摘要： 认证协议存在的一定的拒绝服务(DoS)攻击隐患。该文在cookie机制和工作量证明方法思想的基础上，采用弱认证和强认证相结合的方法，提出了双主体认证协议抵御DoS攻击的安全方案，给出了方案的实现细节和部分实验数据，分析了该方案的安全性。应用该方案对Lowe的NSPK协议进行改进，并分析了改进后协议的性能。

关键词: 认证协议, 拒绝服务, 安全协议

Abstract: Authentication protocol has a DoS attack weakness. Based on the idea of cookie solution and proof of work, this paper uses weak authentication and strong authentication, presents the security solution for protecting two-party authentication protocols against DoS attack, gives the detail and some experimental data, analyses the solution’s security. It improves the Lowe’s NSPK protocol using the solution, and analyses the improved protocol’s performance.

Key words: authentication protocol, Denial of Service(DoS), security protocol

中图分类号: 

• TP309