Abstract
Wireless local area network (WLAN) technology is widely used in various enterprises and institutions. In order to facilitate the use of users, they often provide a single SSID access point, resulting in different identities of users authenticated and authorized can connect to the wireless network anytime, anywhere as needed and obtain the same accessible network resources such as bandwidth, access control (ACL) and so on. Multiple SSID can solve the problem but it will be confused to users who don’t know which SSID can be connected. Although we could prevent visitors from accessing intranet resources by isolating the wireless network from the internal network, this would make it impossible for users to use the wireless network for internal office work. In this paper, we propose an access control system that grouping users according to the different identities and users authenticated and authorized can access different network resources because a wireless access point dynamically maps an SSID provided by a mobile station to a BSSID based on a VLAN assignment. The deployment experiment of the solution proves that users of different identities accessing the same wireless network can set different access policies, which effectively improves the security of the wireless network and simplifies the management of the wireless network.
Highlights
With the development of computer network and wireless communication technology, wireless network technology has been widely used in various companies, enterprises and institutions
In order to facilitate the use of users, they often provide a single service set identifier (SSID) access point, resulting in different identities of users authenticated and authorized can connect to the wireless network anytime, anywhere as needed and obtain the same accessible network resources such as bandwidth, access control (ACL) and so on
We propose an access control system that grouping users according to the different identities and users authenticated and authorized can access different network resources because a wireless access point dynamically maps an SSID provided by a mobile station to a BSSID based on a VLAN assignment
Summary
With the development of computer network and wireless communication technology, wireless network technology has been widely used in various companies, enterprises and institutions. It’s very convenient for users who can access the wireless network at anytime and anywhere after being authenticated and authorized. Different users with different identities will share wireless network in single such as bandwidth, accessible resources. It may lead to personal information stolen, business data tampered, business data fraud, network paralysis, etc. If different permissions cannot be assigned based on user identity, the network resources accessed are the same; Especially, if the. It will lead to unreasonable allocation of bandwidth resources because network resources cannot be allocated according to user identity. When a user is threatened by security, it is bound to bring great impact on the whole network
Sign-in/Register to view highlights & summary Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a callDisclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.
