摘要
为有效提高远程身份认证协议的安全性能,将椭圆曲线、挑战/应答机制、生物特征、智能卡和口令认证技术相结合,提出了一种安全高效的三因素身份认证协议。协议采用椭圆曲线的点乘运算,既提升了安全性又降低了运算复杂度。认证双方使用挑战/应答机制的3次握手来实现双向认证,协议的认证过程引入随机数,并完成会话密钥协商。协议的安全性能基于Hash函数的单向性、椭圆曲线的离散对数难题和生物特征的安全特性。通过对多种已知攻击的形式化推演,证明该协议能抵御各种常见攻击,具有较高的安全性能。经仿真实验证明,协议具有更高的运算效率。
In order to effectively improve the security performance of remote identity authentication protocol,a secure and efficient three factors identity authentication protocol is proposed by combining elliptic curve,challenge/response mechanism,biometrics,smart card and password authentication technology.The point multiplication of elliptic curve is adopted in the protocol,which improves the security and reduces the computational complexity.The two sides of authentication use three handshakes of challenge/response mechanism to realize two-way authentication.The protocol introduces random numbers and completes session key agreement.The safety of this protocol is based on the unidirectionality of Hash function,discrete logarithm problem of elliptic curve and the security characteristics of biometrics.Through the formal deduction of a variety of known attacks,it is proved that the protocol can resist various common attacks and has high security performance.Simulation results show that the protocol has higher computational efficiency.
作者
黄朝阳
赵玉超
HUANG Chaoyang;ZHAO Yuchao(School of Information Engineering,Xiamen Ocean College Xiamen,Fujian 361100)
出处
《电子科技大学学报》
EI
CAS
CSCD
北大核心
2022年第3期425-431,共7页
Journal of University of Electronic Science and Technology of China
基金
福建省中青年教师教育科研项目(JAT191316)。
