| 一种新型抵御字典攻击的认证方案 |
| |
| 引用本文: | 於时才,胡佳文,靳艳峰.一种新型抵御字典攻击的认证方案[J].计算机工程与设计,2007,28(8):1798-1800,1803. |
| |
| 作者姓名: | 於时才 胡佳文 靳艳峰 |
| |
| 作者单位: | 兰州理工大学计算机与通信学院,甘肃兰州730050 |
| |
| 摘 要: | 身份验证是网络应用系统中的第一道防线,目的是验证通信双方的身份,防止非法用户窃取和假冒合法用户.尽管通过口令是最方便的身份验证方法,但它也伴随着字典攻击的威胁.分析了常用的几种一次性口令身份认证方案,在挑战-响应方案基础上,利用安全单向哈希函数提出并设计了一种新型身份验证方案.该方案不仅明显减少了认证服务器的开销,而且能有效地抵御字典攻击、拒绝服务攻击等攻击手段,显著增强了应用系统的安全性.
|
| 关 键 词: | 身份验证 在线字典攻击 哈希函数 密码协议 口令 字典攻击 认证方案 attacks online counter scheme 安全性 应用 增强 攻击手段 绝服务攻击 认证服务器 验证方案 设计 单向哈希函数 利用 响应 一次性口令 分析 验证方法 |
| 文章编号: | 1000-7024(2007)08-1798-03 |
| 修稿时间: | 2006-04-06 |
New authentication scheme to counter online dictionary attacks |
| |
| YU Shi-cai,HU Jia-wen,JIN Yan-feng.New authentication scheme to counter online dictionary attacks[J].Computer Engineering and Design,2007,28(8):1798-1800,1803. |
| |
| Authors: | YU Shi-cai HU Jia-wen JIN Yan-feng |
| |
| Affiliation: | School of Computer and Communication, Lanzhou University of Technology, Lanzhou 730050, China |
| |
| Abstract: | Authentication is the first line of defence in the network application system.The aim is authenticating the identification of both side of communication and preventing illegal users to filch and masquerade genuine users.Though passwords are the most convenient means of authentication,they bring along themselves the threat of dictionary attacks.Several typical authentication protocols are analyzed.On the basis of challenge-response system a new type of authentication scheme by using one way hash functions is proposed and construc-ted.The scheme can not only reduce the overhead of the server obviously,but also counter the online dictionary attacks and denial of service(DoS) attacks and so on.The security of the application system greatly is enhanced. |
| |
| Keywords: | authentication online dictionary attacks hash functions cryptographic protocol passwords |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
