| IPSec中密钥交换协议IKE的安全性分析与改进 |
| |
| 引用本文: | 桂海霞.IPSec中密钥交换协议IKE的安全性分析与改进[J].计算机时代,2011(11):26-27,31. |
| |
| 作者姓名: | 桂海霞 |
| |
| 作者单位: | 安徽理工大学经济与管理学院,安徽淮南,232001 |
| |
| 基金项目: | 安徽省高等学校省级自然科学基金资助项目,安徽省高等学校省级人文社会科学基金资助项目 |
| |
| 摘 要: | 介绍了IKE协议,研究了IKE协议的安全性问题。对中间人攻击进行了分析并提出了一种改进cookie生成算法;针对拒绝服务攻击分析了系统安全性缺陷,并针对此类缺陷作出了算法改进;在前两种改进方案的基础上设计了一种新的口令认证密钥交换协议,经验证,新的口令认证密钥交换协议更安全有效。
|
| 关 键 词: | IKE协议 安全性 cookie算法 DoS攻击 |
Security Analysis and Improvement on IKE Protocol in IPSec |
| |
| GUI Hai-xia.Security Analysis and Improvement on IKE Protocol in IPSec[J].Computer Era,2011(11):26-27,31. |
| |
| Authors: | GUI Hai-xia |
| |
| Affiliation: | GUI Hai-xia(School of Economics and Management,Anhui University of Science and Technology,Huainan,Anhui 232001,China) |
| |
| Abstract: | The IKE(Internet Key Exchange) protocol is introduced and its security problem is researched.The man-in-the-middle attacks are analyzed and an improved cookie generation algorithm is put forward.Aiming at DoS(Denial of Service) attacks,the disadvantages of system security are analyzed and the algorithm is improved for overcoming the disadvantages.A new password authentication key exchange protocol is designed on the basis of the former two improvement schemes,and the verification indicates that the protocol is safer and more effective. |
| |
| Keywords: | IKE protocol security cookie algorithm DoS attack |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
