摘要
对Kerberos协议及安全性进行了较详细地分析,针对该协议存在的缺陷,提出了一种改进的认证模型。该模型引入轻量级票据,采用混合密码体制和USBKey双因素认证,较好地解决了口令猜测攻击、重放攻击、密钥存储困难等问题,具有较好的安全性与易实现性。
This paper discusses Kerberos protocol and its security in detail, proposes an improved authentication model according to its limitations as well. This model aims at solving the problems such as password guess attack, replay attack and key storage management by using lightweight ticket and hybrid cryptosystem and USBKey two-factor authentication, which is safe and easy to realize.
出处
《计算机系统应用》
2012年第4期216-219,共4页
Computer Systems & Applications
基金
湖南省教育厅科研项目(09C1271)