| 基于预共享密钥认证的IKE协议分析与改进 |
| |
| 引用本文: | 武涛,郑雪峰,姚宣霞,李明祥.基于预共享密钥认证的IKE协议分析与改进[J].计算机工程,2008,34(8):147-149. |
| |
| 作者姓名: | 武涛 郑雪峰 姚宣霞 李明祥 |
| |
| 作者单位: | 北京科技大学信息工程学院,北京,100083 |
| |
| 摘 要: | 对基于预共享密钥认证的主模式IKE协议进行研究,针对其安全漏洞以及不支持移动用户的缺陷,提出相应的改进建议。该方案能及时发现并阻止中间人攻击和拒绝服务攻击,同时保护双方的身份,没有固定IP地址的限制。性能分析表明,该方案是安全、高效的。
|
| 关 键 词: | IKE协议 预共享密钥认证 主模式交换 IPSec协议 |
| 文章编号: | 1000-3428(2008)08-0147-03 |
| 修稿时间: | 2007年4月25日 |
Analysis and Modification of Internet Key Exchange Protocol Based on Pre-shared Key Authentication |
| |
| WU Tao,ZHENG Xue-feng,YAO Xuan-xia,LI Ming-xiang.Analysis and Modification of Internet Key Exchange Protocol Based on Pre-shared Key Authentication[J].Computer Engineering,2008,34(8):147-149. |
| |
| Authors: | WU Tao ZHENG Xue-feng YAO Xuan-xia LI Ming-xiang |
| |
| Affiliation: | (School of Information and Engineering, University of Science and Technology Beijing, Beijing 100083) |
| |
| Abstract: | The paper elaborates on IKE protocol with pre-shared Key authentication in main mode and puts forward corresponding advises to the potential secure flaws and the disadvantage of not supporting road warrior users. The proposed scheme can detect the attack quickly by authenticating the messages at once and prevent the identity of senders and receivers from being got by others, with no limitation to fixed IP address. It is secure, efficient and feasible. |
| |
| Keywords: | Internet Key Exchange(IKE) protocol pre-shared key authentication main mode exchange IPSec protocol |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
