中文摘要：

针对基于近场通信（NFC）认证的无线局域网（WLAN）无线接入协议点对点通信模式存在的问题,如明文传输、用户接入匿名性、数据易于被窃听、易于被篡改等,提出基于NFC认证的WLAN无线接入协议安全性的设计。该协议采用Diffie-Hellman密钥交换算法与第二代安全散列算法（SHA）建立安全隧道来完成随机信息的交换;采用椭圆曲线数字签名算法来消除用户的匿名性。从协议需求分析、架构设计与协议时序步骤三个方面入手,给出了一个计算机上的原型实现。通过有色Petri网（CPN）建模,实验仿真结果表明：基于NFC认证的WLAN接入协议对于无线局域网的非法接入攻击与窃听攻击有着良好的抵抗效果。

英文摘要：

Aiming at the problems existing in point-to-point communication model of Wireless Local Area Network（ WLAN） protocol via Near Field Communication（ NFC） authentication,such as plaintext transferring,user＇s anonymous access,data being easily tapped and tampered,a security design of WLAN protocol via NFC was put forward. The security tunnel was built using Diffie-Hellman key exchange algorithm and second generation Secure Hash Algorithm（ SHA） to transfer the random information,and the user＇s anonymity was eliminated using Elliptic Curve Digital Signature Algorithm（ ECDSA）.A prototype implementation on computer was given from requirement analysis,architecture design and sequence steps of the protocol. The experimental results by using Colored Petri Net（ CPN） modeling show that the proposed protocol can execute stably and deal with the unauthorized access and eavesdropping problems of WLAN.