802.11 Four-way handshake Messages

最新推荐文章于 2024-06-27 16:28:25 发布
原创 最新推荐文章于 2024-06-27 16:28:25 发布 · 3.4k 阅读 · 1 ·
CC 4.0 BY-SA版权
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
文章标签:

#authentication #encryption #validation #gtk #processing #less

本文详细介绍了EAPOL (Extensible Authentication Protocol over LAN)密钥帧中的4-Way Handshake过程,包括密钥计算、验证、格式及应用场景,重点解析了密钥数据的加密和封装过程。


1.  4-way handshake sequence


2. Key Heirarchy



The EAPOL encryption key is the middle 128 bits of the PTK value.  

And the first 128 bits of the PTK (KCK), is used in the computation(and validation) of the EAPOL frame MIC field value (4way handshake Message 1/2). 


3. EAPOL Frame format



4 Key Data Format


Key data may be zero or more InformationElement(s) (such as the RSN information element), and zero or more key dataencapsulation(s) (KDEs) (such as GTK(s)). 


4.1 RSN Information 


4.2 GTK 

If theEncrypted Key Data subfield (of the Key Information field) is set, the entireKey Data field shall be encrypted. If the Key Data field uses the NIST AES keywrap, then the Key Data field shall be padded before encrypting if the key datalength is less than 16 octets or if it is not a multiple of 8. The paddingconsists of appending a single octet 0xdd followed by zero or more 0x00 octets.When processing a received EAPOL-Key message, the receiver shall ignore thistrailing padding.  Key Data fields that are encrypted but do not containthe GroupKey or STAKey KDE, shall be accepted.

If the GroupKey or STAKey KDE is included in the Key Data field but theKey data field is not encrypted the EAPOL-Key frames shall be ignored.



5. Sample 4-way Handshake

5.1 Message 1

The Authenticator sends an EAPOL-Key frame containing an ANonce.



Key data is zero.


5.2 Message 2

The Supplicant derives a PTK from ANonce and SNonce.

The Supplicant sends an EAPOL-Key frame containing SNonce, the RSN information element

 from the Association Request frame and a MIC.


MIC is the KCK (The first 128 bits in the PTK).


Key data is RSN Information.

802.1X authentication, CCMP pairwise dna group cipher suites.

30, // information element id

14, // length

01 00, // Version 1

00 0F AC 04, // CCMP as group cipher suite

01 00, // pairwise cipher suite count

00 0F AC 04, // CCMP as pairwise cipher suite

01 00, // authentication count

00 0F AC 02, // authentication type is PSK

08 00, // PSK replay counter


5.3 Message 3

The Authenticator derives PTK from ANonce and SNonce and validates the MIC in the EAPOL Key frame

The Authenticator sends an EAPOL-Key frame containing ANonce, the RSN from its Beacon or Probe

Response messages, MIC whether to install the temporal keys, and the encapsulated GTK



Should the MIC data  be same with the one in Message 2   ?!

Key data is RSN Information + GTK,  and the data is encapsulated by using of the AES algrithm with the KEK(The middle 128 bits in PTK).


5.4  Message 4

To be added.



【WLAN】【调试】使用wireshark过滤802.11各种报文(58种,全网最全Display Filter)
一介草民,只为生活。
07-26 5489
- 在日常的WIFI软件开发调试中,经常要对抓到的海量802.11报文进行分析,此时需要根据具体的问题过滤某种类型的报文。 - 使用wireshark过滤报文时,通常可选中报文中某一特定字段,然后右键“作为过滤器应用”进行过滤。 - 但有时不一定能在wireshark中很快找到对应的报文,此时,搞清楚wireshark过滤的条件就很有必要了,本文将关注于802.11报文特有的一些帧过滤条件。...............
TCP连接过程的“三次握手(Three-Way Handshake)”和“四次挥手(Four-Way Wavehand)”
wujiale666的博客
08-04 3005
最近在研究HTTP协议,对其中的三次握手和四次挥手做了详细地调研,整理如下: 首先,先来看一下OSI七层模型和TCP/IP四次模型对比图,可以发现TCP协议是对应第四层传输层的网络协议,下面分析其主要过程。 TCP三次握手(Three-Way Handshake) TCP(Transmission Control Protocol)—传输控制协议,作用于第四传输层,是一种面向连接的、可靠的、基于字节流的传输层通信协议。主要解决如何在IP层之上可靠的传递数据包,使在网络上的另一端收到发端发出的所有...
(七十二)IEEE 802.11i2004——Four-way handshake
JT的专栏
07-19 1290
转载: 1.https://en.wikipedia.org/wiki/IEEE_802.11i-2004 2.https://en.wikipedia.org/wiki/Cryptographic_nonce 3.https://en.wikipedia.org/wiki/WLAN_Authentication_and_Privacy_Infrastructure   IEEE 802...
WPA 4次握手
热门推荐
红心地瓜的专栏
06-19 1万+
分析wpa/wpa2 4-way handshake的过程和原理
wifi 4-Way Handshake / WIFI 4次握手协议
01-05
老外对WiFi 4次握手讲解,这是我看过的最佳版本,分享给大家。
4 way handshake
zjjdyb的专栏
11-12 2416
如果抓包,那么4-way handshake就是里面的四个EAPOL-KEY的包。如果是RSN方式那么GTK的2-way handshake其实也包含在这四个包里面,最后两条就是。 4-way的分析我翻译自802.11i-2004 8.5.2.2,因为这个东西三言两语是说不清楚的。网上的那些只能作为科普而不可以用来精确的理解。 8.5.2.2 EAPOL-key Frame notatio
CWSP – 4 Way Handshake
lixiangminghate的专栏
03-08 616
In this post we will go through4-Way Handshakeprocess. This is described in Chapter 5 of CWSP Official Study Guide. Page 194 of this book shows the below RSN key hierarchy. Also watchthis CWNP vide...
WIFI系列协议--802.11s--Mesh网络
香蕉一号
06-15 1万+
WIFI系列协议--802.11s--Mesh网络1.概述2.定义 1.概述 定义无线多跳通信支持无线LAN网格拓扑所必需的MAC过程。 2.定义 名称 说明 basic service set (BSS)
计算机网络ieee802.3标准,IEEE 802.3-2018 - IEEE Standard for Ethernet
weixin_33146151的博客
07-28 2348
Working Group802.3 WG - Ethernet Working GroupWorking Group ChairDavid LawIEEE Program ManagerThis amendment to IEEE Std 802.3-2002 as amended by IEEE Std 802.3ae-2002, IEEE Std 802.3af-2003 and IEEE ...
802.11ax_For_Dummies_Aerohive_Special_Edition
12-11
802.11ax is the next fast-approaching Institute of Electrical and Electronics Engineers (IEEE) standard that addresses today’s biggest Wi-Fi challenges: high density and performance. It addresses ...
802.1X 的wpa认证流程
HTTP 404
12-23 9656
<br />wpa的4-Way Handshake<br /> WPA系统在工作的时候,先由AP向外公布自身对WPA的支持,在Beacons、Probe Response等报文中使用新定义的WPA信息元素(Information Element),这些信息元素中包含了AP的安全配置信息(包括加密算法和安全配置等信息)。STA根据收到的信息选择相应的安全配置,并将所选择的安 全配置表示在其发出的Association Request和Re-Association Request报文中。WPA通过这种方式来实现
【计算机网络】三次握手与四次挥手
m0_73845616的博客
10-17 699
当关闭连接时,客户端会向服务端发送FIN时,表示客户端不再发送数据了,但还是能接收数据。而服务端接收到FIN报文后,先回一个ACK应答报文,这时的服务端可能还有数据需要处理和发送,等服务端不再发送数据时,才会发送FIN报文给客户端来表示同意现在关闭连接。之后,客户端与服务端就建立起了连接,但在客户端与服务端建立起连接时为什么要三次握手,两次不行吗?其实很明显,当进行两次握手时,客户端的起始序列号可以确定,但服务端的起始序列号将得不到确认。在回答三次握手与四次挥手之前我们首先对TCP有一定的理解。
(一百二十七)4-Way Handshake 学习
JT的专栏
03-01 1644
学习: https://wlan1nde.wordpress.com/2014/10/27/4-way-handshake/ 1. 4-Way Handshake概要 For AP and client exchanging encrypted data, both need to have the right key(s) installed. Each time a clie...
WPA-PSK 4-way handshake 四次握手过程
流风回雪的博客
09-25 3962
3.4.2 第一次握手  AP广播SSID,AP_MAC(AA)→STATION STATION端  使用接受到的SSID,AP_MAC(AA)和passphares使用同样算法产生PSK   3.4.3 第二次握手  STATION发送一个随机数SNonce,STATION_MAC(SA)→AP AP端  接受到SNonce,STATION_MAC(SA)后产生一个随机数ANonce
wpa_supplicant 详解(9) - 4 way handshake
流风回雪的博客
05-31 770
一文让你轻松理解WLAN 4-Way Handshake里的AKM
1042484520@qq.com(邮箱)
06-27 2172
今天我们来理解下AKM,AKM(Authentication and Key Management)在Wi-Fi安全中是指认证和密钥管理协议。它是用于确定Wi-Fi网络中的认证方式以及如何生成和管理加密密钥的机制。AKM协议在Wi-Fi安全协议(如WPA、WPA2、WPA3)中扮演着关键角色,确保无线网络的安全性和完整性。
三次握手和四次挥手
RoninLJH的博客
07-16 419
网络层,可以实现两个主机之间的通信。其实质,即真正进行通信的实体是在主机的进程中,是一个主机中的一个进程与另外一个主机中的一个进程在交换数据。IP协议虽然能把数据报文送到目的主机,但是并没有交付给主机的具体应用进程。而端到端的通信才应该是应用进程之间的通信。 UDP,在传送数据前不需要先建立连接,远地的主机在收到UDP报文后也不需要给出任何确认。虽然UDP不提供可靠交付,但是正是因为这样,省去和很多的开销,使得它的速度比较快,比如一些对实时性要求较高的服务,就常常使用的是UDP。对应的应用层的协议主要有 D
三次握手四次挥手详解
weixin_44857403的博客
07-26 2485
相对于SOCKET开发者,TCP创建过程和链接折除过程是由TCP/IP协议栈自动创建的.因此开发者并不需要控制这个过程.但是对于理解TCP底层运作机制,相当有帮助. 而且对于有网络协议工程师之类笔试,几乎是必考的内容.企业对这个问题热情之高,出乎我的意料:-)。有时上午面试前强调这个问题,并重复讲一次,下午几乎每一个人都被问到这个问题。 因此在这里详细解释一下这两个过程。 第一部分:TCP三次握手及四次挥手 TCP三次握手 所谓三次握手(Three-way Handshake),是指建立一个TCP连接时,需
仿照这个代码修改,将shujuf1.txt替换为shujuf2.txt,画出有四条竖向折痕。代码:# _*_ coding: utf-8 _*_ import ezdxf # type: ignore import matplotlib.font_manager as fm # type: ignore import matplotlib.pyplot as plt # type: ignore import numpy as np # type: ignore import pandas as pd import ezdxf import numpy as np import ezdxf import numpy as np # 读取节点坐标文件并放大400倍 file_path = r"D:\曲纹折纸\文献\Codes\Codes\shujuf1.txt" points = [] line_count = 0 scale_factor = 400 # 缩放因子 with open(file_path, 'r') as f: for line in f: line_count += 1 stripped_line = line.strip() if not stripped_line: print(f"跳过第 {line_count} 行(空行)") continue parts = stripped_line.split(',') if len(parts) < 2: print(f"警告:第 {line_count} 行格式错误 - '{line.strip()}'") continue try: # 读取坐标并放大400倍 x = float(parts[0]) * scale_factor y = float(parts[1]) * scale_factor points.append((x, y)) except ValueError as e: print(f"错误处理第 {line_count} 行: {e} - '{line.strip()}'") # 验证数据完整性 if not points: raise ValueError("未读取到有效坐标数据") if len(points) % 3 != 0: print(f"警告:节点总数 {len(points)} 不能被3整除,可能影响分组") # 将节点分为三组(左、中、右) num_points = len(points) // 3 left = points[:num_points] middle = points[num_points:2*num_points] right = points[2*num_points:] print(f"成功读取 {len(points)} 个坐标点") print(f"缩放因子: {scale_factor}x") print(f"左边界: {len(left)} 点, 中间: {len(middle)} 点, 右边界: {len(right)} 点") # 创建DXF文档 doc = ezdxf.new(dxfversion='R2010') msp = doc.modelspace() # 添加图层 doc.layers.add('VERTICAL', color=1) # 红色竖边 doc.layers.add('HORIZONTAL', color=2) # 黄色水平线 # 绘制三条竖边 for edge, layer_name in zip([left, middle, right], ['VERTICAL']*3): msp.add_lwpolyline( points=edge, dxfattribs={'layer': layer_name, 'closed': False} ) # 绘制水平折痕线 for i in range(min(len(left), len(middle), len(right))): if i < len(left) and i < len(middle): msp.add_line( start=left[i], end=middle[i], dxfattribs={'layer': 'HORIZONTAL'} ) if i < len(middle) and i < len(right): msp.add_line( start=middle[i], end=right[i], dxfattribs={'layer': 'HORIZONTAL'} ) # 保存DXF文件 output_path = r"D:\曲纹折纸\文献\Codes\Codes\output_scaled.dxf" doc.saveas(output_path) print(f"缩放后的DXF文件已生成: {output_path}") shujuf1:0.000000,0.100000 0.050000,0.100000 0.099999,0.100000 0.149995,0.100002 0.199979,0.100008 0.249939,0.100029 0.299859,0.100079 0.349720,0.100184 0.399494,0.100379 0.449153,0.100715 0.498659,0.101255 0.547972,0.102082 0.597043,0.103296 0.645816,0.105018 0.694224,0.107389 0.742188,0.110572 0.789614,0.114749 0.836387,0.120124 0.882365,0.126915 0.927376,0.135350 0.971205,0.145667 1.013592,0.158094 1.054218,0.172842 1.092701,0.190087 1.128588,0.209945 1.161360,0.232443 1.190435,0.257486 1.215189,0.284819 1.234993,0.313987 1.249269,0.344301 1.257569,0.374819 0.000000,0.000000 0.050000,0.000000 0.100000,0.000000 0.150000,0.000002 0.200000,0.000008 0.250000,0.000029 0.300000,0.000079 0.350000,0.000184 0.399999,0.000381 0.449998,0.000719 0.499995,0.001264 0.549988,0.002102 0.599973,0.003339 0.649942,0.005103 0.699882,0.007549 0.749772,0.010860 0.799579,0.015247 0.849252,0.020955 0.898716,0.028260 0.947860,0.037471 0.996530,0.048927 1.044510,0.062993 1.091509,0.080055 1.137137,0.100503 1.180886,0.124711 1.222107,0.153009 1.259991,0.185640 1.293555,0.222700 1.321641,0.264067 1.342944,0.309302 1.356067,0.357549 0.000000,-0.100000 0.050000,-0.100000 0.100001,-0.100000 0.150005,-0.099998 0.200021,-0.099992 0.250061,-0.099971 0.300140,-0.099921 0.350280,-0.099815 0.400505,-0.099618 0.450844,-0.099278 0.501332,-0.098727 0.552005,-0.097877 0.602903,-0.096618 0.654068,-0.094812 0.705540,-0.092291 0.757356,-0.088852 0.809544,-0.084255 0.862118,-0.078214 0.915066,-0.070394 0.968344,-0.060409 1.021854,-0.047814 1.075428,-0.032107 1.128800,-0.012732 1.181573,0.010918 1.233183,0.039476 1.282854,0.073575 1.329548,0.113794 1.371921,0.160582 1.408290,0.214146 1.436619,0.274302 1.454564,0.340278 shujuf2:0.000000,0.100000 0.050000,0.100000 0.099999,0.100000 0.149995,0.100002 0.199979,0.100008 0.249939,0.100029 0.299859,0.100079 0.349720,0.100184 0.399494,0.100379 0.449153,0.100715 0.498659,0.101255 0.547972,0.102082 0.597043,0.103296 0.645816,0.105018 0.694224,0.107389 0.742188,0.110572 0.789614,0.114749 0.836387,0.120124 0.882365,0.126915 0.927376,0.135350 0.971205,0.145667 1.013592,0.158094 1.054218,0.172842 1.092701,0.190087 1.128588,0.209945 1.161360,0.232443 1.190435,0.257486 1.215189,0.284819 1.234993,0.313987 1.249269,0.344301 1.257569,0.374819 0.000000,0.000000 0.050000,0.000000 0.100000,0.000000 0.150000,0.000002 0.200000,0.000008 0.250000,0.000029 0.300000,0.000079 0.350000,0.000184 0.399999,0.000381 0.449998,0.000719 0.499995,0.001264 0.549988,0.002102 0.599973,0.003339 0.649942,0.005103 0.699882,0.007549 0.749772,0.010860 0.799579,0.015247 0.849252,0.020955 0.898716,0.028260 0.947860,0.037471 0.996530,0.048927 1.044510,0.062993 1.091509,0.080055 1.137137,0.100503 1.180886,0.124711 1.222107,0.153009 1.259991,0.185640 1.293555,0.222700 1.321641,0.264067 1.342944,0.309302 1.356067,0.357549 0.000000,-0.100000 0.050000,-0.100000 0.100001,-0.100000 0.150005,-0.099998 0.200021,-0.099992 0.250061,-0.099971 0.300140,-0.099921 0.350280,-0.099815 0.400505,-0.099618 0.450844,-0.099278 0.501332,-0.098727 0.552005,-0.097877 0.602903,-0.096618 0.654068,-0.094812 0.705540,-0.092291 0.757356,-0.088852 0.809544,-0.084255 0.862118,-0.078214 0.915066,-0.070394 0.968344,-0.060409 1.021854,-0.047814 1.075428,-0.032107 1.128800,-0.012732 1.181573,0.010918 1.233183,0.039476 1.282854,0.073575 1.329548,0.113794 1.371921,0.160582 1.408290,0.214146 1.436619,0.274302 1.454564,0.340278 -0.000000,-0.200000 0.050000,-0.200000 0.100003,-0.200000 0.150016,-0.199998 0.200055,-0.199992 0.250142,-0.199971 0.300311,-0.199920 0.350603,-0.199815 0.401068,-0.199616 0.451765,-0.199274 0.502763,-0.198717 0.554138,-0.197855 0.605974,-0.196571 0.658362,-0.194720 0.711396,-0.192119 0.765169,-0.188547 0.819772,-0.183731 0.875282,-0.177343 0.931753,-0.168992 0.989203,-0.158209 1.047593,-0.144444 1.106798,-0.127059 1.166578,-0.105321 1.226526,-0.078408 1.286019,-0.045426 1.344148,-0.005439 1.399641,0.042471 1.450789,0.099101 1.495372,0.164988 1.530620,0.240188 1.553061,0.323007 0.000000,-0.300000 0.050000,-0.300000 0.100004,-0.300000 0.150021,-0.299998 0.200076,-0.299992 0.250203,-0.299971 0.300452,-0.299920 0.350883,-0.299814 0.401573,-0.299615 0.452612,-0.299270 0.504101,-0.298708 0.556158,-0.297834 0.608910,-0.296528 0.662497,-0.294634 0.717067,-0.291958 0.772772,-0.288257 0.829763,-0.283230 0.888182,-0.276508 0.948149,-0.267639 1.009746,-0.256076 1.072992,-0.241165 1.137808,-0.222130 1.203980,-0.198063 1.271093,-0.167928 1.338468,-0.130568 1.405062,-0.084744 1.469377,-0.029202 1.529337,0.037212 1.582189,0.115361 1.624392,0.205449 1.651744,0.306830
最新发布
10-08
最后,保存的dxf文件名可以修改一下,比如改为"output_scaled_four.dxf",以避免覆盖原来的文件。 我们按照要求修改代码,并添加必要的注释。 我将修改代码以适应`shujuf2.txt`文件中的四条折痕线数据,以下是...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值