WPS触发方式梳理

本文详细介绍了Wi-Fi Simple Configuration (WPS) 的三种触发方式:PBC(Push Button Configuration)、Supplicant PIN 和 AP PIN。PBC通过物理或软件按钮触发,Supplicant PIN由设备生成PIN码进行配对,而AP PIN则是AP产生PIN码供其他设备输入。在802.1X连接过程中,各设备会声明相应角色。WPS协议在EAP消息交互中完成配置信息的传递。
摘要由CSDN通过智能技术生成

本文以《Wi-Fi Simple Configuration Technical Specification Version 2.0.5》为参考。

从使用场景来说,WPS有三种触发方式:

  • PBC (Push Button Configuration)
  • Supplicant PIN (Personal Identification Number, device password)
  • AP PIN

PBC - 指在enrolle和registrar上通过物理按钮触发的方式,也可以通过软件,调用与按钮触发相同的处理逻辑开启。

Supplicant PIN - supplicant端,比如手机、无线网卡等,产生PIN码,registrar端输入相同PIN码完成自动配置流程。此时,supplicant作为enrollee。在802.1X连接初始化时,其会在EAP-Response/Identity中声明为"WFA-SimpleConfig-Enrollee-1-0"。所谓PIN码,其实就是一个由4或8位数字组成的设备密码(WSC文档中为device password),需要根据特定的算法规则生成。

AP PIN - AP端产生PIN码,supplicant端输入相同的PIN码。此时,supplicant作为registrar注册到AP。在802.1X连接初始化时,其会在EAP-Response/Identity中声明为"WFA-SimpleConfig-Registrar-1-0"。比如,无线路由器(AP)产生PIN码,在无线网卡(STA)上输入相同的PIN码,此时,STA为registrar,AP类似enrollee,在EAP消息交互中,

1 Introduction ........................................................................................................................... 11 1.1 Purpose .................................................................................................................. 11 1.2 Scope ..................................................................................................................... 11 1.3 Supported Usage Models ...................................................................................... 11 1.3.1 Primary Usage Models .......................................................................................... 11 1.3.2 Secondary Usage Models ...................................................................................... 12 1.4 Mental Model ........................................................................................................ 12 1.5 Design Approach .................................................................................................. 12 1.6 Solution Flexibility ............................................................................................... 12 1.7 User Experience .................................................................................................... 13 1.7.1 In-band Setup ........................................................................................................ 13 1.7.2 Out-of-Band Setup ................................................................................................ 14 2 References ............................................................................................................................. 15 3 Definitions............................................................................................................................. 16 4 Core Architecture .................................................................................................................. 17 4.1 Components and Interfaces ................................................................................... 17 4.1.1 Architectural Overview ......................................................................................... 17 4.1.2 Interface E ............................................................................................................. 18 4.1.3 Interface M ............................................................................................................ 19 4.1.4 Interface A ............................................................................................................ 20 4.2 Registration Protocol ............................................................................................ 20 4.3 Security Overview ................................................................................................ 22 4.3.1 In-band Configuration ........................................................................................... 23 4.3.2 Guidelines and Requirements for PIN values ....................................................... 25 4.3.3 Out-of-Band Configuration ................................................................................... 26 5 Initial WLAN Setup .............................................................................................................. 27 5.1 Standalone AP ....................................................................................................... 27 5.2 AP With an External Registrar ............................................................................. 28 5.2.1 EAP-based Setup of External Registrar ................................................................ 30 5.2.2 Ethernet-based Setup of External Registrar .......................................................... 32 6 Adding Member Devices ...................................................................................................... 33 Wi-Fi Simple Configuration Technical Specification v2.0.2 © 2011 Wi-Fi Alliance. All Rights Reserved. Used with the permission of the Wi-Fi Alliance under the terms as stated in this document. Page 4 of 154 6.1 In-band Setup Using a Standalone AP/Registrar .................................................. 34 6.2 In-band Setup Using an External Registrar .......................................................... 35 6.2.1 PIN based setup - External Registrar trigger first ................................................. 35 6.2.2 PBC based setup – External Registrar trigger first ............................................... 37 6.2.3 PIN based setup – Enrollee trigger first ................................................................ 38 6.2.4 PBC based setup – Enrollee trigger first ............................................................... 40 6.3 In-band Setup Using Multiple External Registrars ............................................... 41 6.4 Secure Setup with Legacy Enrollee ...................................................................... 44 6.4.1 Mental model mapping ......................................................................................... 44 7 Registration Protocol Definition ........................................................................................... 45 7.1 Registration Protocol Initiation ............................................................................. 45 7.2 Registration Protocol Messages ............................................................................ 47 7.2.1 Optional Parameters .............................................................................................. 49 7.2.2 Validation of Configuration Data ......................................................................... 49 7.3 Key Derivation ...................................................................................................... 50 7.4 Proof-of-possession of Device Password.............................................................. 52 7.4.1 PIN Checksums ..................................................................................................... 53 7.4.2 Device Password Splitting .................................................................................... 54 7.4.3 Device Password Usage in M1 and M2 ................................................................ 54 7.5 Key Wrap Algorithm ............................................................................................ 55 7.6 Key Summary and Classification .......................................................................... 56 7.7 EAP Transport of Registration Protocol ............................................................... 57 7.7.1 EAP Message Framing ......................................................................................... 58 7.7.2 EAP Messages ...................................................................................................... 60 7.7.3 EAP State Machine for Enrollee Registration ...................................................... 61 7.7.4 EAP State Machine for Adding an External Registrar ......................................... 62 7.8 UPnP Transport of Registration Protocol ............................................................. 63 7.9 Version Negotiation .............................................................................................. 64 8 Message Encoding ................................................................................................................ 65 8.1 Wi-Fi Simple Configuration TLV Data Format ................................................... 65 8.2 802.11 Management Frames ................................................................................. 66 8.2.1 Beacon Frame (C) ................................................................................................. 67 8.2.2 Association Request and Reassociation Request .................................................. 68 Wi-Fi Simple Configuration Technical Specification v2.0.2 © 2011 Wi-Fi Alliance. All Rights Reserved. Used with the permission of the Wi-Fi Alliance under the terms as stated in this document. Page 5 of 154 8.2.3 Association Response and Reassociation Response ............................................. 69 8.2.4 Probe Request (D-E or D-R) ................................................................................. 69 8.2.5 Probe Response (D-AP/Registrar) ........................................................................ 70 8.3 Registration Protocol Message Definitions .......................................................... 71 8.3.1 Message M1 .......................................................................................................... 72 8.3.2 Message M2 .......................................................................................................... 73 8.3.3 Message M2D ....................................................................................................... 74 8.3.4 Message M3 .......................................................................................................... 75 8.3.5 Message M4 .......................................................................................................... 75 8.3.6 Message M5 .......................................................................................................... 76 8.3.7 Message M6 .......................................................................................................... 76 8.3.8 Message M7 .......................................................................................................... 77 8.3.9 Message M8 .......................................................................................................... 78 8.3.10 WSC_ACK Message ............................................................................................ 80 8.3.11 WSC_NACK Message.......................................................................................... 80 8.3.12 WSC_Done Message ............................................................................................ 80 8.4 AP Settings Message Definitions.......................................................................... 81 8.4.1 SetSelectedRegistrar Message .............................................................................. 81 9 Security Configuration Requirements ................................................................................... 83 10 NFC Out-of-Band Interface Specification ............................................................................ 84 10.1 Overview ............................................................................................................... 84 10.2 NFC Usage Models ............................................................................................... 84 10.2.1 Password Token .................................................................................................... 85 10.2.2 Configuration Token ............................................................................................. 85 10.2.3 Connection Handover ........................................................................................... 86 10.3 Requirements for NFC Out-of-Band Support ....................................................... 89 10.3.1 Enrollee Requirements .......................................................................................... 89 10.3.2 Registrar Requirements ......................................................................................... 89 10.4 Informative: NFC Forum Specifications .............................................................. 89 10.4.1 NFC Data Exchange Format (NDEF) Specification ............................................. 89 10.4.2 NFC Forum Tag Operation Specifications ........................................................... 89 10.4.3 Logical Link Control Protocol (LLCP) Specification .......................................... 90 10.4.4 Connection Handover Specification ..................................................................... 90 Wi-Fi Simple Configuration Technical Specification v2.0.2 © 2011 Wi-Fi Alliance. All Rights Reserved. Used with the permission of the Wi-Fi Alliance under the terms as stated in this document. Page 6 of 154 11 Push Button Configuration ................................................................................................... 91 11.1 Introduction ........................................................................................................... 91 11.2 User Experience .................................................................................................... 91 11.3 PBC Technical Description ................................................................................... 93 11.4 PBC Security Considerations ................................................................................ 96 12 Data Element Definitions ...................................................................................................... 98 13 Protocol Implementation Conformance Specification (PICS) ........................................... 130 Annex A - Out-of-Band Channel Considerations ................................................................. 134 Annex B - Security Analysis of Registration Protocol ......................................................... 136 Out-Of-Band Channels ........................................................................................................... 136 Out-of-band Channel Characteristics ...................................................................................... 137 Annex C - Out-of-band Setup Using a Standalone AP/Registrar ......................................... 138 Setup steps .............................................................................................................................. 138 Annex D - Out-of-band Setup Using an External Registrar ................................................. 139 Annex E - Secondary Usage Models .................................................................................... 140 Removing Members from the WLAN .................................................................................... 140 Guest access ............................................................................................................................ 140 Re-keying credentials ............................................................................................................. 140 Expanding the network - Adding additional AP or Router .................................................... 140 Changing Network Name (SSID), radio channels, etc. .......................................................... 140 Rekeying ................................................................................................................................. 141 Annex F - Management Interface Message Definitions ...................................................... 142 GetAPSettings Input Message ................................................................................................ 142 GetAPSettings Output Message .............................................................................................. 143 SetAPSettings Message .......................................................................................................... 144 DelAPSettings Message .......................................................................................................... 145 ResetAP and RebootAP Messages ......................................................................................... 146 STA Settings Message Definitions ......................................................................................... 146 GetSTASettings Input Message .............................................................................................. 146 GetSTASettings Output Message ........................................................................................... 147 SetSTASettings Message ........................................................................................................ 148 DelSTASettings Message ....................................................................................................... 149 ResetSTA and RebootSTA Messages ..................................................................................... 150 Annex G - USBA (USB Host) Out-of-Band Interface Specification ................................... 151 Wi-Fi Simple Configuration Technical Specification v2.0.2 © 2011 Wi-Fi Alliance. All Rights Reserved. Used with the permission of the Wi-Fi Alliance under the terms as stated in this document. Page 7 of 154 Requirements for USB Flash Drives (UFD) ........................................................................... 151 Enrollee Requirements for USBA out-of-band Interfaces ...................................................... 151 Firmware and Software Requirements ................................................................................... 152 Encrypted Settings File (xxxxxxxx.WSC) .............................................................................. 152 Unencrypted Settings File (00000000.WSC) ......................................................................... 153 Enrollee Device Password and Key Hash (xxxxxxxx.WFA) ................................................. 153
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值