DEVICE FOR REALIZING SECURITY FUNCTION IN MAC OF PORTABLE INTERNET SYSTEM AND AUTHENTICATION METHOD USING THE DEVICE

摘要

A device for realizing a security function in an MAC layer of a wireless portable Internet system and an authentication method using the device are provided to appropriately perform an authentication function by defining a security sub-layer in the same layer. A message authentication module(14) authenticates a message transmitted/received between a subscriber station and a base station through a physical layer. An RSA(Rivest Shamir Adleman)-based authentication module(15) performs equipment authentication of the subscriber station or the base station. An EAP(Extensible Authentication Protocol) encapsulation/decapsulation module(17) performs an interface with a higher layer of the MAC layer. A control message processing module(13) generates a result message based on a result of the authentication performed by the RSA-based authentication module and/or the EAP encapsulation/decapsulation module, transmits the result message through the physical layer, and analyzes the result message received from a peer node through the physical layer. A PKM(Privacy Key Management) control management module(11) generates keys related to the authentication, and controls and manages the respective modules.