Schnorr 协议的一次一密双重身份认证研究

针对当前B/S 模式下公共网络中进行身份认证的安全问题，设计了使用静态口令和动态口令结合进行一次一密身份认证的方案，它将认证服务器与应用程序服务器分离，使静态口令认证在安全通道内进行，有效保障口令的安全。动态口令认证采用著名的Schnorr 身份认证协议，其私钥采用复杂的混沌序列生成以确保密钥敏感安全性，结合Java Applet 技术对公共网络上传输的信息采用对称DES 算法加密，提升了整个系统的可靠性。研究方案最后通过实例验证了系统的可行性和安全保障性。

Double identity authentication system of one-time pad based on Schnorr protocol

In view of the security problem which is induced by the public network transmission in current B/S architecture system,this paper proposes an identity authentication project which combines the static password and the dynamic password to realize one-time pad.It separates the authentication server and application server,puts the static passwords identify in private safe channel which can protect the static password security effectively,in addition dynamic password authentication is designed with the well-known Schnorr protocol,in order to make the private key sensitive by adopting complex chaotic sequence.Combined with Java applet technology and symmetrical DES encryption algorithms in the public network transmission,the system security is advanced.Some examples are tested and indicated this novel scheme is feasible and credible.