| 认证群密钥协商协议的安全性分析与改进 |
| |
| 引用本文: | 汪小芬,李胜强,肖国镇. 认证群密钥协商协议的安全性分析与改进[J]. 电子科技大学学报(自然科学版), 2009, 38(1): 51-54 |
| |
| 作者姓名: | 汪小芬 李胜强 肖国镇 |
| |
| 作者单位: | 西安电子科技大学ISN综合业务网国家重点实验室,西安,710071;电子科技大学计算科学与工程学院,成都,610054 |
| |
| 摘 要: | 对Tseng协议构造了一种有效的中间人伪造攻击,敌手可以成功获得群会话密钥,因此Tseng协议不满足密钥认证性。然后基于Tseng协议的安全缺陷,提出改进协议,并进行安全性分析和性能分析。改进协议实现了通信节点之间的双向认证,不但满足前向安全性、密钥认证性,还能有效抵抗被动攻击和中间人伪造攻击。改进协议中的低能量节点计算出会话密钥的时间只需2.03s,高能量节点的计算时间仅为原协议的1/2,并且通信开销减小了40%,更适用于能量受限,带宽受限的移动通信系统。
|
| 关 键 词: | 群密钥协商 前向安全性 密钥认证 中间人伪造攻击 |
| 收稿时间: | 2007-09-24 |
Analysis and Improvement of an Authenticated Group Key Agreement Protocol |
| |
| WANG Xiao-fen,LI Sheng-qiang,XIAO Guo-zhen. Analysis and Improvement of an Authenticated Group Key Agreement Protocol[J]. Journal of University of Electronic Science and Technology of China, 2009, 38(1): 51-54 |
| |
| Authors: | WANG Xiao-fen LI Sheng-qiang XIAO Guo-zhen |
| |
| Affiliation: | 1.National Key Lab of Integrated Service Networks,Xidian University Xi'an 710071;2.School of Computer Science and Engineering,University of Electronic Science and Technology of China Chengdu 610054 |
| |
| Abstract: | An authenticated group key agreement protocol for resource-limited mobile devices was proposed by Tseng Y.M. It is demonstrated that this protocol has security vulnerabilities by mounting a man-in-middle attack against it. The protocol can not achieve key authentication in the presence of an active attacker. This paper presents an improved protocol which achieves mutual authentication. It provides not only the capability of forward secrecy and key authentication, but also the capability against passive attack and man-in-middle attack. The analysis shows that the presented protocol has lower computation cost and communication cost compared with Tseng's protocol. |
| |
| Keywords: | |
| 本文献已被 维普 万方数据 等数据库收录! |
| 点击此处可从《电子科技大学学报(自然科学版)》浏览原始摘要信息 |
|
点击此处可从《电子科技大学学报(自然科学版)》下载全文 |
