摘要： 分析S/KEY一次性口令方案中存在的缺陷，在对其进行改进的基础上提出一种基于RBF神经网络的一次性口令认证方案。该方案增加系统的安全性，实现客户端和服务器端的相互认证、服务器端敏感信息的安全存储和每次认证产生不同的会话密钥。安全性分析表明，该方案认证过程可降低运算复杂度和提高执行效率。

关键词: 一次性口令, Hash函数, RBF神经网络, 挑战/响应

Abstract: This paper analyses one-time password authentication methods of the S/KEY and points out some shortcomings. Some improvement is made and RBF neural network one-time password authentication scheme is put forward. It strengthens system safety, achieves mutual authentication between the client-side and server-side, safely stores sensitive information in server-side and produces different session key in each authentication. Security analysis shows that the scheme has only simple addition and multiplication in the certification process, it clearly reduces computational complexity and improves efficiency.

Key words: one-time password, Hash function, RBF neural network, challenge/response

中图分类号: 

• TP309