verification;
账户管理,用于管理无线局域网安全性能测试平台账户,根据权限使用该测试系统进行测试工作; Account management, which is used to manage the account of the wireless LAN security performance test platform, and use the test system to perform test work according to the authority;
项目管理,用于管理设备协议安全测试,对测试结果进行修改或者删除; Project management, used to manage device protocol security tests, modify or delete test results;
报告管理,用于管理安全协议符合性验证和设备协议安全测试模块结果,并结合设备注册存储的设备信息进行报告生成和管理; Report management, used to manage security protocol compliance verification and device protocol security test module results, combined with device information stored in device registration for report generation and management;
帮助说明,用于无线局域网安全性能测试平台操作说明; Help instructions, used for the operation instructions of the wireless LAN security performance test platform;
设备管理,用于管理设备注册、安全协议符合性验证和设备协议安全测试,完成设备的注册和安全测试工作; Device management, used to manage device registration, security protocol compliance verification and device protocol security testing, and complete device registration and security testing;
设备注册,用于提取设备信息时与无线设备测试床接口调用配置模块对设备进行配置; Device registration, used to call the configuration module to configure the device with the wireless device test bed interface when extracting device information;
安全协议符合性验证,用于调用套接字通信模块和功能模块对设备进行安全协议符合性验证; Safety protocol compliance verification, used to call the socket communication module and function module to verify the safety protocol compliance of the device;
设备协议安全测试,用于调用套接字通信模块和功能模块对设备进行开始/结束网络连通性测试。 The device protocol security test is used to call the socket communication module and the function module to start/end the network connectivity test on the device.
优选的,所述的无线设备测试床包括:配置模块、套接字通信模块和功能模块,其中, Preferably, the wireless device test bed includes: a configuration module, a socket communication module and a function module, wherein,
配置模块,用于完成对待测无线设备配置功能; The configuration module is used to complete the configuration function of the wireless device to be tested;
套接字通信模块,用于完成无线设备测试床与无线局域网安全性能测试平台之间的指令和信息交互,并且根据指令调用具体功能模块; The socket communication module is used to complete the command and information interaction between the wireless device test bed and the wireless LAN security performance test platform, and call specific function modules according to the command;
功能模块,用于完成针对来自套接字通信模块指令的功能。 The function module is used to complete the function for the instruction from the socket communication module.
优选的,所述的无线接入点测试服务器包括:信道配置模块和接入点配置模块,其中, Preferably, the wireless access point test server includes: a channel configuration module and an access point configuration module, wherein,
信道配置模块,用于接收来自无线局域网安全性能测试平台的配置指令,并且完成对测试协议配置脚本文件的配置; The channel configuration module is used to receive configuration instructions from the wireless local area network security performance testing platform, and complete the configuration of the test protocol configuration script file;
接入点配置模块,用于接收来自无线局域网安全性能测试平台的启动/关闭无线测试环境指令,并完成相应环境的启动或关闭。 The access point configuration module is used to receive the start/close wireless test environment instruction from the wireless local area network security performance test platform, and complete the start or close of the corresponding environment.
优选的,所述安全性能测试服务器包括:脆弱性分析模块和渗透性测试模块,其中, Preferably, the security performance testing server includes: a vulnerability analysis module and a penetration testing module, wherein,
脆弱性分析模块,用于对脆弱性分析函数的调用来实现对待测无线设备的脆弱性分析; The vulnerability analysis module is used to realize the vulnerability analysis of the wireless device to be tested by calling the vulnerability analysis function;
渗透性测试模块,用于对渗透性测试函数的调用来实现对待测无线设备的渗透性测试。 The penetration testing module is used for calling the penetration testing function to realize the penetration testing of the wireless device to be tested.
本发明还提供了一种无线局域网安全性能测试方法,该方法包括以下步骤: The present invention also provides a method for testing the security performance of a wireless local area network, the method comprising the following steps:
步骤1:管理员登录无线局域网安全性能测试平台的账户管理,注册用户,分配权限; Step 1: The administrator logs in to the account management of the wireless LAN security performance testing platform, registers users, and assigns permissions;
步骤2:用户登录无线局域网安全性能测试平台,进行设备管理; Step 2: The user logs in to the WLAN security performance testing platform for device management;
步骤3:用户进行设备注册; Step 3: The user registers the device;
步骤4:用户进行设备注册成功后,对待测无线设备进行安全协议符合性验证; Step 4: After the user successfully registers the device, verify the compliance of the security protocol of the wireless device to be tested;
步骤5:验证结束后,对待测无线设备进行设备协议安全测试; Step 5: After the verification is completed, perform a device protocol security test on the wireless device to be tested;
步骤6:登录用户通过报告管理查看针对该待测无线设备进行安全协议符合性验证和设备协议安全测试的安全性评估报告。 Step 6: The logged-in user can view the security evaluation report of the security protocol compliance verification and device protocol security test for the wireless device under test through the report management.
优选的,该步骤3中,设备注册包括以下步骤: Preferably, in step 3, device registration includes the following steps:
步骤31:登录用户通过设备管理进入设备注册; Step 31: The logged-in user enters device registration through device management;
步骤32:填写设备基本信息,选择设备类型; Step 32: Fill in the basic information of the device and select the device type;
步骤33:远程登录到无线设备测试床,调用配置模块对待测无线设备进行配置,无线局域网安全性能测试平台提取设备信息。 Step 33: Remotely log in to the wireless device test bed, call the configuration module to configure the wireless device to be tested, and the wireless LAN security performance test platform extracts device information.
优选的,步骤4中,安全协议符合性验证包括以下步骤: Preferably, in step 4, the safety protocol compliance verification includes the following steps:
步骤41:登录用户选择所需验证协议,针对选择协议依次逐一进行安全协议符合性验证; Step 41: The logged-in user selects the required verification protocol, and performs security protocol compliance verification for the selected protocols one by one;
步骤42:无线局域网安全性能测试平台通过套接字告知无线接入点测试服务器启动测试环境,接入点配置模块启动测试环境,并将配置结果返回无线局域网安全性能测试平台; Step 42: The WLAN security performance testing platform informs the wireless access point test server to start the test environment through the socket, the access point configuration module starts the test environment, and returns the configuration result to the WLAN security performance test platform;
步骤43:无线局域网安全性能测试平台远程登录到无线设备测试床,调用配置模块删除配置信息,然后将待测无线设备接入无线接入点测试服务器创建的无线测试环境; Step 43: The wireless local area network security performance test platform remotely logs in to the wireless device test bed, calls the configuration module to delete the configuration information, and then connects the wireless device to be tested to the wireless test environment created by the wireless access point test server;
步骤44:无线局域网安全性能测试平台通过套接字告知无线设备测试床进行安全协议符合性验证,无线设备测试床调用功能模块进行验证,并调用套接字通信模块将验证结果告知无线局域网安全性能测试平台; Step 44: The wireless LAN security performance test platform informs the wireless device test bed to verify the compliance of the security protocol through the socket, the wireless device test bed calls the function module to verify, and calls the socket communication module to notify the wireless LAN security performance of the verification result testing platform;
步骤45:无线局域网安全性能测试平台通过套接字告知无线接入点测试服务器关闭测试环境,接入点配置模块关闭测试环境,并将配置结果返回无线局域网安全性能测试平台。 Step 45: The WLAN security performance testing platform informs the wireless access point test server to close the test environment through the socket, the access point configuration module closes the test environment, and returns the configuration result to the WLAN security performance test platform.
优选的,步骤5中,设备协议安全测试包括以下步骤: Preferably, in step 5, the device protocol security test includes the following steps:
步骤51:无线局域网安全性能测试平台通过套接字告知安全性能测试服务器进行脆弱性分析,安全性能测试服务器调用脆弱性分析模块对待测无线设备进行脆弱性分析,并将结果返回给无线局域网安全性能测试平台; Step 51: The wireless LAN security performance testing platform informs the security performance testing server to perform vulnerability analysis through the socket, and the security performance testing server calls the vulnerability analysis module to perform vulnerability analysis on the wireless device to be tested, and returns the result to the wireless LAN security performance testing platform;
步骤52:登录用户选择所需测试协议,针对选择协议依次逐一进行设备协议安全测试; Step 52: The logged-in user selects the required test protocol, and performs device protocol security tests one by one for the selected protocols;
步骤53:无线局域网安全性能测试平台通过套接字告知无线接入点测试服务器启动测试环境,接入点配置模块启动测试环境,并将配置结果返回无线局域网安全性能测试平台; Step 53: the wireless local area network security performance testing platform informs the wireless access point test server to start the test environment through the socket, the access point configuration module starts the test environment, and returns the configuration result to the wireless local area network security performance testing platform;
步骤54:无线局域网安全性能测试平台远程登录到无线设备测试床,调用配置模块删除配置信息,然后将待测无线设备接入无线接入点测试服务器创建的无线测试环境; Step 54: The wireless local area network security performance testing platform remotely logs in to the wireless device test bed, calls the configuration module to delete the configuration information, and then connects the wireless device to be tested to the wireless test environment created by the wireless access point test server;
步骤55:无线局域网安全性能测试平台通过套接字告知无线设备测试床开始进行设备协议安全测试,无线设备测试床调用功能模块对待测无线设备开始网络连通性测试,并调用套接字通信模块告知无线局域网安全性能测试平台开始进行网络连通性测试; Step 55: The wireless LAN security performance test platform informs the wireless device test bed to start the device protocol security test through the socket, the wireless device test bed calls the function module to start the network connectivity test of the wireless device to be tested, and calls the socket communication module to notify The wireless local area network security performance test platform began to conduct network connectivity tests;
步骤及56:无线局域网安全性能测试平台通过套接字告知安全性能测试服务器进行渗透性测试,安全性能测试服务器调用渗透性测试模块进行测试,渗透性测试结束后告知无线局域网安全性能测试平台; Step and 56: the wireless local area network security performance testing platform informs the security performance testing server to perform the penetration test through the socket, the security performance testing server calls the penetration testing module to perform the test, and informs the wireless local area network security performance testing platform after the penetration test is completed;
步骤57:无线局域网安全性能测试平台在渗透性测试结束后,通过套接字告知无线设备测试床结束设备协议安全测试,无线设备测试床调用功能模块提取网络连通性测试结果,并调用套接字通信模块将测试结果告知无线局域网安全性能测试平台; Step 57: After the penetration test of the wireless LAN security performance test platform, the wireless device test bed is notified through the socket to end the device protocol security test, and the wireless device test bed calls the function module to extract the network connectivity test result, and calls the socket The communication module notifies the test result of the wireless local area network security performance test platform;
步骤58:无线局域网安全性能测试平台通过套接字告知无线接入点测试服务器关闭测试环境,接入点配置模块关闭测试环境,并将配置结果返回无线局域网安全性能测试平台。 Step 58: The WLAN security performance testing platform informs the wireless access point test server to close the test environment through the socket, the access point configuration module closes the test environment, and returns the configuration result to the WLAN security performance test platform.
有益效果:本发明是一种基于WEB远程控制的无线局域网安全性能测试系统及方法,该系统操作简易,集成自动化测试流程,针对802.11中使用的有线等效保护(WEP)、无线保护接入(WPA)、无线保护接入2(WPA2)和无线鉴别和保密基础结构(WAPI)四种安全机制进行安全协议符合性验证和设备协议安全测试,其中设备协议安全测试包括脆弱性分析和渗透性测试。该系统集成多种安全机制,包括主动和被动测试技术,克服现有产品基于无线入侵检测,只能检测出一些常见的攻击行为,不能主动的进行分析测试,扩展性较差,无力面对新的安全漏洞等弱点。本系统不但针对无线局域网组网设备对802.11使用的几种安全机制安全协议符合性验证,同时针对支持的安全机制进行设备协议安全测试,即脆弱性分析和渗透性测试,可以测试无线局域网组网设备对四种安全机制支持的稳定程度以及存在的安全隐患,最后系统能通过安全协议符合性验证和设备协议安全测试结果给出安全性能评估报告。 Beneficial effects: the present invention is a wireless local area network security performance testing system and method based on WEB remote control. The system is easy to operate and integrates an automated testing process. WPA), Wireless Protected Access 2 (WPA2) and Wireless Authentication and Privacy Infrastructure (WAPI) four security mechanisms for security protocol compliance verification and device protocol security testing, in which device protocol security testing includes vulnerability analysis and penetration testing . The system integrates a variety of security mechanisms, including active and passive testing technologies, to overcome existing products based on wireless intrusion detection, which can only detect some common attack behaviors, cannot actively analyze and test, has poor scalability, and is unable to face new technologies. Weaknesses such as security holes. This system not only verifies the compliance of several security mechanisms and security protocols used by wireless LAN networking equipment for 802.11, but also conducts device protocol security testing for supported security mechanisms, that is, vulnerability analysis and penetration testing, and can test wireless LAN networking The stability of the equipment's support for the four security mechanisms and the existing security risks. Finally, the system can provide a security performance evaluation report through the security protocol compliance verification and equipment protocol security test results.
附图说明 Description of drawings
图1为本发明工作原理示意图; Fig. 1 is a schematic diagram of the working principle of the present invention;
其中有:无线局域网安全性能测试平台101,无线设备测试床102,无线接入点测试服务器103,安全性能测试服务器104,待测无线设备105,无线局域网安全性能测试平台与无线设备测试床接口106,无线局域网安全性能测试平台与无线接入点测试服务器接口107,无线局域网安全性能测试平台与安全性能测试服务器接口108。 Wherein: WLAN security performance test platform 101, wireless device test bed 102, wireless access point test server 103, security performance test server 104, wireless device to be tested 105, WLAN security performance test platform and wireless device test bed interface 106 , an interface 107 between the wireless local area network security performance testing platform and the wireless access point testing server, and an interface 108 between the wireless local area network security performance testing platform and the security performance testing server.
图2为无线局域网安全性能测试平台与无线设备测试床通信原理图; Figure 2 is a schematic diagram of the communication between the wireless local area network security performance test platform and the wireless device test bed;
其中有:账户管理201,项目管理202,报告管理203,帮助说明204,设备管理205,设备注册206,设备协议安全测试207,安全协议符合性验证208,配置模块209,套接字通信模块210,功能模块211。 There are: account management 201, project management 202, report management 203, help instructions 204, device management 205, device registration 206, device protocol security testing 207, security protocol compliance verification 208, configuration module 209, socket communication module 210 , function module 211 .
图3为无线局域网安全性能测试平台与无线接入点测试服务器通信原理图; Fig. 3 is a schematic diagram of the communication between the wireless local area network security performance testing platform and the wireless access point testing server;
其中有:信道配置模块301,接入点配置模块302。 There are: a channel configuration module 301 and an access point configuration module 302 .
图4为无线局域网安全性能测试平台与安全性能测试服务器通信原理图; Fig. 4 is the schematic diagram of the communication between the wireless local area network security performance testing platform and the security performance testing server;
其中有:脆弱性分析模块401,渗透性测试模块402。 There are: a vulnerability analysis module 401 and a penetration testing module 402 .
图5为本发明方法整体流程图。 Fig. 5 is an overall flowchart of the method of the present invention.
图6为本发明方法设备注册流程图。 Fig. 6 is a flow chart of the device registration method of the present invention.
图7为本发明方法安全协议符合性验证流程图。 Fig. 7 is a flow chart of the verification of the compliance of the safety protocol of the method of the present invention.
图8为本发明方法设备协议安全测试流程图。 Fig. 8 is a flow chart of the device protocol security test of the method of the present invention.
具体实施方式 Detailed ways
下面结合附图对本发明做进一步说明。 The present invention will be further described below in conjunction with the accompanying drawings.
本发明的目的在于实现无线局域网安全性能测试,提供一种基于WEB远程控制的无线局域网安全性能测试系统及方法,即整个测试系统组成局域网,测试者可以根据局域网中任意主机浏览器访问系统平台,针对WEP、WPA、WPA2及WAPI四种安全机制进行安全协议符合性验证,构建攻击用例实现设备协议安全测试,以及对无线网络设备进行安全性能评估。针对无线局域网设备安全机制及存在的WEP机制认证信息伪造、WEP机制RC4算法存在弱点和WAPI机制缺乏相应的密钥确认机制等安全问题,本系统可以自动化对其实现安全协议符合性验证、设备协议安全测试,并根据验证和测试结果,对其安全性能做出评估。 The purpose of the present invention is to realize the wireless local area network safety performance test, provide a kind of wireless local area network safety performance test system and method based on WEB remote control, namely the whole test system forms the local area network, the tester can visit the system platform according to any host browser in the local area network, Perform security protocol compliance verification for the four security mechanisms of WEP, WPA, WPA2 and WAPI, construct attack use cases to implement device protocol security testing, and evaluate the security performance of wireless network devices. Aiming at security issues such as the security mechanism of wireless LAN equipment and the existing WEP mechanism authentication information forgery, the weakness of the RC4 algorithm of the WEP mechanism, and the lack of a corresponding key confirmation mechanism in the WAPI mechanism, this system can automatically implement security protocol compliance verification and device protocol verification for it. Security testing, and based on verification and test results, evaluate its security performance.
参见图1-8,本发明提供的无线局域网安全性能测试系统,该系统包括无线局域网安全性能测试平台101、无线设备测试床102、无线接入点测试服务器103和无线接入点测试服务器103。 1-8, the wireless local area network security performance testing system provided by the present invention, the system includes a wireless local area network security performance testing platform 101, a wireless device test bed 102, a wireless access point test server 103 and a wireless access point test server 103.
无线设备测试床102、无线接入点测试服务器103和安全性能测试服务器104设备通过有线局域网连通;无线局域网安全性能测试平台101在局域网内分别通过无线设备测试床接口106、无线接入点测试服务器接口107、无线局域网安全性能测试平台与安全性能测试服务器接口108与无线设备测试床102、无线接入点测试服务器103和安全性能测试服务器104进行通信;无线局域网安全性能测试平台101,与无线设备测试床接口106通信,对待测无线设备105进行配置,发送提取设备信息、开始网络连通性测试、结束网络连通性测试、安全协议符合性验证指令;无线局域网安全性能测试平台101,与无线接入点测试服务器接口107通信,对无线测试环境进行信道参数配置和接入点配置;无线局域网安全性能测试平台101,与安全性能测试服务器接口108通信,对待测无线设备105进行脆弱性分析和渗透性测试;无线设备测试床102用于待测无线设备105配置,配合无线接入点测试服务器103和安全性能测试服务器104完成安全协议符合性验证和设备协议安全测试;无线接入点测试服务器103用于信道参数配置和接入点配置,配合无线设备测试床102和安全性能测试服务器104完成安全协议符合性验证和设备协议安全测试;安全性能测试服务器104用于脆弱性分析和渗透性测试,配合无线设备测试床102和无线接入点测试服务器103完成安全协议符合性验证和设备协议安全测试。 The wireless device test bed 102, the wireless access point test server 103 and the security performance test server 104 are connected through a wired LAN; Interface 107, wireless local area network security performance testing platform and security performance testing server interface 108 communicate with wireless device test bed 102, wireless access point test server 103 and security performance testing server 104; wireless local area network security performance testing platform 101, and wireless equipment The test bed interface 106 communicates, configures the wireless device 105 to be tested, sends and extracts device information, starts the network connectivity test, ends the network connectivity test, and safety protocol compliance verification instructions; the wireless LAN security performance test platform 101 communicates with the wireless access Point test server interface 107 communication, carry out channel parameter configuration and access point configuration to wireless test environment; Test; the wireless device test bed 102 is used for the configuration of the wireless device 105 to be tested, and cooperates with the wireless access point test server 103 and the security performance test server 104 to complete the safety protocol compliance verification and the device protocol security test; the wireless access point test server 103 is used For channel parameter configuration and access point configuration, cooperate with wireless device test bed 102 and security performance test server 104 to complete security protocol compliance verification and device protocol security test; security performance test server 104 is used for vulnerability analysis and penetration test, cooperate with The wireless device test bed 102 and the wireless access point test server 103 complete security protocol compliance verification and device protocol security testing.
所述无线局域网安全性能测试平台101包括:账户管理201,项目管理202,报告管理203,帮助说明204,设备管理205,设备注册206,设备协议安全测试207,安全协议符合性验证208;账户管理201,用于管理无线局域网安全性能测试平台101账户,根据权限使用该测试系统进行测试工作;项目管理202,用于管理设备协议安全测试207,对测试结果进行修改或者删除;报告管理203,用于管理安全协议符合性验证208和设备协议安全测试207模块结果,并结合设备注册206存储的设备信息进行报告生成和管理;帮助说明204,用于无线局域网安全性能测试平台101操作说明;设备管理205,用于管理设备注册206、安全协议符合性验证208和设备协议安全测试207,完成设备的注册和安全测试工作;设备注册206,用于提取设备信息时与无线设备测试床接口106调用配置模块209对设备进行配置;安全协议符合性验证208,用于调用套接字通信模块210和功能模块211对设备进行安全协议符合性验证;设备协议安全测试207,用于调用套接字通信模块210和功能模块211对设备进行开始/结束网络连通性测试。 Described WLAN security performance testing platform 101 comprises: account management 201, project management 202, report management 203, help explanation 204, device management 205, device registration 206, device protocol safety test 207, safety protocol compliance verification 208; account management 201, used to manage the account of the wireless local area network security performance testing platform 101, and use the test system to perform testing work according to the authority; project management 202, used to manage the device protocol security test 207, modify or delete the test results; report management 203, use To manage the safety protocol compliance verification 208 and the device protocol safety test 207 module results, and combine the device information stored in the device registration 206 for report generation and management; help instructions 204, for the operation instructions of the wireless LAN safety performance test platform 101; device management 205, used to manage device registration 206, security protocol compliance verification 208 and device protocol security test 207, to complete device registration and security testing; device registration 206, used to call configuration with wireless device test bed interface 106 when extracting device information Module 209 configures the device; security protocol compliance verification 208 is used to call the socket communication module 210 and function module 211 to verify the device's security protocol compliance; device protocol security test 207 is used to call the socket communication module 210 and function module 211 start/end network connectivity test on the device.
所述的无线设备测试床102包括:配置模块209、套接字通信模块210和功能模块211,其中,配置模块209,用于完成对待测无线设备105配置功能;套接字通信模块210,用于完成无线设备测试床102与无线局域网安全性能测试平台101之间的指令和信息交互,并且根据指令调用具体功能模块211;功能模块211,用于完成针对来自套接字通信模块210指令的功能。 The wireless device test bed 102 includes: a configuration module 209, a socket communication module 210 and a function module 211, wherein the configuration module 209 is used to complete the configuration function of the wireless device 105 to be tested; the socket communication module 210 uses To complete the instruction and information interaction between the wireless device test bed 102 and the wireless LAN security performance test platform 101, and call the specific function module 211 according to the instruction; the function module 211 is used to complete the function for the instruction from the socket communication module 210 .
所述的无线接入点测试服务器103包括:信道配置模块301和接入点配置模块302,其中,信道配置模块301,用于接收来自无线局域网安全性能测试平台101的配置指令,并且完成对测试协议配置脚本文件的配置;接入点配置模块302,用于接收来自无线局域网安全性能测试平台101的启动/关闭无线测试环境指令,并完成相应环境的启动或关闭。 The wireless access point test server 103 includes: a channel configuration module 301 and an access point configuration module 302, wherein the channel configuration module 301 is used to receive configuration instructions from the wireless local area network security performance testing platform 101, and complete the test The configuration of the protocol configuration script file; the access point configuration module 302 is used to receive the instruction of starting/closing the wireless test environment from the WLAN security performance testing platform 101, and complete the starting or closing of the corresponding environment.
所述安全性能测试服务器104包括:脆弱性分析模块401和渗透性测试模块402,其中,脆弱性分析模块401,用于对脆弱性分析函数的调用来实现对待测无线设备105的脆弱性分析;渗透性测试模块402,用于对渗透性测试函数的调用来实现对待测无线设备105的渗透性测试。 The security performance testing server 104 includes: a vulnerability analysis module 401 and a penetration testing module 402, wherein the vulnerability analysis module 401 is used to call a vulnerability analysis function to implement a vulnerability analysis of the wireless device 105 to be tested; The penetration testing module 402 is used for calling the penetration testing function to realize the penetration testing of the wireless device 105 to be tested.
本发明还提供了一种无线局域网安全性能测试方法,该方法包括以下步骤: The present invention also provides a method for testing the security performance of a wireless local area network, the method comprising the following steps:
步骤1:管理员登录无线局域网安全性能测试平台101的账户管理201,注册用户,分配权限; Step 1: the administrator logs in to the account management 201 of the wireless local area network security performance testing platform 101, registers users, and assigns permissions;
步骤2:用户登录无线局域网安全性能测试平台101,进行设备管理; Step 2: the user logs in to the wireless local area network security performance testing platform 101, and performs device management;
步骤3:用户进行设备注册; Step 3: The user registers the device;
步骤4:用户进行设备注册成功后,对待测无线设备105进行安全协议符合性验证; Step 4: After the user successfully registers the device, the wireless device 105 under test performs security protocol compliance verification;
步骤5:验证结束后,对待测无线设备105进行设备协议安全测试; Step 5: After the verification is completed, perform a device protocol security test on the wireless device 105 to be tested;
步骤6:登录用户通过报告管理203查看针对该待测无线设备105进行安全协议符合性验证和设备协议安全测试的安全性评估报告。 Step 6: The logged-in user checks the security evaluation report of the security protocol compliance verification and device protocol security test for the wireless device 105 under test through the report management 203 .
该步骤3中,设备注册包括以下步骤:步骤31:登录用户通过设备管理205进入设备注册206;步骤32:填写设备基本信息,选择设备类型;步骤33:远程登录到无线设备测试床。102,调用配置模块209对待测无线设备105进行配置,无线局域网安全性能测试平台101提取设备信息。 In Step 3, the device registration includes the following steps: Step 31: the logged-in user enters the device registration 206 through the device management 205; Step 32: fills in the basic information of the device, and selects the device type; Step 33: remotely logs in to the wireless device test bed. 102. Call the configuration module 209 to configure the wireless device 105 to be tested, and the wireless local area network security performance testing platform 101 extracts device information.
步骤4中,安全协议符合性验证包括以下步骤: In step 4, the security protocol compliance verification includes the following steps:
在步骤4中,安全协议符合性验证包括以下步骤:步骤41:登录用户选择所需验证协议,针对选择协议依次逐一进行安全协议符合性验证208;步骤42:无线局域网安全性能测试平台101通过套接字告知无线接入点测试服务器103启动测试环境,接入点配置模块301启动测试环境,并将配置结果返回无线局域网安全性能测试平台101;步骤43:无线局域网安全性能测试平台101远程登录到无线设备测试床102,调用配置模块209删除配置信息,然后将待测无线设备105接入无线接入点测试服务器103创建的无线测试环境;步骤44:无线局域网安全性能测试平台101通过套接字告知无线设备测试床102进行安全协议符合性验证,无线设备测试床102调用功能模块211进行验证,并调用套接字通信模块210将验证结果告知无线局域网安全性能测试平台101;步骤45:无线局域网安全性能测试平台101通过套接字告知无线接入点测试服务器103关闭测试环境,接入点配置模块302关闭测试环境,并将配置结果返回无线局域网安全性能测试平台101。 In step 4, the safety protocol compliance verification includes the following steps: Step 41: the login user selects the required verification protocol, and performs the safety protocol compliance verification 208 one by one for the selected protocol; Step 42: the wireless local area network safety performance testing platform 101 passes the The connection informs the wireless access point test server 103 to start the test environment, and the access point configuration module 301 starts the test environment, and returns the configuration result to the WLAN security performance test platform 101; Step 43: the WLAN security performance test platform 101 remotely logs in to The wireless device test bed 102 calls the configuration module 209 to delete the configuration information, and then connects the wireless device 105 to be tested to the wireless test environment created by the wireless access point test server 103; Step 44: the wireless local area network security performance test platform 101 passes the socket Inform the wireless device test bed 102 to perform safety protocol compliance verification, the wireless device test bed 102 calls the function module 211 to verify, and calls the socket communication module 210 to notify the wireless local area network security performance test platform 101 of the verification result; Step 45: wireless local area network The security performance testing platform 101 informs the wireless access point testing server 103 to close the testing environment through the socket, and the access point configuration module 302 closes the testing environment, and returns the configuration result to the wireless LAN security performance testing platform 101 .
步骤5中,设备协议安全测试包括以下步骤:步骤51:无线局域网安全性能测试平台101通过套接字告知安全性能测试服务器104进行脆弱性分析,安全性能测试服务器104调用脆弱性分析模块401对待测无线设备105进行脆弱性分析,并将结果返回给无线局域网安全性能测试平台101;步骤52:登录用户选择所需测试协议,针对选择协议依次逐一进行设备协议安全测试;步骤53:无线局域网安全性能测试平台101通过套接字告知无线接入点测试服务器103启动测试环境,接入点配置模块301启动测试环境,并将配置结果返回无线局域网安全性能测试平台101;步骤54:无线局域网安全性能测试平台101远程登录到无线设备测试床102,调用配置模块209删除配置信息,然后将待测无线设备105接入无线接入点测试服务器103创建的无线测试环境;步骤55:无线局域网安全性能测试平台101通过套接字告知无线设备测试床102开始进行设备协议安全测试207,无线设备测试床102调用功能模块211对待测无线设备105开始网络连通性测试,并调用套接字通信模块210告知无线局域网安全性能测试平台101开始进行网络连通性测试;步骤及56:无线局域网安全性能测试平台101通过套接字告知安全性能测试服务器104进行渗透性测试,安全性能测试服务器104调用渗透性测试模块402进行测试,渗透性测试结束后告知无线局域网安全性能测试平台101;步骤57:无线局域网安全性能测试平台101在渗透性测试结束后,通过套接字告知无线设备测试床102结束设备协议安全测试207,无线设备测试床102调用功能模块211提取网络连通性测试结果,并调用套接字通信模块210将测试结果告知无线局域网安全性能测试平台101;步骤58:无线局域网安全性能测试平台101通过套接字告知无线接入点测试服务器103关闭测试环境,接入点配置模块302关闭测试环境,并将配置结果返回无线局域网安全性能测试平台101。 In step 5, the device protocol security test includes the following steps: Step 51: the wireless local area network security performance testing platform 101 informs the security performance testing server 104 to perform vulnerability analysis through the socket, and the security performance testing server 104 calls the vulnerability analysis module 401 to be tested The wireless device 105 performs vulnerability analysis, and returns the result to the WLAN security performance testing platform 101; Step 52: the login user selects the required test protocol, and performs the device protocol security test one by one for the selected protocol; Step 53: WLAN security performance The test platform 101 informs the wireless access point test server 103 to start the test environment through the socket, and the access point configuration module 301 starts the test environment, and returns the configuration result to the WLAN security performance test platform 101; Step 54: WLAN security performance test Platform 101 remotely logs in to wireless device test bed 102, calls configuration module 209 to delete configuration information, then connects wireless device 105 to be tested to the wireless test environment created by wireless access point test server 103; Step 55: WLAN security performance test platform 101 informs the wireless device test bed 102 to start the device protocol security test 207 through the socket, the wireless device test bed 102 calls the function module 211 to start the network connectivity test of the wireless device 105 to be tested, and calls the socket communication module 210 to inform the wireless LAN The security performance testing platform 101 starts to perform the network connectivity test; step and 56: the wireless local area network security performance testing platform 101 informs the security performance testing server 104 to carry out the penetration test through the socket, and the security performance testing server 104 calls the penetration testing module 402 to carry out Test, inform the WLAN security performance testing platform 101 after the penetration test ends; Step 57: The WLAN security performance testing platform 101 informs the wireless device test bed 102 to end the device protocol security test 207 through the socket after the penetration test is finished, The wireless device test bed 102 calls the function module 211 to extract the network connectivity test result, and calls the socket communication module 210 to inform the WLAN security performance test platform 101 of the test result; Step 58: The WLAN security performance test platform 101 passes the socket Informing the wireless access point test server 103 to close the test environment, the access point configuration module 302 closes the test environment, and returns the configuration result to the WLAN security performance test platform 101 .
具体而言,如图1所示,本无线局域网安全性能测试系统包含无线局域网安全性能测试平台101、无线设备测试床102、无线接入点测试服务器103、安全性能测试服务器104,无线局域网安全性能测试平台101作为该系统主控平台,首先待测无线设备105连接无线设备测试床102,然后在无线局域网安全性能测试平台101进行注册,同时结合无线设备测试床102提取设备信息,通过无线局域网安全性能测试平台101、无线设备测试床102和无线接入点测试服务器103按照工作流程对待测无线设备105进行安全协议符合性验证,通过无线局域网安全性能测试平台101、无线设备测试床102、无线接入点测试服务器103和安全性能测试服务器104按照工作流程对待测无线设备105进行设备协议安全测试,最后由无线局域网安全性能测试平台101给出安全性能评估报告。 Specifically, as shown in Figure 1, this WLAN security performance testing system comprises a WLAN security performance test platform 101, a wireless device test bed 102, a wireless access point test server 103, a security performance test server 104, a WLAN security performance The test platform 101 serves as the main control platform of the system. First, the wireless device 105 to be tested connects to the wireless device test bed 102, and then registers on the wireless LAN security performance test platform 101. The performance test platform 101, the wireless device test bed 102 and the wireless access point test server 103 perform security protocol compliance verification on the wireless device 105 to be tested according to the work flow, and pass the wireless local area network security performance test platform 101, the wireless device test bed 102, the wireless access point The entry point test server 103 and the security performance test server 104 perform the device protocol security test on the wireless device 105 to be tested according to the workflow, and finally the WLAN security performance test platform 101 provides a security performance evaluation report.
如图2所示,该图主要是无线局域网安全性能测试平台101模块说明、无线设备测试床102模块说明以及无线局域网安全性能测试平台与无线设备测试床接口106说明,无线局域网安全性能测试平台101包括账户管理201、项目管理202、报告管理203、帮助说明204和设备管理205等五大模块,其中设备管理205包括设备注册206、设备协议安全测试207和安全协议符合性验证208;无线设备测试床102包括配置模块209、套接字通信模块210和功能模块211。无线局域网安全性能测试平台与无线设备测试床接口106功能包括远程登录无线设备测试床和向无线设备测试床发送套接字指令实现网络连通性测试、安全协议符合性验证。 As shown in Figure 2, this figure is mainly the description of the wireless local area network security performance test platform 101 module, the wireless device test bed 102 module description and the wireless local area network security performance test platform and the wireless device test bed interface 106 description, the wireless local area network security performance test platform 101 Including account management 201, project management 202, report management 203, help instructions 204 and device management 205, among which the device management 205 includes device registration 206, device protocol security test 207 and security protocol compliance verification 208; wireless device test bed 102 includes a configuration module 209 , a socket communication module 210 and a function module 211 . The functions of the wireless local area network security performance test platform and the wireless device test bed interface 106 include remote login to the wireless device test bed and sending socket commands to the wireless device test bed to implement network connectivity testing and security protocol compliance verification.
如图3所示,该图主要是无线局域网安全性能测试平台101模块说明、无线接入点测试服务器103模块说明以及无线局域网安全性能测试平台与无线接入点测试服务器接口107说明,无线接入点测试服务器103包括信道配置模块301和接入点配置模块302,无线局域网安全性能测试平台与无线接入点测试服务器接口107功能包括配置信道参数、启动测试环境和关闭测试环境。 As shown in Figure 3, this figure is mainly the description of the module 101 of the wireless local area network security performance test platform, the description of the 103 module of the wireless access point test server, and the description of the interface 107 between the security performance test platform of the wireless local area network and the wireless access point test server. The point test server 103 includes a channel configuration module 301 and an access point configuration module 302. The functions of the WLAN security performance test platform and the wireless access point test server interface 107 include configuring channel parameters, starting the test environment and closing the test environment.
如图4所示,该图主要是无线局域网安全性能测试平台101模块说明、安全性能测试服务器104模块说明以及无线局域网安全性能测试平台与安全性能测试服务器接口108说明,安全性能测试服务器104包括脆弱性分析模块401和渗透性测试模块402,无线局域网安全性能测试平台与安全性能测试服务器接口108功能包括调用脆弱性分析函数和调用渗透性分析函数。 As shown in Figure 4, this figure is mainly the description of the module of the wireless local area network security performance test platform 101, the description of the module of the security performance test server 104, and the description of the interface 108 of the security performance test platform of the wireless local area network and the security performance test server. The performance analysis module 401 and the penetration testing module 402, the functions of the wireless local area network security performance testing platform and the security performance testing server interface 108 include calling a vulnerability analysis function and calling a penetration analysis function.
下面结合无线局域网安全性能测试平台101、无线设备测试床102、无线接入点测试服务器103、安全性能测试服务器104和无线局域网安全性能测试平台与无线设备测试床接口106、无线局域网安全性能测试平台与无线接入点测试服务器接口107、无线局域网安全性能测试平台与安全性能测试服务器接口108来详细介绍具体实施方法。 Below in conjunction with wireless local area network security performance test platform 101, wireless equipment test bed 102, wireless access point test server 103, security performance test server 104 and wireless local area network security performance test platform and wireless equipment test bed interface 106, wireless local area network security performance test platform The interface with the wireless access point test server 107, the interface between the wireless local area network security performance test platform and the security performance test server 108 will introduce the specific implementation method in detail.
如图1所示,本无线局域网安全性能测试系统包含无线局域网安全性能测试平台101、无线设备测试床102、无线接入点测试服务器103、安全性能测试服务器104,测试前首先需要将待测无线设备105安装到无线设备测试床102,需要安全证书验证的协议,应该在无线设备测试床102里面安装对应的证书。 As shown in Figure 1, this wireless local area network security performance test system includes a wireless local area network security performance test platform 101, a wireless device test bed 102, a wireless access point test server 103, and a security performance test server 104. The device 105 is installed in the wireless device test bed 102 , and the protocols requiring security certificate verification should install corresponding certificates in the wireless device test bed 102 .
如图2、图3所示,待测无线设备105安装到无线设备测试床102,首先安装无线适配器驱动,然后在无线局域网安全性能测试平台101设备管理205中进行设备注册206,设备注册206首先需要填写待测无线设备105的厂商、型号、设备类型等信息,然后通过无线局域网安全性能测试平台与无线设备测试床接口106远程登录到无线设备测试床102运行配置模块209进行设备信息配置,无线局域网安全性能测试平台101发送提取设备信息指令,套接字通信模块210收到指令后调用功能模块211提取设备信息,然后将设备信息由套接字通信模块210返回给无线局域网安全性能测试平台101存入数据库,最后无线局域网安全性能测试平台101检测无线信道环境,发送配置信道参数给无线接入点服务器103,信道配置模块301对所有协议脚本文件进行信道参数配置,并将配置结果返回给无线局域网安全性能测试平台101。 As shown in Fig. 2 and Fig. 3, the wireless device 105 to be tested is installed on the wireless device test bed 102, the wireless adapter driver is first installed, and then the device registration 206 is performed in the device management 205 of the wireless local area network security performance testing platform 101, and the device registration 206 is first It is necessary to fill in information such as the manufacturer, model, and device type of the wireless device 105 to be tested, and then remotely log in to the wireless device test bed 102 through the wireless device test bed interface 106 to perform device information configuration. The LAN security performance testing platform 101 sends an instruction to extract device information, and the socket communication module 210 calls the function module 211 to extract the device information after receiving the instruction, and then returns the device information to the WLAN security performance testing platform 101 by the socket communication module 210 Stored in the database, finally the wireless LAN security performance testing platform 101 detects the wireless channel environment, sends configuration channel parameters to the wireless access point server 103, and the channel configuration module 301 performs channel parameter configuration to all protocol script files, and returns the configuration results to the wireless access point server 103. LAN security performance testing platform 101.
如图2、图3所示,待测无线设备105进行设备注册206之后,进行安全协议符合性验证,登录用户在无线局域网安全性能测试平台101选择所需验证协议,接着针对选择协议依次逐一进行安全协议符合性验证。首先,无线局域网安全性能测试平台101通过无线局域网安全性能测试平台与无线接入点测试服务器接口107向无线接入点测试服务器103发送启动测试环境指令,接入点配置模块302接收到指令后,按照指令对指定安全协议进行启动测试环境,并将启动结果返回给无线局域网安全性能测试平台101;然后通过无线局域网安全性能测试平台与无线设备测试床接口106远程登录到无线设备测试床102将待测无线设备105接入测试环境,无线局域网安全性能测试平台101向无线设备测试床102发送验证指令,套接字通信模块210接到指令调用功能模块211,并将结果返回给无线局域网安全性能测试平台101;最后,无线局域网安全性能测试平台101通过无线局域网安全性能测试平台与无线接入点测试服务器接口107向无线接入点测试服务器103发送关闭测试环境指令,接入点配置模块302接收到指令后,按照指令对指定安全协议进行关闭测试环境,并将关闭结果返回给无线局域网安全性能测试平台101。 As shown in Fig. 2 and Fig. 3, after the wireless device 105 to be tested performs device registration 206, the security protocol compliance verification is performed, and the login user selects the required verification protocol on the wireless local area network security performance testing platform 101, and then proceeds to the selected protocol one by one. Security protocol compliance verification. First, the wireless local area network security performance testing platform 101 sends the start test environment instruction to the wireless access point testing server 103 through the wireless local area network security performance testing platform and the wireless access point test server interface 107, after the access point configuration module 302 receives the instruction, According to the instructions, the specified security protocol is started to test the environment, and the startup result is returned to the wireless local area network security performance test platform 101; Test the wireless device 105 to access the test environment, the wireless LAN security performance test platform 101 sends a verification instruction to the wireless device test bed 102, the socket communication module 210 receives the instruction and calls the function module 211, and returns the result to the wireless LAN security performance test Platform 101; Finally, the WLAN security performance testing platform 101 sends the closing test environment instruction to the WAP testing server 103 through the WLAN security performance testing platform and the WAP test server interface 107, and the AP configuration module 302 receives After the instruction, close the test environment for the specified security protocol according to the instruction, and return the closing result to the wireless local area network security performance testing platform 101 .
如图2、图3、图4所示,待测无线设备105进行安全协议符合性验证之后,进行设备协议安全测试,登录用户在无线局域网安全性能测试平台101选择所需测试协议,接着针对选择协议依次逐一进行设备协议安全测试。对待测无线设备105进行脆弱性分析,无线局域网安全性能测试平台101通过无线局域网安全性能测试平台与安全性能测试服务器接口108调用脆弱性分析函数,脆弱性分析模块401对待测无线设备105进行脆弱性分析,并将脆弱性分析报告返回给无线局域网安全性能测试平台101存入数据库。对待测无线设备105进行渗透性分析,首先,无线局域网安全性能测试平台101通过无线局域网安全性能测试平台与无线接入点测试服务器接口107向无线接入点测试服务器103发送启动测试环境指令,接入点配置模块302接收到指令后,按照指令对指定安全协议进行启动测试环境,并将启动结果返回给无线局域网安全性能测试平台101;然后通过无线局域网安全性能测试平台与无线设备测试床接口106远程登录到无线设备测试床102将待测无线设备105接入测试环境;接着无线局域网安全性能测试平台101向无线设备测试床102发送开始网络连通性测试指令,套接字通信模块210接到指令调用功能模块211,并将结果返回给无线局域网安全性能测试平台101;然后,无线局域网安全性能测试平台101通过无线局域网安全性能测试平台与安全性能测试服务器接口108调用渗透性测试函数,渗透性测试模块402对待测无线设备105进行渗透性测试,并将测试告知无线局域网安全性能测试平台101;渗透性测试结束后,无线局域网安全性能测试平台101向无线设备测试床102发送结束网络连通性测试指令,套接字通信模块210接到指令调用功能模块211,并将结果返回给无线局域网安全性能测试平台101;最后,无线局域网安全性能测试平台101通过无线局域网安全性能测试平台与无线接入点测试服务器接口107向无线接入点测试服务器103发送关闭测试环境指令,接入点配置模块302接收到指令后,按照指令对指定安全协议进行关闭测试环境,并将关闭结果返回给无线局域网安全性能测试平台101。 As shown in Fig. 2, Fig. 3, and Fig. 4, after the wireless device 105 to be tested has carried out the security protocol compliance verification, the device protocol security test is carried out, and the login user selects the required test protocol on the wireless local area network security performance testing platform 101, and then for the selected The protocols are tested one by one for device protocol security. Perform vulnerability analysis on the wireless device 105 to be tested. The wireless local area network security performance testing platform 101 calls the vulnerability analysis function through the wireless local area network security performance testing platform and the security performance testing server interface 108. The vulnerability analysis module 401 performs vulnerability analysis on the wireless device 105 to be tested. Analyze, and return the vulnerability analysis report to the wireless local area network security performance testing platform 101 and store it in the database. The wireless device 105 to be tested is subjected to a penetration analysis. At first, the WLAN security performance testing platform 101 sends an instruction to start the test environment to the WAP testing server 103 through the WLAN security performance testing platform and the WAP testing server interface 107. After the entry point configuration module 302 receives the instruction, it starts the test environment for the specified security protocol according to the instruction, and returns the startup result to the WLAN security performance test platform 101; then through the WLAN security performance test platform and the wireless device test bed interface 106 Remotely log in to the wireless device test bed 102 and connect the wireless device 105 to be tested to the test environment; then the wireless local area network security performance test platform 101 sends an instruction to start the network connectivity test to the wireless device test bed 102, and the socket communication module 210 receives the instruction Call function module 211, and result is returned to WLAN security performance testing platform 101; Then, WLAN security performance testing platform 101 calls penetration testing function by WLAN security performance testing platform and security performance testing server interface 108, penetration testing Module 402 performs a penetration test on the wireless device 105 to be tested, and notifies the WLAN security performance testing platform 101 of the test; after the penetration test ends, the WLAN security performance testing platform 101 sends an end network connectivity test command to the wireless device test bed 102 , the socket communication module 210 receives an instruction to call the function module 211, and returns the result to the WLAN security performance testing platform 101; finally, the WLAN security performance testing platform 101 passes the WLAN security performance testing platform and the wireless access point test. The server interface 107 sends an instruction to close the test environment to the wireless access point test server 103. After receiving the instruction, the access point configuration module 302 closes the test environment to the specified security protocol according to the instruction, and returns the closing result to the WLAN security performance test. platform101.
无线局域网安全性能测试系统完成对待测无线设备105设备注册206、设备协议安全测试207和安全协议符合性测试208之后,通过报告管理203生成针对待测无线设备105的安全性能评估报告,并且可以将该报告输出html、word、pdf三种格式文件。 After the wireless local area network security performance testing system completes the wireless device 105 device registration 206, the device protocol security test 207 and the security protocol compliance test 208, the report management 203 generates a security performance evaluation report for the wireless device 105 to be tested, and can The report outputs files in three formats: html, word, and pdf.
如图5所示,本发明的整体工作流程如下: As shown in Figure 5, the overall workflow of the present invention is as follows:
1) 超级管理员登录无线局域网安全性能测试平台账户管理,注册用户,分配权限; 1) The super administrator logs in to the account management of the wireless LAN security performance testing platform, registers users, and assigns permissions;
2) 用户登录无线局域网安全性能测试平台,进入设备管理; 2) The user logs in to the wireless LAN security performance testing platform and enters the device management;
3)通过测试平台进行设备注册; 3) Device registration through the test platform;
4) 设备注册成功后,对设备进行安全协议符合性验证; 4) After the device is successfully registered, verify the device's security protocol compliance;
5) 验证结束后,对设备进行设备协议安全测试; 5) After the verification is over, conduct a device protocol security test on the device;
6)登录用户通过报告管理查看针对该待测无线设备进行安全协议符合性验证和设备协议安全测试的安全性评估报告。 6) The logged-in user can view the security evaluation report of the security protocol compliance verification and device protocol security test for the wireless device under test through the report management.
如图6所示,本发明的设备注册具体工作流程如下: As shown in Figure 6, the device registration specific workflow of the present invention is as follows:
1) 登录用户通过设备管理进入设备注册; 1) The logged-in user enters the device registration through device management;
2)填写设备基本信息,选择设备类型; 2) Fill in the basic information of the device and select the device type;
3) 远程登录到无线设备测试床,调用配置模块对待测设备进行配置,无线局域网安全性能测试平台提取设备信息; 3) Remotely log in to the wireless device test bed, call the configuration module to configure the device to be tested, and the wireless LAN security performance test platform extracts device information;
如图7所示,本发明的安全协议符合性验证具体工作流程如下: As shown in Figure 7, the specific workflow of the security protocol compliance verification of the present invention is as follows:
1) 登录用户选择所需验证协议,针对选择协议依次逐一进行安全协议符合性验证; 1) The login user selects the required verification protocol, and performs security protocol compliance verification for the selected protocols one by one;
2) 无线局域网安全性能测试平台通过套接字告知无线接入点测试服务器启动测试环境,接入点配置模块启动测试环境,并将配置结果返回无线局域网安全性能测试平台; 2) The wireless LAN security performance test platform informs the wireless access point test server to start the test environment through the socket, the access point configuration module starts the test environment, and returns the configuration results to the wireless LAN security performance test platform;
3)无线局域网安全性能测试平台远程登录到无线设备测试床,调用配置模块删除配置信息,然后将待测设备接入无线接入点测试服务器创建的无线测试环境; 3) The wireless LAN security performance test platform remotely logs in to the wireless device test bed, calls the configuration module to delete the configuration information, and then connects the device to be tested to the wireless test environment created by the wireless access point test server;
4)无线局域网安全性能测试平台通过套接字告知无线设备测试床进行安全协议符合性验证,无线设备测试床调用功能模块进行验证,并调用套接字通信模块将验证结果告知无线局域网安全性能测试平台; 4) The wireless LAN security performance test platform informs the wireless device test bed to perform security protocol compliance verification through the socket, the wireless device test bed calls the function module to verify, and calls the socket communication module to notify the wireless LAN security performance test of the verification result platform;
5)无线局域网安全性能测试平台通过套接字告知无线接入点测试服务器关闭测试环境,接入点配置模块关闭测试环境,并将配置结果返回无线局域网安全性能测试平台; 5) The wireless LAN security performance test platform informs the wireless access point test server to close the test environment through the socket, the access point configuration module closes the test environment, and returns the configuration results to the wireless LAN security performance test platform;
如图8所示,本发明的设备协议安全测试具体工作流程如下: As shown in Figure 8, the specific workflow of the device protocol security test of the present invention is as follows:
1) 无线局域网安全性能测试平台通过套接字告知安全性能测试服务器进行脆弱性分析,安全性能测试服务器调用脆弱性分析模块对待测无线设备进行脆弱性分析,并将结果返回给无线局域网安全性能测试平台; 1) The wireless LAN security performance test platform informs the security performance test server to perform vulnerability analysis through the socket, and the security performance test server calls the vulnerability analysis module to perform vulnerability analysis on the wireless device to be tested, and returns the result to the wireless LAN security performance test platform;
2)登录用户选择所需测试协议,针对选择协议依次逐一进行设备协议安全测试; 2) The logged-in user selects the required test protocol, and performs the device protocol security test one by one for the selected protocol;
3) 无线局域网安全性能测试平台通过套接字告知无线接入点测试服务器启动测试环境,接入点配置模块启动测试环境,并将配置结果返回无线局域网安全性能测试平台; 3) The wireless LAN security performance test platform informs the wireless access point test server to start the test environment through the socket, the access point configuration module starts the test environment, and returns the configuration results to the wireless LAN security performance test platform;
4)无线局域网安全性能测试平台远程登录到无线设备测试床,调用配置模块删除配置信息,然后将待测设备接入无线接入点测试服务器创建的无线测试环境; 4) The wireless local area network security performance test platform remotely logs in to the wireless device test bed, calls the configuration module to delete the configuration information, and then connects the device to be tested to the wireless test environment created by the wireless access point test server;
5)无线局域网安全性能测试平台通过套接字告知无线设备测试床开始进行设备协议安全测试,无线设备测试床调用功能模块对待测设备开始网络连通性测试,并调用套接字通信模块告知无线局域网安全性能测试平台开始进行网络连通性测试; 5) The wireless LAN security performance test platform informs the wireless device test bed to start the device protocol security test through the socket, the wireless device test bed calls the function module to start the network connectivity test of the device under test, and calls the socket communication module to inform the wireless LAN The security performance testing platform starts to conduct network connectivity testing;
6)无线局域网安全性能测试平台通过套接字告知安全性能测试服务器进行渗透性测试,安全性能测试服务器调用渗透性测试模块进行测试,渗透性测试结束后告知无线局域网安全性能测试平台; 6) The wireless LAN security performance testing platform informs the security performance testing server to conduct the penetration test through the socket, and the security performance testing server calls the penetration testing module for testing, and informs the wireless LAN security performance testing platform after the penetration test is completed;
7)无线局域网安全性能测试平台在渗透性测试结束后,通过套接字告知无线设备测试床结束设备协议安全测试,无线设备测试床调用功能模块提取网络连通性测试结果,并调用套接字通信模块将测试结果告知无线局域网安全性能测试平台; 7) After the penetration test of the wireless LAN security performance test platform, the wireless device test bed is notified through the socket to end the device protocol security test, and the wireless device test bed calls the function module to extract the network connectivity test results, and calls the socket communication The module informs the WLAN security performance testing platform of the test results;
无线局域网安全性能测试平台通过套接字告知无线接入点测试服务器关闭测试环境,接入点配置模块关闭测试环境,并将配置结果返回无线局域网安全性能测试平台。 The wireless local area network security performance testing platform informs the wireless access point test server to close the test environment through the socket, the access point configuration module closes the test environment, and returns the configuration result to the wireless local area network security performance testing platform.
以上所述仅为本发明的较佳实施方式,本发明的保护范围并不以上述实施方式为限,但凡本领域普通技术人员根据本发明所揭示内容所作的等效修饰或变化,皆应纳入权利要求书中记载的保护范围内。 The above descriptions are only preferred embodiments of the present invention, and the scope of protection of the present invention is not limited to the above embodiments, but all equivalent modifications or changes made by those of ordinary skill in the art according to the disclosure of the present invention should be included within the scope of protection described in the claims.
Claims (6)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210255233.7A CN102752174B (en) | 2012-07-23 | 2012-07-23 | System and method for testing safety performance of wireless local area network (WLAN) |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210255233.7A CN102752174B (en) | 2012-07-23 | 2012-07-23 | System and method for testing safety performance of wireless local area network (WLAN) |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102752174A CN102752174A (en) | 2012-10-24 |
| CN102752174B true CN102752174B (en) | 2015-01-28 |
Family
ID=47032080
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210255233.7A Expired - Fee Related CN102752174B (en) | 2012-07-23 | 2012-07-23 | System and method for testing safety performance of wireless local area network (WLAN) |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102752174B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102905256B (en) * | 2012-10-30 | 2014-10-29 | 东南大学 | Security assessment method for wireless local area network card based on penetration test |
| CN104363610A (en) * | 2014-10-30 | 2015-02-18 | 苏州佑瑞检测技术有限公司 | Wireless local area network safety assessment system |
| CN117041114B (en) * | 2023-08-21 | 2024-07-09 | 深圳国家金融科技测评中心有限公司 | Automatic test method and device for terminal communication protocol safety test |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1708942A (en) * | 2002-10-31 | 2005-12-14 | 艾利森电话股份有限公司 | Secure implementation and utilization of device-specific security data |
| CN101123538A (en) * | 2007-09-11 | 2008-02-13 | 东南大学 | Remote encryption supervision method of wireless local area network communication interface |
| CN101567830A (en) * | 2008-04-24 | 2009-10-28 | 株式会社日立制作所 | Content transfer system and method, and home server |
| CN101702807A (en) * | 2009-11-16 | 2010-05-05 | 东南大学 | A wireless security access authentication method |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7693084B2 (en) * | 2007-02-28 | 2010-04-06 | Microsoft Corporation | Concurrent connection testing for computation of NAT timeout period |
-
2012
- 2012-07-23 CN CN201210255233.7A patent/CN102752174B/en not_active Expired - Fee Related
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1708942A (en) * | 2002-10-31 | 2005-12-14 | 艾利森电话股份有限公司 | Secure implementation and utilization of device-specific security data |
| CN101123538A (en) * | 2007-09-11 | 2008-02-13 | 东南大学 | Remote encryption supervision method of wireless local area network communication interface |
| CN101567830A (en) * | 2008-04-24 | 2009-10-28 | 株式会社日立制作所 | Content transfer system and method, and home server |
| CN101702807A (en) * | 2009-11-16 | 2010-05-05 | 东南大学 | A wireless security access authentication method |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102752174A (en) | 2012-10-24 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104468267B (en) | A kind of electrical power distribution automatization system information security penetration testing method | |
| Zhang et al. | Breaking secure pairing of bluetooth low energy using downgrade attacks | |
| CN105450442B (en) | A kind of network topology investigation method and its system | |
| Bratus et al. | Active behavioral fingerprinting of wireless devices | |
| CN105227383B (en) | A kind of device of network topology investigation | |
| US11533615B2 (en) | Methods and systems of wireless sensor authentication | |
| CN100369446C (en) | Method for testing safety switch-in protocol conformity of turn-on point and system thereof | |
| Lu et al. | Research on WiFi penetration testing with Kali Linux | |
| CN104144163B (en) | Auth method, apparatus and system | |
| CN102905256B (en) | Security assessment method for wireless local area network card based on penetration test | |
| CN113014589A (en) | 5G communication safety test method and system | |
| CN111314921A (en) | Test system, method, device and storage medium based on wireless communication | |
| CN113315767A (en) | Electric power Internet of things equipment safety detection system and method | |
| Bettayeb et al. | IoT testbed security: Smart socket and smart thermostat | |
| CN102752174B (en) | System and method for testing safety performance of wireless local area network (WLAN) | |
| CN107124715B (en) | A security protection performance evaluation method suitable for power wireless private network terminals | |
| Mahadewa et al. | Homescan: scrutinizing implementations of smart home integrations | |
| Wahyudi et al. | Wireless penetration testing method to analyze WPA2-PSK system security and captive portal | |
| Yan et al. | Real-time identification of rogue WiFi connections in the wild | |
| CN102843690B (en) | Wireless access point-based penetration test system and test method thereof | |
| KR101816463B1 (en) | Authentication server testing method and system | |
| CN114124436A (en) | APN access trusted computing management system based on electric power Internet of things universal terminal | |
| Chen et al. | Security analysis of device binding for IP-based IoT devices | |
| CN107241461B (en) | MAC Address acquisition methods, gateway, network authentication apparatus and network system | |
| CN102104872A (en) | Method, device and system for securely accessing WAPI network |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20150128 Termination date: 20170723 |