主权项 |
1. A method for establishing a security connection between stations, comprising:
1) receiving, by a switch device, an inter-station key request packet sent by a first station, wherein the inter-station key request packet comprises a key announcement identifier KN1 field of the first station and a message identification code MIC1 field, wherein the value of the key announcement identifier KN1 field of the first station is an integral number and an initial value of that is a fixed value, and the value of the KN1 field is increased by 1 or a fixed value for use every time the inter-station key request is performed, and wherein the value of the message identification code MIC1 field is a hash value obtained by the first station performing hash function calculation on the fields in the inter-station key request packet other than the message identification code MIC1 field by using a protocol data key PDK1 in a unicast key shared with the switch device; 2) generating, by the switch device, an inter-station key, constructing an inter-station key announcement packet, and sending the inter-station key announcement packet to a second station; 3) receiving, by the switch device, an inter-station key announcement response packet sent by the second station; 4) constructing, by the switch device, an inter-station key announcement packet and sending the inter-station key announcement packet to the first station; and 5) receiving, by the switch device, an inter-station key announcement response packet sent by the first station.
|