摘要
本文提出了一种基于AES实现的口令认证方法。该算法不使用公开密钥算法,仅采用AES进行远程用户的身份认证。该方法具有速度快,安全性高的特点,易于采用令牌(Token)或IC卡硬件实现。在本文的最后,还对认证协议的安全性进行了讨论。
An AES-based password authentication mechanism is proposed. The algorithm overcomes the conventional synchronization problem based on counter mode. Based on AES a absolutely secure algorithm under present technology, this mechanism can be implemented with the properties of fast speed and high security, and it is easier to be implemented by Token or IC card hardware. Besides, one authentication protocol is proposed, which is aimed at satisfying security and created by final authorization passcode and digital signature that is built by userlD and local token. In the end, the security problems of the protocol at two aspects algorithm security and protocol security are discussed, and AES-based password protocol is with high security is the result.
出处
《微计算机信息》
北大核心
2007年第02X期37-38,28,共3页
Control & Automation
关键词
AES
哈希函数
认证协议
AES,Hash technology,Validation protocol
