摘要
通过对基于数字签名的IKE主模式认证机制的分析 ,指出了协议中存在的对协议发起方身份保护的安全问题 ,这一问题同样存在于IKEv2的数字签名认证中 .文中对这一问题给出了协议的改进方案 ,并分析说明 。
This paper analyses the main mode exchange of IKE with digital signature,pointing out the existing security problem about identity protection of the initiator,which also can be found in IKEv2 with digital signature.According to the flaw we find,a solution is presented.By analyzing,the solution can effectively protect the identity of the initiator.
出处
《汕头大学学报(自然科学版)》
2004年第4期66-70,75,共6页
Journal of Shantou University:Natural Science Edition