摘要
2010年Yoon等人提出一种基于椭圆曲线的三要素SIP认证密钥协商协议TAKASIP,但其存在一些攻击。对唐宏斌等人提出的该协议的改进方案使用SPIN进行了分析,发现仍然存在安全漏洞。针对这些缺陷,提出了一种有效的改进方案,采用在协议的消息中加入只有双方共享的秘密值的方法,克服了安全漏洞。新方案在不降低效率的情况下,提高了安全性。
In 2010, Yoon et al. proposed a three-factor authenticated key agreement scheme for SIP on Elliptic Curves named TAKASIP, but it exists some attacks. Using SPIN to analysis that the version given by Tang et al still exists an attack. Based on these flaws, an effective improvement for TAKASIP protocol is given, which adds a secret value only shared by both sides in the protocol and overcomes the security drawbacks. New scheme not only improves security but also maintains the high efficiency.
出处
《计算机工程与应用》
CSCD
2014年第13期87-89,113,共4页
Computer Engineering and Applications
基金
国家自然科学基金(No.61202463)
