| IKE协议的简化及安全性分析 |
| |
| 引用本文: | 陈华兴,鲁士文. IKE协议的简化及安全性分析[J]. 计算机工程, 2006, 32(16): 130-132 |
| |
| 作者姓名: | 陈华兴 鲁士文 |
| |
| 作者单位: | 中国科学院研究生院,北京,100040;中国科学院计算技术研究所,北京,100080 |
| |
| 摘 要: | IKE协议的复杂性和安全性一直备受关注,文献[1]对IKE协议交换过程进行了简化,该文对简化后的IKE协议进行了安全性分析,并针对拒绝服务攻击DOS和中间人攻击的身份泄露,提出了改进建议。测试表明,该文提出的方法是可行的、有效的,大大降低了攻击的影响。
|
| 关 键 词: | IPSec IKE 密钥交换 安全性 |
| 文章编号: | 1000-3428(2006)16-0130-03 |
| 收稿时间: | 2005-08-08 |
| 修稿时间: | 2005-08-08 |
Simplification and Security Analysis of IKE Protocol |
| |
| CHEN Huaxing,LU Shiwen. Simplification and Security Analysis of IKE Protocol[J]. Computer Engineering, 2006, 32(16): 130-132 |
| |
| Authors: | CHEN Huaxing LU Shiwen |
| |
| Affiliation: | 1. Graduate School, Chinese Academy of Sciences, Beijing 100040; 2. Institute of Computing Technology, Chinese Academy of Sciences, Beijing 100080 |
| |
| Abstract: | The complexity and security of IKE protocol is always paid close attention by many researchers. Reference[1] simplifies the exchange of IKE. This paper discusses the security properties of the simplified IKE and presents some suggestions to solve the problems of denial of service attack and identification leak for man-in-the-middle attack. It is proved that the design is available and feasible. It reduces the influence of attack. |
| |
| Keywords: | IPSec IKE |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
