| 基于数字签名认证的IKE协议安全性分析及改进 |
| |
| 引用本文: | 何韦伟,季新生,刘彩霞.基于数字签名认证的IKE协议安全性分析及改进[J].计算机应用,2008,28(7):1807-1809. |
| |
| 作者姓名: | 何韦伟 季新生 刘彩霞 |
| |
| 作者单位: | 解放军信息工程大学国家数字交换系统工程技术研究中心 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| |
| 摘 要: | IKE协议的复杂性使得其存在一些安全漏洞。简要介绍基于数字签名认证方式的IKE协议工作机制之后,分析了IKE协议容易遭受的两种中间人攻击,针对中间人攻击导致用户身份泄漏的安全缺陷,提出两种改进方案并给出改进前后定量的性能分析。
|
| 关 键 词: | IKE 数字签名 中间人攻击 公钥 |
| 收稿时间: | 2008-01-14 |
Security analysis and improvement of IKE protocol with signature authentication |
| |
| HE Wei-wei,JI Xin-sheng,LIU Cai-xia.Security analysis and improvement of IKE protocol with signature authentication[J].journal of Computer Applications,2008,28(7):1807-1809. |
| |
| Authors: | HE Wei-wei JI Xin-sheng LIU Cai-xia |
| |
| Affiliation: | HE Wei-wei,JI Xin-sheng,LIU Cai-xia(National Digital Switching System Engineering , Technological R&D Center,Information Engineering University,Zhengzhou Henan 450002,China) |
| |
| Abstract: | The complexity of Internet Key Exchange (IKE) protocol causes some potential security flaws. After the mechanism of IKE with signature was introduced, the two kinds of man-in-middle attack were analyzed. In order to protect the users' identities from being exposed to the outside, two solutions with some improvements were proposed. Finally the paper made a quantitative capability analysis on the whole. |
| |
| Keywords: | Internet Key Exchange(IKE) digital signature man-in-middle attack public key |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机应用》浏览原始摘要信息 |
|
点击此处可从《计算机应用》下载全文 |
