| 认证协议攻击与非形式化分析 |
| |
| 引用本文: | 林贤金,胡山立.认证协议攻击与非形式化分析[J].小型微型计算机系统,2003,24(11):1912-1915. |
| |
| 作者姓名: | 林贤金 胡山立 |
| |
| 作者单位: | 福州大学,计算机科学与技术系,福建,福州,350002 |
| |
| 基金项目: | 国家自然科学基金项目 ( 60 172 0 17)资助 |
| |
| 摘 要: | 协议的分析验证方法有形式化与非形式化之分.很多代表性的协议虽然存在着缺陷,但对这些协议的非形式化分析,却可以提出一些值得借鉴的规则,参考这些规则可以避免和减少协议逻辑的漏洞,本文针对Woo-Lam两个改进协议以及SSL协议给出了攻击方法,分析协议存在的漏洞并提出如何使协议更为安全的建议。
|
| 关 键 词: | 认证协议 协议攻击 密码协议 密码学 非形式化方法 |
| 文章编号: | 1000-1220(2003)11-1912-04 |
Informal Methods for the Analysis of Authentication Protocols |
| |
| LIN Xian jin,HU Shan li.Informal Methods for the Analysis of Authentication Protocols[J].Mini-micro Systems,2003,24(11):1912-1915. |
| |
| Authors: | LIN Xian jin HU Shan li |
| |
| Abstract: | The methods of analyzing and verifying cryptographic protocols can be categorized into formal and informal ones. Although there are flaws in some typical protocols, we can draw a few helpful principles by informally analyzing them. Based upon those principles, cryptographic protocols are less prone to designed errors. In this paper, some new attacks upon three authentication protocols are presented. Then the reasons resulting these attacks are analyzed, and some proposals to improve the related authentication protocols are given. |
| |
| Keywords: | authentication protocol protocol attack cryptographic protocol cryptography informal method |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
