摘要
为给便携式无线设备提供更加便捷的认证服务,提出融合无线公钥基础设施、质询-响应协议、密钥随机化处理等技术来改进Kerberos协议的应用方案,而后用形式化的协议证明语言对改进后的协议进行了安全验证,分析结果表明改进后的协议能完成用户与服务器之间的认证工作,并且协议在通信机密性与防口令猜测方面都有所增强。
To providing portable wireless device users with more convenient and swift authentication service,a composite solution proposal was presented in this paper.This schema is in compliance with the rules of Kerberos protocol in wireless devices.Many techniques such as WPKI,CHAP and Key-Salt methods were used in the proposal to improve Kerberos protocol.The improved protocol security was also proved correctly with formal protocol proving language.The research results show that the protocol meets its design requirement with is security improved greatly.
出处
《成都信息工程学院学报》
2011年第2期137-143,共7页
Journal of Chengdu University of Information Technology
