| Ku-Chien远程身份认证方案的安全性分析 |
| |
| 引用本文: | 张利华.Ku-Chien远程身份认证方案的安全性分析[J].计算机应用,2006,26(5):1055-1057. |
| |
| 作者姓名: | 张利华 |
| |
| 作者单位: | 华东交通大学,电气与电子工程学院,江西,南昌,330013;北京航空航天大学,电子信息工程学院,北京,100083 |
| |
| 摘 要: | Ku-Chien远程身份认证方案是一种使用智能卡、低开销、实用的口令认证方案。本文分析了Ku-Chien方案的安全性,指出了Ku-Chien方案的安全缺陷:不能抵御并行会话攻击和伪造主机攻击。分析了产生安全缺陷的原因:登陆阶段用户计算出的秘密信息和认证阶段远程主机计算出的秘密信息具有类似的结构。最后,利用口令更改计数器,给出了一种改进的口令认证方案。该方案允许用户自主选择并更改口令,实现了双向认证;能够抵御重放攻击、内部攻击,具备强安全修复性;能够抵御并行会话攻击和伪造远程主机攻击。
|
| 关 键 词: | 身份认证 口令 智能卡 安全分析 |
| 文章编号: | 1001-9081(2006)05-1055-03 |
| 收稿时间: | 2005-11-07 |
| 修稿时间: | 2005-11-072006-01-12 |
Security analysis of Ku-Chien's remote authentication scheme |
| |
| ZHANG Li-hua.Security analysis of Ku-Chien''''s remote authentication scheme[J].journal of Computer Applications,2006,26(5):1055-1057. |
| |
| Authors: | ZHANG Li-hua |
| |
| Affiliation: | 1. School of Electrical and Electronic Engineering, Eastchina Jiaotong University, Nanchang Jiangxi 330013, China; 2. School of Electronic and Information Engineering, Beijing University of Aeronautics and Astronautics, Beijing 100083, China |
| |
| Abstract: | Ku-Chien proposed a low cost and practical solution to password authentication using smart cards. The security of Ku-Chien's scheme was analyzed in this paper. It still has some weaknesses: it cannot resist parallel session attack; it also cannot withstand masquerading remote system attack. The reason of faults is due to the similar structure of secure information of login phase and authentication phase. Based on password changing counter, an enhanced password authentication scheme with better security strength was presented. This scheme has many merits: freely choosing and changing passwords; providing mutual authentication; resisting message replaying attack and inside attack; having strong security reparability; withstanding parallel session attack and remote system attack. |
| |
| Keywords: | authentication password smart cards security analysis |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机应用》浏览原始摘要信息 |
|
点击此处可从《计算机应用》下载全文 |
