| 具有强匿名性的网关口令认证密钥交换协议 |
| |
| 引用本文: | 魏福山,马传贵.具有强匿名性的网关口令认证密钥交换协议[J].计算机学报,2012,35(9):1823-1832. |
| |
| 作者姓名: | 魏福山 马传贵 |
| |
| 作者单位: | 信息工程大学信息工程学院信息研究系 郑州 450002 |
| |
| 摘 要: | 网关口令认证密钥交换协议允许用户和网关在服务器的协助下建立起一个共享的会话密钥,其中用户和服务器之间的认证通过低熵的口令来完成.已有的网关口令认证密钥交换协议对用户的匿名性研究不足.该文基于Diffie-Hellman密钥交换提出了具有强匿名性的网关口令认证密钥交换协议,并且在随机预言模型下基于标准的DDH假设证明了协议的安全性.新协议可以抵抗不可检测在线字典攻击并且计算效率高,安全性和计算效率都优于已有的同类协议.
|
| 关 键 词: | 口令认证 网关 匿名性 随机预言模型 DDH假设 |
An Efficient Gateway-Oriented Password-Based Authenticated Key Exchange Protocol with Strong User Anonymity |
| |
| WEI Fu-Shan
,
MA Chuan-Gui.An Efficient Gateway-Oriented Password-Based Authenticated Key Exchange Protocol with Strong User Anonymity[J].Chinese Journal of Computers,2012,35(9):1823-1832. |
| |
| Authors: | WEI Fu-Shan MA Chuan-Gui |
| |
| Affiliation: | WEI Fu-Shan MA Chuan-Gui (Department of Information Research,Institute of Information Engineering,Information Engineering University,Zhengzhou 450002) |
| |
| Abstract: | Gateway-oriented password-based authenticated key exchange(GPAKE) protocol allows a client and a gateway to establish a common session key with the help of an authentication server,where the authentication between the client and the server is done via a low-entropy password.The approach of designing GPAKE protocols with user anonymity is far from maturity and perfection.This paper presents a GPAKE protocol with strong user anonymity based on the Diffie-Hellman key exchange,and then proves its security under the standard DDH assumption in the random oracle model.The new protocol can resist the undetectable on-line dictionary attack and is quite efficient in terms of computation.Compared with other related protocols,the new protocol is more secure and efficient. |
| |
| Keywords: | password authentication gateway anonymity random oracle model DDH assumption |
| 本文献已被 CNKI 万方数据 等数据库收录! |
