Research on the 802.1x Authentication Mechanism and Existing Defects

摘要

The IEEE 802.1x protocol inherits the advantage of IEEE802.1x LAN and provides a measure to authenticate and authorize the user(or device) which has connected to the local area network. But there are some defects in existing authentication mode based on 802.1x, to control the illegal users. We analysis the working mechanism of 802.1x and the principle of illegal users to access the network. Then the improved method based on monitoring the online users is proposed. It added a detecting module to the authentication server and make use of the interaction between Radius server and client to ensure the accuracy of the list of online users. It can effectively separate unauthorized users from network and protect the authentication security of the campus network.