摘要
采用电话拨号实现远程访问服务在当前许多行业的应用非常广泛,其中最大的安全漏洞之一就是基于静态口令的认证。分析了拨号访问服务的安全隐患,介绍了一次性口令技术的工作原理,提出了利用一次性口令技术代替传统的静态口令认证方式,并以审计行业的应用为例,讨论了远程访问服务应用中的网络拓扑结构和身份认证的实现过程,并给出了访问服务器的设置参数。
Dial-up to remote access service is widely used in many fields currently, and the static-password is regarded as one of the most safety exposure. The vulnerability in remote access service is analyzed, and the work principle of one time password technology is introduced. Using one-time-password technology substitute for the conventional static-password work manner was proposed. The instance was discussed about using one time password technology in remote access service in the field of audit, and then, a kind of networktopology scheme and its work progress was given. At last, the parameter's configure script in Remote Access Server was submitted.
出处
《计算机工程与设计》
CSCD
北大核心
2005年第7期1762-1763,1766,共3页
Computer Engineering and Design
基金
江苏省教育厅基金项目(03KJD520108)。
关键词
远程访问
电话拨号
一次性口令
静态口令
身份认证
remote access service
dial-up
one time password
static-password
identity authentication
