摘要
重放攻击是最基本、最常用、危害性最大的攻击认证协议的形式。从服务器和通信实体的角度对认证协议受重放攻击的根源进行详细的分析,提出了一套抗重放攻击认证协议的设计原则和方法。通过该原则和方法,对Adadi-Needham修改版本的Otway-Rees协议和BAN-Yahalom协议进行了分析和改进。该设计原则和方法对抗重放攻击认证协议的设计和分析是很有效的。
Replay attack is the most basic, dangerous and frequently used form of attacking authentication protocols. The radical causes of replay attack from the perspectives of server and entities of authentication protocol are analyzed and a set of principles and methods of designing authentication against the replay attack are put forward. The Adadi-Needham revised version of the Otway-Rees protocol and BAN-Yahalom protocol are analyzed and improved by using these principles and methods. The designing principles and methods are effective in designing authentication against the reset attack.
出处
《计算机工程与设计》
CSCD
北大核心
2008年第20期5163-5165,5170,共4页
Computer Engineering and Design
基金
贵州省科学技术基金项目(黔科合J字[2007]2204号)
关键词
认证协议
重放攻击
会话密钥
形式化分析
认证协议设计
authentication protocols
replay attack
session key
formal analysis
authentication protocols design
