摘要
传统的身份认证仅采用静态密码,且只有唯一的认证服务器为用户提供服务。其缺点是:静态密码很容易被攻破;若认证服务器被攻破或发生故障,就不能及时地为用户提供服务甚至导致用户信息的永久丢失,这在证券或银行等交易系统中是无法接受的。因此迫切需要一种更安全有效的认证方案。本文提出的把动态密码和入侵容忍技术结合起来的方案,可以较好地解决用户密码被攻破以及认证服务器被入侵或破坏所带来的安全问题。
In traditional identity authentication, only static passwords were employed. Besides, only one authentication server was utilized for offering service to customers. There are two disadvantages in the above scheme, static password can be easily broken; if the authentication server was breached or broken down, it wouldn't offer the usual service to customers in time, and even result the loss of customers' information forever. Hence, it is necessary to find a more effective identify authentication scheme. By combining dynamic password with intrusion-tolerant technique, this paper presents a new identity authentication scheme that can effectively cope with the problems caused by both the breach of password and broken down of some authentication servers.
出处
《华东理工大学学报(自然科学版)》
CAS
CSCD
北大核心
2009年第4期596-599,共4页
Journal of East China University of Science and Technology
基金
国家高技术研究发展计划(863)(02006AA10Z315)
超细材料制备与应用教育部重点实验室基金项目
关键词
静态密码
动态密码
入侵容忍
身份认证
static password
dynamic password
intrusion-tolerant
identify authentication