WPA3-SAE 身份验证WPA3-SAE authentication
02/21/2019
本文内容
WPA3 SAE (也称为 WPA3)在具有 WDI 版本1.1.8 和更高版本的 Windows 中受支持。WPA3-SAE, also known as WPA3-Personal, is supported in Windows with WDI version 1.1.8 and later. SAE 的帧内容生成和分析 (在 Windows 中执行等于) 身份验证的安全身份验证,但操作系统需要驱动程序支持来发送和接收 WPA3 身份验证帧。Frame content generation and parsing for SAE (Secure Authentication of Equals) authentication is done within Windows, but the OS requires driver support for sending and receiving WPA3-SAE authentication frames.
WPA3-SAE 功能WPA3-SAE capabilities
微型端口驱动程序通过执行以下操作来指示 SAE 支持:Miniport drivers indicate SAE support by doing the following:
设置 SAE 支持的功能。Set SAE supported capability.
The driver sets the SAEAuthenticationSupported capability in WDI_TLV_INTERFACE_ATTRIBUTES during the call to OID_WDI_GET_ADAPTER_CAPABILITIES.
设置 MFP 功能。Set MFP capability.
The driver sets the MFPCapable capability in WDI_TLV_STATION_ATTRIBUTES during the call to OID_WDI_GET_ADAPTER_CAPABILITIES.
WPA3-SAE authentication flowWPA3-SAE authentication flow
连接启动Connection initiation
SAE connections are initiated with OID_WDI_TASK_CONNECT or OID_WDI_TASK_ROAM. 当驱动程序需要执行 SAE authentication 时,WDI 将 WDI_AUTH_ALGO_WPA3_SAE 指定为身份验证方法。WDI specifies WDI_AUTH_ALGO_WPA3_SAE as the auth method when the driver is required to do SAE authentication. 如果 WDI 在