| 一种基于签密的改进IKEv2协议* |
| |
| 引用本文: | 莫天庆,张龙军,赵李懿b.一种基于签密的改进IKEv2协议*[J].计算机应用研究,2011,28(12):4657-4659. |
| |
| 作者姓名: | 莫天庆 张龙军 赵李懿b |
| |
| 作者单位: | 1. 武警工程学院通信工程系,西安,710086
2. 武警工程学院电子技术系网络与信息安全武警部队重点实验室,西安,710086 |
| |
| 基金项目: | 国家自然科学基金资助项目(60842006);武警部队科研基金课题(wjy201111);武警工程学院基础基金研究项目(wxk2010-04);陕西省自然科学基金资助项目(2007F50) |
| |
| 摘 要: | 针对IKEv2协议存在的对通信实体的身份保护不足和系统开销大等问题,提出了一种安全高效的改进的IKEv2协议.新协议采用了基于签密的可认证密钥协商来代替D-H密钥交换,在交换秘密信息的同时实现了对协议的发起者与响应者之间的双向认证;并且协议的响应者先主动证明自己的身份,确保了对发起者进行主动身份保护.基于认证测试方法对该协议进行形式化分析表明:新协议具有很好的秘密性和双向认证性;同时,该协议只需三条消息,具有简单、高效的特点.
|
| 关 键 词: | 签密 密钥交换 认证测试 IKEv2 |
Improved IKEv2 protocol based on signcryption |
| |
| MO Tian-qing,ZHANG Long-jun,ZHAO Li-yib.Improved IKEv2 protocol based on signcryption[J].Application Research of Computers,2011,28(12):4657-4659. |
| |
| Authors: | MO Tian-qing ZHANG Long-jun ZHAO Li-yib |
| |
| Affiliation: | MO Tian-qinga,ZHANG Long-juna,ZHAO Li-yib(a.Dept.of Communication Engineering,b.Key Laboratory of Network & Information Security of APF,Dept.of Electronic Technology,Engineering College of APF,Xi'an 710086,China) |
| |
| Abstract: | IKEv2 protocol can't achieve mutual authentication between the correspondents,and it have flaw of system requirement.This paper presented an improved IKEv2 protocol to avoid these flaws.In the new protocol,adopted the authenti-cated key agreement algorithm based on signcryption to replace the D-H key exchange algorithm to realize mutual authentication between the endpoints and the responder,it first authenticated to actively protect the initiator's identity.Then formally verified the new protocol's security... |
| |
| Keywords: | signcryption key exchange authentication tests IKEv2 |
| 本文献已被 CNKI 万方数据 等数据库收录! |
| 点击此处可从《计算机应用研究》浏览原始摘要信息 |
|
点击此处可从《计算机应用研究》下载全文 |
|
