作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2012, Vol. 38 ›› Issue (2): 146-147. doi: 10.3969/j.issn.1000-3428.2012.02.047

• 安全技术 • 上一篇    下一篇

基于口令的三方认证密钥交换协议

王明辉 1,2,王建东 1   

  1. (1. 南京航空航天大学信息科学与技术学院,南京 210016;2. 盐城工学院信息工程学院,江苏 盐城 224051)
  • 收稿日期:2011-07-13 出版日期:2012-01-20 发布日期:2012-01-20
  • 作者简介:王明辉(1977-),男,硕士研究生,主研方向:信息安全,密码学;王建东,教授、博士生导师
  • 基金资助:
    江苏省盐城市科技发展计划基金资助项目(YK2009092)

Three-party Authentication Key Exchange Protocol Based on Password

WANG Ming-hui 1,2, WANG Jian-dong 1   

  1. (1. College of Information Science and Technology, Nanjing University of Aeronautics and Astronautics, Nanjing 210016, China; 2. School of Information Engineering, Yancheng Institute of Technology, Yancheng 224051, China)
  • Received:2011-07-13 Online:2012-01-20 Published:2012-01-20

摘要: 传统的三方认证密钥交换协议不具备前向安全性,难以抵抗不可察觉在线字典攻击。为此,研究简单三方口令认证密钥交换协议,分析其存在的安全漏洞并加以改进,提出一种基于口令的三方认证密钥交换协议。分析结果表明,与其他协议相比,该协议的执行效率和安全性较高。

关键词:

mso-ascii-font-family: 'Times New Roman', mso-bidi-font-size: 8.0pt">口令, 公钥加密, 密钥交换协议, 不可察觉在线字典攻击, 可计算Diffie-Hellmanmso-ascii-font-family: 'Times New Roman', mso-bidi-font-size: 8.0pt">假设

Abstract: Most three-party authentication key exchange protocols are not security enough, and can not resist the undetectable online dictionary attack. Aiming at these problems, this paper proposes a three-party authentication key exchange protocol based on password. It analyses the vulnerability of the simple three-party authentication key exchange protocol, and proposes an improved security new protocol. Analysis result shows that, compared with the simple 3PAKE and the other protocols, the execution efficiency on calculation of the new protocol is better.

Key words: password, public-key encryption, key exchange protocol, undetectable online dictionary attack, Computational Diffie-Hellman(CDH) assumption

中图分类号: