《AS-2000 technology产品介绍》-公开·课件设计.ppt

AS-2000 Technology Module contents  “Wireless” and “Data” Architecture Security Wireless Data Together Module contents  “Wireless” and “Data” Architecture Security System Architecture AS Client Architecture for Windows NT Windows 98 AS Client Architecture for Win95 AS-2000 Software Architecture AS Manager Software Architecture AS-2000 Network Protocol Architecture AS-2000 network supports the following protocols : * TCP/IP on Ethernet and Radio * DHCP * TFTP * PPP * RADIUS * Proxy ARP * SNMP V1 MIB-II * Scan and Change (for setting AS-2000 IP address) TFTP Trivial File Transfer Protocol Used primarily in ORiNOCO to transfer image (executable) file to AS-2000 Operates at Layers 5-7 of OSI model Enables the transfer of text and binary files between PCs In TCP/IP enables transfer of text and binary files between PC and Internet Can reside on local server or be at any IP address Traffic flowsAS Client start up Traffic flowsAS Client connected AS-2000 State Machine AS-2000 State Machine Module contents  “Wireless” and “Data” Architecture Security Security Authentication Authentication is the positive identification of a registered person or device ; usually takes place prior to accessing the service using RADIUS profiles (User name and password) Encryption Software Encryption (Automatic Key Management) Uses standard WLAN cards, and ORiNOCO Access Servers infrastructure Per-user per-session encryption: Diffie-Hellman algorithm for automatic key negotiation (56bit RC-4 key, optionally longer) between client and AS-2000 SecurityAuthentication using RADIUS RADIUS (Remote Authentication Dial-In User Service) is an industry-standard Client/Server-based system (RFC 2138) RADIUS provides “AAA”: Authentication, Authorization, Accounting (RFC 2139) Authentication allows positive identification of the user against the access provider’s secure database Authorization allows different services and connection parameters t