| 词条 | Simultaneous Authentication of Equals |
| 释义 |
In cryptography, Simultaneous Authentication of Equals (SAE) is a secure password-based authentication and password-authenticated key agreement method.[1] AuthenticationSAE is a variant of the Dragonfly Key Exchange defined in {{IETF RFC|7664}},[1] based on Diffie–Hellman key exchange using finite cyclic groups which can be a primary cyclic group or an elliptic curve.[2] The problem of using Diffie–Hellman key exchange is that it does not have an authentication mechanism. So the resulting key is influenced by a pre-shared key and the MAC addresses of both peers to solve the authentication problem. UseIEEE 802.11s{{main|IEEE 802.11s}}SAE was originally implemented for use between peers in IEEE 802.11s.[2] When peers discover each other (and security is enabled) they take part in an SAE exchange. If SAE completes successfully, each peer knows the other party possesses the mesh password and, as a by-product of the SAE exchange, the two peers establish a cryptographically strong key. This key is used with the "Authenticated Mesh Peering Exchange" (AMPE) to establish a secure peering and derive a session key to protect mesh traffic, including routing traffic. WPA3{{main|WPA3}}In January 2018, the Wi-Fi Alliance announced WPA3 as a replacement to WPA2.[3][4] The new standard uses 128-bit encryption in WPA3-Personal mode (192-bit in WPA3-Enterprise)[5] and forward secrecy.[6] The WPA3 standard also replaces the Pre-Shared Key exchange with Simultaneous Authentication of Equals as defined in IEEE 802.11-2016 resulting in a more secure initial key exchange in personal mode.[7][8] The Wi-Fi Alliance also claims that WPA3 will mitigate security issues posed by weak passwords and simplify the process of setting up devices with no display interface.[9] See also
References1. ^{{Cite web|url=https://www.cso.com.au/article/643086/wi-fi-security-gets-major-update-experts-warn-it-big-enough/|title=Wi-Fi security gets a major update, but experts warn it’s not big enough|website=www.cso.com.au}} 2. ^1 2 {{Cite web|url=https://ieeexplore.ieee.org/document/4622764|title=Simultaneous Authentication of Equals: A Secure, Password-Based Key Exchange for Mesh Networks|date=Aug 20, 2008|pages=839–844|via=IEEE Xplore|doi=10.1109/SENSORCOMM.2008.131}} 3. ^{{cite web |url=https://www.darkreading.com/endpoint/wi-fi-alliance-launches-wpa2-enhancements-and-debuts-wpa3/d/d-id/1330762| title=Wi-Fi Alliance Launches WPA2 Enhancements and Debuts WPA3| author=Dawn Kawamoto | publisher=DARKReading}} 4. ^{{cite web|url=https://www.techspot.com/news/72656-wpa3-protocol-make-public-wi-fi-hotspots-lot.html|title=WPA3 protocol will make public Wi-Fi hotspots a lot more secure|publisher=TechSpot}} 5. ^{{Cite web|url=https://www.wi-fi.org/news-events/newsroom/wi-fi-alliance-introduces-wi-fi-certified-wpa3-security|title=Wi-Fi Alliance® introduces Wi-Fi CERTIFIED WPA3™ security {{!}} Wi-Fi Alliance|website=www.wi-fi.org|language=en|access-date=2018-06-26}} 6. ^{{Cite news|url=https://www.wired.com/story/wpa3-wi-fi-security-passwords-easy-connect/|title=The Next Generation of Wi-Fi Security Will Save You From Yourself|work=WIRED|access-date=2018-06-26|language=en-US}} 7. ^{{cite web | title=Wi-Fi CERTIFIED WPA3™ Program | url=https://www.wi-fi.org/discover-wi-fi/security | accessdate=2018-06-27}} 8. ^{{Cite web|url=https://spectrum.ieee.org/tech-talk/telecom/security/everything-you-need-to-know-about-wpa3|title=Wi-Fi Gets More Secure: Everything You Need to Know About WPA3|date=Sep 6, 2018|website=IEEE Spectrum: Technology, Engineering, and Science News}} 9. ^{{Cite web|url=https://www.wi-fi.org/news-events/newsroom/wi-fi-alliance-introduces-security-enhancements|title=Wi-Fi Alliance® introduces security enhancements {{!}} Wi-Fi Alliance|website=www.wi-fi.org|language=en|access-date=2018-01-09}} Further reading
6 : Password authentication|Authentication protocols|Key-agreement protocols|Computer network security|Cryptographic protocols|IEEE 802.11 |
| 随便看 |
|
开放百科全书收录14589846条英语、德语、日语等多语种百科知识,基本涵盖了大多数领域的百科知识,是一部内容自由、开放的电子版国际百科全书。