网络安全协议SPWMN的安全性分析与改进

Analysis and Improvement of a Secure Key Distribution Protocol on SPWMN

下载PDF

导出

摘要本文针对无线移动网络的会话密钥分配协议SPWMN进行安全性分析,发现消息重放攻击和反射攻击对其都是有效攻击。从而指出该协议在身份认证和提供加密预言服务方面有一定的安全缺陷,然后提出一种改进的协议SPWMN-1。改进后的协议并未增加计算开销,并且修正了SPWMN的安全缺陷,比原协议更安全实用。 This paper proposed a secure session-key distribution (SKD) protocol SPWMN for mobile communication in 2007, and analyzed the security of SPWMN and made it unworkable by replay attack and reflection attack. The reasons of such existing flaws were investigated as failure authentication and risky encryption oracle, and an improved protocol version (called SPWMN-1 protocol) was proposed in this paper. The SPWMN-1 protocol remedied the flaws while kept the original computation cost. The improved protocol is more secure and practical than original SPWMN protocol.

作者刘艳霞赵宗渠

机构地区河南理工大学计算机科学与技术学院

出处《电脑知识与技术》 2009年第7X期5907-5909,共3页 Computer Knowledge and Technology

基金河南教育厅08自然科学研究计划(2008B520011) 河南理工大学青年基金(646155)

关键词会话密钥分配协议安全性分析消息重放攻击反射攻击 Session-key distribution protocol Security analysis Message replay attack Reflection attack

分类号 TP393.08 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献6

1姚丹霖,江国庆,王新建.一种高效的无线移动网络安全协议[J].计算机应用研究,2007,24(11):127-129. 被引量：2
2J.Clark,J.Jacob.A survey of authentication protocol literature[K].wwwcsyorkacuk/~jac/papers/drareviewpsgz.2007
3G.Low.Breading and fixing the Needham-Schroeder public-key authentication protocol[].Information Processing Letters.1995
4Needham R,Schroeder M.Using encryption for authentication in large networks of computers[].Communications of the ACM.1978
5Denning DE,Sacco GM.Timestamps in key distribution protocols[].Communications of the ACM.1981
6Woo T Y C,Lam S S.Authentication for Distributed Systems[].IEEE Computer.1992

二级参考文献10

1ANDREW Z.TABONA O.An overview of wireless network security[EB/OL].(2005-08-04).[2005-10-17].http://www.windowsnetworking.com/ pages/article_p.asp?id=421.
2NEEDHAM R,SCHROEDER M.Using encryption for authentication in large networks of computers[J].Communications of the ACM,1978,21(12):993-999.
3AJMANI S,MORRIS R,LISKOV B.A trusted third-party computation service[R].MIT:LCS Publication,2001:1-17.
4GENNARO R,LINDELL Y.A framework for password-based authenticated key exchange[C]//Proc of EUROCRYPT 2003.Heidelberg:Springer-Verlag,2003:524-543.
5ILIEV A,SMITH S.Towards tiny trusted third parties[R].[S.l.]:Dartmouth Computer Science,2005:1-26.
6SCHLICHTING R D,SCHNEIDER F B.Fail-stop processors:an approach to designing fault-tolerant computing systems[J].ACM Transactions on Computing Systems,1983,1(3):222-238.
7GONG L,SYVERSON P F.Fail-stop protocols:an approach to designing secure protocols[C]//Proc of IFIP DCCA-5.Oakland:IEEE Computer Society Press,1985:44-55.
8GARCIA-LUNA-ACEVES J J.A fail-safe routing algorithm for multihop packet-radio networks[C]//Proc of IEEE INFORCOM'86.Miami:IEEE Computer Society Press,1986:120-132.
9SYVERSON P F,OORSCHOT P C van.On unifying some cryptographic protocol logics[C]//Proc of IEEE Computer Society Symposium on Research in Security and Privacy.Los Alamitos,Calif:IEEE Computer Society Press,1994:14-28.
10SYVERSON P F,OORSCHOT P C van.A unified cryptographic protocol logic[R].Washington D C:NRL Publication,1996:1-29.

共引文献2

1李忠成.nRF24E1无线组网及其安全技术研究[J].浙江万里学院学报,2008,21(5):39-43.
2杨旭峰.基于ARP协议和Agent协作方法的动态入侵防护[J].电脑知识与技术（过刊）,2009,15(8X):6406-6407.

1孙巍,刘占波,李江丰,尹尚书.分布式DNS反射DDoS攻击原理与防范[J].通信管理与技术,2014,0(5):70-73. 被引量：4
2张阳,赵燕杰.DDoS放大攻击原理及防护[J].现代计算机,2014,20(17):45-48. 被引量：5
3赖叶蕾,叶晰.一种电子商务网站抵御分布式拒绝服务攻击的方案[J].商场现代化,2013(32):132-132. 被引量：1
4庞礼军,樊林波,赵明.基于嵌入式系统的身份认证和密钥协商算法[J].贵州大学学报（自然科学版）,2010,27(2):74-77. 被引量：1
5罗玺,罗红,刘洪坤.网络攻击源隐藏技术研究[J].计算机安全,2011(11):25-28. 被引量：1
6皮建勇,刘心松,符青云,吴艾.一种基于完全分布式系统的密码安全体制研究[J].计算机应用,2006,26(1):75-77.
7Web安全问答（2）[J].通信技术,2013(2):98-98.
8Web安全问答（3）[J].通信技术,2011,44(3):53-53.
9Web安全问答（4）[J].通信技术,2010(10):53-53.
10徐国天.DDOS攻击与追踪破解技术研究[J].警察技术,2017,0(3):63-66. 被引量：1

电脑知识与技术

2009年第7X期

浏览历史

内容加载中请稍等...

网络安全协议SPWMN的安全性分析与改进

参考文献6

二级参考文献10

共引文献2

相关作者

相关机构

相关主题

浏览历史