| 一种改进的跨域口令密钥交换协议 |
| |
| 引用本文: | 刘广伟,周恩光,闫虹,周福才. 一种改进的跨域口令密钥交换协议[J]. 东北大学学报(自然科学版), 2009, 30(1): 42-45. DOI: - |
| |
| 作者姓名: | 刘广伟 周恩光 闫虹 周福才 |
| |
| 作者单位: | 东北大学,信息科学与工程学院,辽宁,沈阳,110004 |
| |
| 基金项目: | 国家自然科学基金,国家高技术研究发展计划(863计划),辽宁省自然科学基金 |
| |
| 摘 要: | 跨域的端到端的口令认证密钥交换(C2C-PAKE)协议,可实现不同区域的两个客户通过不同的口令协商出共享的会话密钥.首先对Byun2007的C2C-PAKE协议进行了描述,并针对其安全性进行了分析,发现该协议易遭受口令泄露伪造攻击的安全漏洞,提出了一种高效的改进的跨域口令认证密钥交换协议.该协议引入公钥密码体制能够有效抵抗口令泄露伪造攻击和不可检测在线字典攻击,且只需要6步通信.安全性分析表明该协议是安全有效的.
|
| 关 键 词: | 安全协议 跨域 口令认证密钥交换 口令泄露伪造攻击 敌手 |
An Improved Cross-Realm Client-to-Client Password-Authenticated Key Exchange Protocol |
| |
| LIU Guang-wei,ZHOU En-guang,YAN Hong,ZHOU Fu-cai. An Improved Cross-Realm Client-to-Client Password-Authenticated Key Exchange Protocol[J]. Journal of Northeastern University(Natural Science), 2009, 30(1): 42-45. DOI: - |
| |
| Authors: | LIU Guang-wei ZHOU En-guang YAN Hong ZHOU Fu-cai |
| |
| Affiliation: | LIU Guang-wei,ZHOU En-guang,YAN Hong,ZHOU Fu-cai(School of Information Science & Engineering,Northeastern University,Shenyang 110004,China.) |
| |
| Abstract: | The client-to-client password-authenticated key exchange(C2C-PAKE) protocol enables two clients from different realms to agree on a shared common session key.Describing the C2C-PAKE protocol of Byun2007,its security is analyzed and it is found that the protocol is easy to suffer the attacks due to password-compromised impersonation and undetected on-line dictionary.An improved C2C-PAKE protocol is therefore proposed to introduce the public key mechanism into system security to resist those attacks effective... |
| |
| Keywords: | security agreement cross-realm password-authenticated key exchange password-compromise impersonation attack adversary |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《东北大学学报(自然科学版)》浏览原始摘要信息 |
|
点击此处可从《东北大学学报(自然科学版)》下载全文 |
