摘要
本文针对无线移动网络的会话密钥分配协议SPWMN进行安全性分析,发现消息重放攻击和反射攻击对其都是有效攻击。从而指出该协议在身份认证和提供加密预言服务方面有一定的安全缺陷,然后提出一种改进的协议SPWMN-1。改进后的协议并未增加计算开销,并且修正了SPWMN的安全缺陷,比原协议更安全实用。
This paper proposed a secure session-key distribution (SKD) protocol SPWMN for mobile communication in 2007, and analyzed the security of SPWMN and made it unworkable by replay attack and reflection attack. The reasons of such existing flaws were investigated as failure authentication and risky encryption oracle, and an improved protocol version (called SPWMN-1 protocol) was proposed in this paper. The SPWMN-1 protocol remedied the flaws while kept the original computation cost. The improved protocol is more secure and practical than original SPWMN protocol.
出处
《电脑知识与技术》
2009年第7X期5907-5909,共3页
Computer Knowledge and Technology
基金
河南教育厅08自然科学研究计划(2008B520011)
河南理工大学青年基金(646155)
关键词
会话密钥分配协议
安全性分析
消息重放攻击
反射攻击
Session-key distribution protocol
Security analysis
Message replay attack
Reflection attack