| IKE协议及其安全性分析 |
| |
| 引用本文: | 张琳,张永平.IKE协议及其安全性分析[J].计算机工程与设计,2005,26(9):2473-2475,2481. |
| |
| 作者姓名: | 张琳 张永平 |
| |
| 作者单位: | 中国矿业大学,计算机科学与技术学院,江苏,徐州,221008 |
| |
| 摘 要: | Intemet密钥交换协议(IKE)是用于交换和管理在VPN中使用的加密密钥的.到目前为止,它依然存在安全缺陷.基于该协议的重要的现实意义,简单地介绍了它的工作机制,并对它进行了安全性分析;对于抵御中间人攻击和DoS攻击,给出了相应的修正方法;还对主模式下预共享密钥验证方法提出了新的建议;最后给出了它的两个发展趋势:JFK和IKEv2.
|
| 关 键 词: | IKE 因特网密钥交换协议 IPSec DoS 安全性分析 |
| 文章编号: | 1000-7024(2005)09-2473-03 |
| 收稿时间: | 2004-09-10 |
| 修稿时间: | 2004-09-10 |
IKE protocol and its security analysis |
| |
| ZHANG Lin,ZHANG Yong-ping.IKE protocol and its security analysis[J].Computer Engineering and Design,2005,26(9):2473-2475,2481. |
| |
| Authors: | ZHANG Lin ZHANG Yong-ping |
| |
| Affiliation: | College of Computer Science and Technology, China University of Mining and Technology, Xuzhou 221008, China |
| |
| Abstract: | Internet key exchange(IKE) protocol is used to exchange and manage the encryption key in VPN.At present,there still are some security limitations in it.On the base of its important reality significance,the mechanism of IKE protocol was introduced and its security analysis was provided here.Some improvements were presented in defending man-in-middle attack and DoS attack.In ad-dition,some suggestions were made in main mode which was authenticated with a pre-shared-key.Finally,JFK and IKEv2 were given as its two trends. |
| |
| Keywords: | IKE intemet key exchange IPSec DoS security analysis |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
