一种改进的轻量级远程用户认证方案

An Improved Lightweight Remote User Authentication Scheme

物联网中远程用户身份认证是保证在线服务安全性的第一步。针对Kaul等人提出的远程用户认证方案中不能抵抗离线口令猜测攻击的安全缺陷问题,基于安全hash函数和简单的异或运算,提出一种改进的轻量级远程用户认证方案。经安全性、开销和时间复杂度分析,与原方案相比,所提方案抗离线口令猜测攻击,未增加存储开销和通信开销,安全性更高,执行时间更少,更适用于资源受限的移动设备。

Remote user authentication is the first step to guarantee the security of online services in the Internet of Things. Aiming at the security de-fect of remote user authentication scheme proposed by Kaul et al., which cannot resist offline password guessing attack, proposes an im-proved lightweight remote user authentication scheme based on secure hash function and simple XOR operation. After the analysis of the security, overhead and execution time, compared with the original scheme, the proposed scheme can resist offline password guessing attack without increasing storage and communication overhead, and has higher security, less execution time, and is more suitable for mobile devic-es with limited resources.