摘要
随着对TNC应用和研究的不断深入,其架构自身的安全性问题也逐渐成为人们所关注的焦点。在分析了TNC架构存在局限性的基础上,提出了一种新的基于TNC规范的网络接入认证协议,在服务器端和客户端安全协商会话密钥的前提下实现了通信双方的双向身份认证和双向平台认证,在提高认证效率的同时使得整个认证过程更为安全可靠。最后,对协议进行了安全性分析,并给出了协议的安全性验证过程,分析结果表明该接入认证协议能够达到预期的安全目标。
With more and more study on TNC,the security issues of the TNC architecture have become the focus.After analyzing the limitations in the TNC architecture,a new network access authentication protocol is proposed,which complies with the TNC specifica-tions.Based on safely negotiated session keys between client and server,the protocol implements both bi-directional identity authentication and bi-directional platform authentication,which makes the whole process more secure while improving authentication efficiency.Finally,a security analysis of the protocol and details of the process of safety authentication are given.The result shows that the protocol meets the expectations of the safety demands.
出处
《计算机工程与设计》
CSCD
北大核心
2011年第12期3993-3996,共4页
Computer Engineering and Design
基金
国家863高技术研究发展计划基金项目(2007AA01Z438200)
关键词
可信网络连接
接入认证协议
双向认证
安全性分析
BAN逻辑
trusted network connect(TNC)
access authentication protocol
bi-directional authentication
security analysis
BAN logic
