摘要
针对远程桌面协议,提出1个新的基于口令的增强认证性的密码套件.该密码套件利用远程桌面协议原有的口令,设计了1个增强认证的密钥协商协议,且不改变密钥计算过程.在随机预言机模型下,给出安全性证明.采用这个密码套件的远程桌面协议握手过程能避免中间人攻击.这是有关通过新的可证明安全的密码套件提高远程桌面协议安全性的尝试.
Remote Desktop Protocol can make clients to access the remote servers, but it is vulnerable to man-in-middle attacks. A new password-based ciphersuite was proposed for the remote desktop protocol in this paper. It devised a key agreement protocol with the original password of RDP. The new ciphersuite can offer strong authentication. It doesn' t change the computation of keys. This ciphersuite is provably secure in random oracle model. The handshake of RDP that adopts this ciphersuite can avoid man-in-middle attacks. It is the first attempt at drafting provably secure key agreement ciphersuites for RDP.
出处
《北京邮电大学学报》
EI
CAS
CSCD
北大核心
2008年第6期50-53,共4页
Journal of Beijing University of Posts and Telecommunications
基金
国家“863计划”项目(2006AA01Z419)
国家自然科学基金项目(90604023)
北京市自然科学基金项目(4072020)
关键词
远程桌面协议
认证
密钥交换
握手协议
密码套件
remote desktop protocol
authentication
key exchange
handshake protocol
ciphersuite