摘要
对Lwamo等提出的一个多服务环境下具有匿名性的认证协议进行了安全性分析,发现该协议无法抵抗拒绝服务攻击、智能卡被盗攻击和用户伪造攻击等.并且,针对这些安全漏洞分别给出相应改进措施.
The security of an anonymous authentication protocol in the multi-server environment recently proposed by Lwamo et al.is analyzed,and it is found that the protocol fails to resist denial-of-service attacks,smart-card stolen attacks and user forgery attacks.Some corresponding countermeasures for these security vulnerabilities are also proposed.
作者
舒琴
王圣宝
韩立东
SHU Qin;WANG Shengbao;HAN Lidong(School of Information Science and Engineering,Hangzhou Normal University,Hangzhou 311121,China)
出处
《杭州师范大学学报(自然科学版)》
CAS
2021年第1期91-94,112,共5页
Journal of Hangzhou Normal University(Natural Science Edition)
基金
国家重点研发计划项目(2017YFB0802000)
国家自然科学青年基金项目(61702152,61702153)。
关键词
三因子认证
多服务器认证
拒绝服务攻击
智能卡被盗攻击
用户伪造攻击
three-factor authentication
multi-server authentication
denial-of-service attacks
smart-card stolen attacks
user forgery attacks