林風臺灣大學：資訊工程學研究所賴彥丞Lai, Yen-ChengYen-ChengLai2007-11-262018-07-052007-11-262018-07-052004http://ntur.lib.ntu.edu.tw//handle/246246/53911近幾年來，無線區域網路以及存取裝置迅速的發展，使用者的數目急速增加，普及性亦漸增。透過無線區域網路存取之技術，使用者能夠在其無線訊號涵貌漸籉饇炾鴗瑰H時隨地進行存取網際網路之服務，尤其是在Hot Spot地區。隨著802.11 WLAN逐漸普及化，WLAN服務涵遢d圍勢必擴大，甚至成為公眾系統。整合WLAN 與GPRS/UMTS衍然成為未來的趨勢。然而，欲將WLAN升為公眾系統，仍有幾個議題仍需解決。 當使用者在不同的無線區域網路中想要連上無線區域網路時，由於無線區域網路的建置並不像個人通訊系統一樣，必須遵照一套共同的標準，因此往往需要設定不同的無線區域網路組態，及利用不同的方式進行認證才能存取該無線區域網路（例如延伸服務集合（ESSID）、認證方式、不同的帳號及密碼格式等），方能使用此無線區域網路。對使用者而言是非常不方便的，所以如何能讓無線存取裝置自動設定該無線區域網路之組態並進行認證便成為一個重要的議題。 針對此議題，本論文提出了一個GPRS-Based（一般封包式）無線區域網路自動認證及組態機制，透過此機制，使用者不再需要記住各種繁雜的無線網路的相關組態及認證方法，便可以在不同無線網路服務範圍使用其無線網路。除此之外，本機制也可以解決需多原先在無線區域網路的安全問題。最後，我們也設計並實作一個自動認證及組態平台（WACAP），以驗證此機制在實際商業營運之可行性。With the huge number of deployment of 802.11 wireless LAN (WLAN), the coverage area of WLAN, known as hot-spot, is increasing rapidly. In these WLAN hot-spots, people enjoy wireless Internet access with high-speed data transmission rate anytime and anywhere. As a result, it becomes a trend that WLAN serves as a public system for wireless Internet services. In the existing business operations of WLAN, a WLAN user must be the customer of various WLAN operators before gaining wireless Internet services. In order to access WLAN networks of different operators, the user typically goes through various login or authentication procedures manually with different account/password format. Also, the user must remember WLAN card configuration setups for different WLAN networks. It is clear that such exercise is not user-friendly. Hence, how to provide a mechanism that automates the authentication and WLAN configuration setup procedure is a critical issue. In this thesis, we propose an authentication and auto-configuration mechanism for WLAN based on short message service of mobile telecommunications network. Through this mechanism, user can access WLAN services without tedious authentication and configuration setup procedure while roaming among different WLAN networks. Also this mechanism can avoid the several security attacks in the 802.11 WLAN. In addition to introducing the detail of mechanisms, we have designed and implemented a prototypical platform, Wireless Auto-configuration and Authentication Platform (WACAP) that realize the mechanism.Contents 1 Introduction 11 1.1 General Radio Packet Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 1.2 IEEE 802.11 Wireless LAN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18 1.3 The iSMS System . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22 2 Authentication and Auto-configuration Mechanism 27 3 Implementation Issue ofWLR andWGW 35 4 Implementation of WACAP 41 4.1 The System Architecture of WACAP . . . . . . . . . . . . . . . . . . . . . . . . . 42 4.2 The Software Architecture of WACAP platform . . . . . . . . . . . . . . . . . . . 43 4.2.1 The Software Architecture of WACAP server . . . . . . . . . . . . . . . . 44 4.2.2 The Software Architecture of Wireless Gateway (WGW) . . . . . . . . . . 47 4.2.3 The Software Architecture of Mobile Terminal . . . . . . . . . . . . . . . 51 4.3 Authentication and Auto-Configuration Procedure in WACAP . . . . . . . . . . . 54 4.3.1 The Login Procedure on WACAP . . . . . . . . . . . . . . . . . . . . . . 55 4.3.2 The Logout Procedure on WACAP . . . . . . . . . . . . . . . . . . . . . . 59 5 Conclusion 65 List of Figures 1.1 The GPRS Architecture . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 1.2 The GPRS Interface between each nodes . . . . . . . . . . . . . . . . . . . . . . . 17 1.3 IEEE 802.11 Protocol Stack . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18 1.4 CSMA/CA mechanism(a)without RTC/CTS (B)with RTS/CTS . . . . . . . . . . . 21 1.5 The iSMS Architecture . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23 1.6 The iSMS Software Architecture . . . . . . . . . . . . . . . . . . . . . . . . . . . 24 2.1 The Network Architecture . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27 2.2 The Message Flow of Authentication and Auto-configuration Mechanism . . . . . 29 2.3 The WLAN Configuration Profile in the Short Message . . . . . . . . . . . . . . . 30 2.4 The Round Trip Elapsed Time Distribution for Phase I . . . . . . . . . . . . . . . 31 2.5 The Message Flow of Logout Procedure . . . . . . . . . . . . . . . . . . . . . . . 33 2.6 The Message Flow of MT-Originated Detection . . . . . . . . . . . . . . . . . . . 33 2.7 The Message Flow of WGW-Originated Detection . . . . . . . . . . . . . . . . . 34 3.1 WLR, iSMS Gateway, HLR, and LSC . . . . . . . . . . . . . . . . . . . . . . . . 36 3.2 The ESS service area in WLAN . . . . . . . . . . . . . . . . . . . . . . . . . . . 37 4.1 The System Architecture of WACAP . . . . . . . . . . . . . . . . . . . . . . . . . 42 4.2 The Software Architecture of WACAP Server . . . . . . . . . . . . . . . . . . . . 44 4.3 The class diagram of WACAP Server . . . . . . . . . . . . . . . . . . . . . . . . . 45 4.4 The Software Architecture of Wireless Gateway (WGW) . . . . . . . . . . . . . . 48 4.5 The class diagram of Wireless Gateway (WGW) . . . . . . . . . . . . . . . . . . . 50 4.6 The Software Architecture of User Device . . . . . . . . . . . . . . . . . . . . . . 52 4.7 The class diagram of User Device . . . . . . . . . . . . . . . . . . . . . . . . . . 53 4.8 The Login Procedure for authentication and auto-configuration in WACAP (Phase I) 56 4.9 The Login Procedure for authentication and auto-configuration in WACAP (Phase II) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 58 4.10 The Logout Procedure in WACAP . . . . . . . . . . . . . . . . . . . . . . . . . . 60 4.11 The Abnormal Logout Procedure in WACAP . . . . . . . . . . . . . . . . . . . . 62 List of Tables 1.1 IEEE 802.11 WLAN Standards . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22 4.1 The member functions of classes in the WACAP server . . . . . . . . . . . . . . . 47 4.2 The member functions of classes in the Wireless Gateway (WGW) . . . . . . . . . 51 4.3 The member functions of classes in the WACAP Client . . . . . . . . . . . . . . . 54875426 bytesapplication/pdfen-US認證無線區域網路簡訊服務無線分組交換技術GPRSWLANSMSAuthenticationthesishttp://ntur.lib.ntu.edu.tw/bitstream/246246/53911/1/ntu-93-R91922013-1.pdf