| UBAP认证协议的逻辑设计与研究 |
| |
| 引用本文: | 印润远,钟振鸿.UBAP认证协议的逻辑设计与研究[J].计算机安全,2008(8). |
| |
| 作者姓名: | 印润远 钟振鸿 |
| |
| 作者单位: | 上海水产大学信息学院,上海,200090 |
| |
| 摘 要: | 该文对CHAP认证协议进行了阐述,并对其安全缺陷进行了分析。针对CHAP协议的安全缺陷,将它进行了改进,结合密码学、身份认证技术以及USB Key技术,设计了一种基于USBKey网络环境下的身份认证协议,即UBAP(USB Key-based Authentication Protocol)协议,它采用软硬件相结合的一次一密的强双因子认证模式,实现了服务器和用户双方可靠的双向身份验证,并对该协议进行非形式化的分析,证明其能够抵御重放攻击、服务器欺骗、网络监听、插入信道攻击、中间人攻击以及暴力攻击。
|
| 关 键 词: | 身份认证 USB Key CHAP 认证协议 UBAP |
The Logic Design And Research Of UBAP Authentication Protocol |
| |
| YIN Run-yuan,ZHONG Zhen-hong.The Logic Design And Research Of UBAP Authentication Protocol[J].Network & Computer Security,2008(8). |
| |
| Authors: | YIN Run-yuan ZHONG Zhen-hong |
| |
| Abstract: | This paper has a thorough analysis to CHAP and points out its security flaws. By using cryptology, ID authentication technique and USB Key technique, it has been improved. Then designs UBAP protocol which is an ID authentication protocol under environment based on USB Key. It is a one-time password authentication mode with double factors combining software with hardware, which guarantees reliable bidirectional ID authentication to both server and user. Lastly, this paper has a non-formalization analysis to UBAP, it has proved that the protocol can resist the replay attack, server-impersonated, the snoop attack, the inserting channel attack, the middle-man attack and the brute-force attack. |
| |
| Keywords: | ID authentication USB Key CHAP Authentication Protocol UBAP |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
