摘要
对重放攻击类型以及常用防御手段进行了分析,基于对常用的新鲜因子缺陷的思考,提出了一种基于方向的重放攻击防御机制,基于双向通信的新鲜性检查办法,结合了加密机制、算法机制、应答机制,采用带方向持续累加的序列号作为新鲜因子,用较小的代价实现对直接重放、反射重放、转移重放等各种类型重放攻击的有效防御,对通信协议的安全性设计具有一定的实际应用价值,此机制的代价小,尤其适用于PSTN、短波等窄带通信。
Comprehensive analysis is done on the types and common defense means of replay attacks,and based on the consideration of common fresh factor defects,a new direction-based freshness checking mechanism is proposed.Based on the freshness checking method of bidirectional communication,combined with encryption mechanism,algorithm mechanism and response mechanism,and with the serial number continuously accumulating in the direction as the new factor,the effective defense against direct replay,reflection replay,transfer replay and other types of replay attacks is realized at a small cost,and this has certain practical application value for the security design of communication protocols.This mechanism,small in cost,is particularly suitable for PSTN and shortwave and other narrowband communications.
作者
王效武
刘英
WANG Xiao-wu;LIU Ying(No.30 Institute of CETC,Chengdu Sichuan 610041,China)
出处
《通信技术》
2019年第6期1500-1503,共4页
Communications Technology
关键词
安全协议
重放攻击
新鲜因子
security protocol
replay attack
fresh factor