| 基于串空间理论的Kerberos协议安全性分析 |
| |
| 引用本文: | 王威,胡铭曾,张兆心. 基于串空间理论的Kerberos协议安全性分析[J]. 高技术通讯, 2008, 18(9). DOI: 10.3772/j.issn.1002-0470.2008.09.005 |
| |
| 作者姓名: | 王威 胡铭曾 张兆心 |
| |
| 作者单位: | 哈尔滨工业大学计算机网络与信息安全技术研究中心,哈尔滨,150001;哈尔滨工业大学计算机网络与信息安全技术研究中心,哈尔滨,150001;哈尔滨工业大学计算机网络与信息安全技术研究中心,哈尔滨,150001 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划) |
| |
| 摘 要: | 在对串空间理论和Kerberos协议进行深入研究的基础上,采用串空间理论模型对Kerberos协议进行了安全性分析.分析的过程和结果证明,Kerberos协议满足串空间理论的认证性和服务器串随机数的秘密性,但不能保证发起者串随机数的秘密性,因此Kerberos协议能实现安全认证功能,但存在口令猜测攻击.针对此问题,对Kerberos协议进行改进,改进后的协议满足发起者串随机数秘密性,增强了抗口令猜测攻击的能力.
|
| 关 键 词: | 协议安全性 串空间 Kerberos协议 形式化分析 |
Security analysis of Kerberos protocol based on the strand space model |
| |
| Wang Wei,Hu Mingzeng,Zhang zhaoxin. Security analysis of Kerberos protocol based on the strand space model[J]. High Technology Letters, 2008, 18(9). DOI: 10.3772/j.issn.1002-0470.2008.09.005 |
| |
| Authors: | Wang Wei Hu Mingzeng Zhang zhaoxin |
| |
| Affiliation: | Wang Wei Hu Mingzeng Zhang zhaoxin (Research Center of Computer Network , Information Security Technology,Harbin Institute of Technology,Harbin 150001) |
| |
| Abstract: | Based on the deep research on the strand space theory and the Kerberos protocol,this paper analyzes the security of the Kerberos protocol using the strand space model.The analysis procedure and results show that the Kerberos protocol can guarantee the authentication based on the strand space theory and the secrecy of the server strand's nonce,but can not guarantee the secrecy of the initiator strand's nonce.It proves that the Kerberos protocol can achieve the function of security authentication but may suff... |
| |
| Keywords: | protocol security strand space Kerberos protocol formal analysis |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
