摘要
论文提出一种基于AES的口令认证协议。协议不使用公开密钥算法,仅采用AES进行远程用户的身份认证,具有速度快、安全性高的特点,易于采用令牌(Token)或IC卡硬件实现。最后,对认证协议的安全性进行了讨论。
An AES-based password authentication mechanism is proposed. The algorithm overcomes the conventional synchronization problem based on counter mode. Based on AES-a absolutely secure algorithm under present technology, this mechanism can be implemented with the properties of fast speed and high security, and it is easier in implementation by Token or IC card hardware. In the end, the security problems of the protocol in two aspects-algorithm security and protocol security are discussed.
出处
《信息安全与通信保密》
2007年第6期189-191,共3页
Information Security and Communications Privacy
关键词
AES
哈希函数
认证协议
AES
Hash technology
Validation protocol