摘要
文献[5,6]利用基于椭圆曲线的信任授权机制设计了适用于无线移动设备的高效认证体制。从匿名性和会话密钥更新的角度分析该方案的缺陷。在不增加本地注册中心HLR、漫游地注册中心VLR和移动终端MS额外负担的前提下,提出了改进方案,加强方案的匿名性和密钥更新能力:一方面VLR无法获悉MS的身份信息;另一方面,MS和VLR可以更新它们的会话密钥,即使在HLR离线的情况下。提出的改进方案保持了原方案的高效性和其它优点。
In reference documents ,by exploiting elliptic curve based trust delegation mechanism,an efficient authentication mechanism suitable for wireless mobile devices is presented.In terms of anonymity and secure key update,the weaknesses of the scheme are analyzed.Without imposing extra burdens on HLR(home location network),VLR(visited location network) or MS(mobile station),an improved scheme is proposed that strengthens the scheme's secrecy and the encryption key's update capability: on the one hand VLR is prohibited from acquiring MS's identification information,on the other hand MS and VLR can update their session keys even when HLR is offline.The improved scheme preserves efficiency and other merits of the original scheme.
出处
《计算机应用与软件》
CSCD
北大核心
2012年第3期19-21,111,共4页
Computer Applications and Software
基金
国家自然科学基金项目(60873217
61070249)
关键词
无线网络
移动认证
匿名性
安全密钥更新
后向保密性
Wireless network Mobile authentication Anonymity Secure key update Backward secrecy