阅读说明：本技术 管理消息帧传输方法、装置及存储介质 (Management message frame transmission method, device and storage medium ) 是由 董贤东 于 2020-04-16 设计创作，主要内容包括：本公开是关于一种管理消息帧传输方法、装置及存储介质。管理消息帧传输方法,应用于第一设备,所述管理消息帧传输方法包括：生成管理消息帧；使用单播会话密钥对所述管理消息帧进行加密,并发送加密后的所述管理消息帧。本公开通过使用单播会话密钥对管理消息帧进行加密传输,能够提高管理消息帧传输的安全性,避免敏感数据被攻击者捕获。(The present disclosure relates to a management message frame transmission method, apparatus, and storage medium. The management message frame transmission method is applied to first equipment and comprises the following steps: generating a management message frame; and encrypting the management message frame by using a unicast session key, and sending the encrypted management message frame. According to the method and the device, the management message frame is encrypted and transmitted by using the unicast session key, so that the security of the management message frame transmission can be improved, and sensitive data is prevented from being captured by an attacker.)

A management message frame transmission method applied to a first device, the management message frame transmission method comprising:

generating a management message frame;

and encrypting the management message frame by using a unicast session key, and sending the encrypted management message frame.

The management message frame transmission method according to claim 1, wherein the encrypting the management message frame using the unicast session key includes:

sending a detection request, an association request and an authentication request, and performing four-step handshake;

and obtaining a unicast session key based on the four-step handshake negotiation, and encrypting the management message frame by using the unicast session key.

The management message frame transmission method according to claim 1 or 2, wherein the unicast session key is determined based on a local media intervention layer MAC address of the first device.

The management message frame transmission method of claim 3, wherein the unicast session key has a validity duration.

The management message frame transmission method according to claim 1, wherein the management message frame includes a reassociation request message frame, a disassociation message frame, or a deauthentication message frame.

The management message frame transmission method according to claim 1 or 5, wherein the method further comprises:

and receiving an acknowledgement message fed back by the second device, wherein the acknowledgement message indicates that the second device receives the management message frame.

The management message frame transmission method according to claim 6, wherein the management message frame comprises a disassociation message frame or a deauthentication message frame, and the acknowledgement message comprises a correct acknowledgement ACK frame.

The management message frame transmission method according to claim 6, wherein the management message frame includes a reassociation request message frame, and the acknowledgement message includes a reassociation response frame.

The management message frame transmission method of claim 1, wherein the management message frame comprises a disassociation message frame, the method further comprising:

and if the receiver after the disassociation is consistent with the receiver before the disassociation, encrypting and transmitting the cached data by using the unicast session key.

The management message frame transmission method of claim 1, wherein the management message frame comprises a disassociation message frame, the method further comprising:

and if the receiver after the disassociation is inconsistent with the receiver before the disassociation, discarding the cached data.

A management message frame transmission method applied to a second device, the management message frame transmission method comprising:

receiving a management message frame encrypted using a unicast session key;

and sending a confirmation message, wherein the confirmation message represents that the second equipment receives the management message frame.

The management message frame transmission method according to claim 11, wherein the unicast session key is obtained based on a four-step handshake negotiation, the method further comprising: decrypting the management message frame using the unicast session key.

The management message frame transmission method according to claim 11 or 12, wherein the unicast session key is determined based on a local media intervention layer MAC address of the first device.

The management message frame transmission method of claim 13, wherein the unicast session key has a validity duration.

The management message frame transmission method of claim 11, wherein the management message frame comprises a reassociation request message frame, a disassociation message frame, or a deauthentication message frame.

The management message frame transmission method according to claim 11, wherein the management message frame comprises a disassociation message frame or a deauthentication message frame, and the acknowledgement message comprises a correct acknowledgement ACK frame.

The management message frame transmission method according to claim 11, wherein the management message frame includes a reassociation request message frame, and the acknowledgement message includes a reassociation response frame.

The management message frame transmission method of claim 11, wherein the management message frame comprises a disassociation message frame, the method further comprising:

receiving buffered data transmitted encrypted using the unicast session key.

A management message frame transmission apparatus, applied to a first device, the management message frame transmission apparatus comprising:

a processing unit configured to generate a management message frame;

a transmitting unit configured to encrypt the management message frame using a unicast session key and transmit the encrypted management message frame.

The management message frame transmission apparatus according to claim 19, wherein the transmission unit is configured to encrypt the management message frame using a unicast session key in the following manner:

sending a detection request, an association request and an authentication request, and performing four-step handshake;

and obtaining a unicast session key based on the four-step handshake negotiation, and encrypting the management message frame by using the unicast session key.

The management message frame transmission apparatus according to claim 19 or 20, wherein the apparatus further comprises a receiving unit configured to:

and receiving an acknowledgement message fed back by the second device, wherein the acknowledgement message indicates that the second device receives the management message frame.

The management message frame transmission apparatus of claim 19, wherein the management message frame comprises a disassociation message frame, the sending unit further configured to:

and if the receiver after the disassociation is consistent with the receiver before the disassociation, encrypting and transmitting the cached data by using the unicast session key.

The management message frame transmission apparatus of claim 19, wherein the management message frame comprises a disassociation message frame, the sending unit further configured to:

and if the receiver after the disassociation is inconsistent with the receiver before the disassociation, discarding the cached data.

A management message frame transmission apparatus, applied to a second device, the management message frame transmission apparatus comprising:

a receiving unit configured to receive a management message frame encrypted using a unicast session key;

a sending unit configured to send an acknowledgement message, the acknowledgement message characterizing the reception of the management message frame by the second device.

The management message frame transmission apparatus of claim 24, wherein the unicast session key is obtained based on a four-step handshake negotiation, and wherein the receiving unit is further configured to:

decrypting the management message frame using the unicast session key.

The management message frame transmission apparatus of claim 24, wherein the management message frame comprises a disassociation message frame, the receiving unit further configured to:

receiving buffered data transmitted encrypted using the unicast session key.

A management message transmission apparatus, comprising:

a processor;

a memory for storing processor-executable instructions;

wherein the processor is configured to: the management message transmission method of any of claims 1 to 10 is performed.

A management message transmission apparatus, comprising:

a processor;

a memory for storing processor-executable instructions;

wherein the processor is configured to: the management message transmission method of any of claims 11 to 18 is performed.

A non-transitory computer readable storage medium, wherein instructions, when executed by a processor of a station or access point, enable the station or access point to perform the management message transmission method of any of claims 1 to 10.

A non-transitory computer readable storage medium, wherein instructions, when executed by a processor of a station or access point, enable the station or access point to perform the management message transmission method of any of claims 11 to 18.