摘要
首先讨论了现有各种口令认证方法的特点,然后提出了一种可以进行密钥自动分发的不可重复口令认证方案。该方案具有以下基本特征:非法用户无法以重发攻击的方式入侵网络;主机系统可以自动分发加密密钥;用户不需事先取得加密密钥,可以不受限制的自由更改口令;系统管理者可以随时更改加密/解密密钥,并自动分发更新。显然,该方案在保持强安全性的同时具有很大的灵活性。
This paper discusses the characteristics of existing password authentication systems firstly, and then proposes a networked password authentication system with the capability of auto key distribution. The new system has the following properties: illegal user cannot intrusion into the network system by the ways of replay attack, the hosts in the network can distribute the key automatically, no pre-distribution of encryption key is needed, the password can be changed freely. Obviously, this system can work with high security while maintain enough flexibility.
出处
《微电子学与计算机》
CSCD
北大核心
2006年第10期131-133,137,共4页
Microelectronics & Computer
关键词
口令认证
不可重复
密钥自动分配
Password authentication, Anti-replay attack, Auto key distribution