基于智能卡的多服务器匿名认证方案

doi:10.3969/j.issn.1000-3428.2016.05.027

计算机工程

基于智能卡的多服务器匿名认证方案

王耄,王晓明

(暨南大学计算机科学系,广州 510632)

收稿日期:2015-07-30 出版日期:2016-05-15 发布日期:2016-05-13
作者简介:王耄(1990-)，男,硕士研究生,主研方向为信息安全;王晓明,教授、博士、博士生导师。
基金资助:
国家自然科学基金资助项目(61070164，61272415)；广东省自然科学基金资助项目(S012010008767)；广东省科技计划基金资助项目(2013B010401015，2012B091000136)。

Multi-server Anonymous Authentication Scheme Based on Smart Card

WANG Mao,WANG Xiaoming

(Department of Computer Science,Jinan University,Guangzhou 510632,China)

Received:2015-07-30 Online:2016-05-15 Published:2016-05-13

摘要/Abstract

摘要： 分析健壮的多服务器架构下智能卡认证方案,针对该方案不能完全实现用户匿名,存在拒绝服务攻击和智能卡攻击等问题,提出一种改进方案。利用随机掩蔽技术,使每个用户智能卡存储的密钥不同,且每次登录认证的用户名随机变化,并通过BAN逻辑分析证明改进方案的有效性。分析结果表明,该方案能够抵抗智能卡攻击和拒绝服务攻击,实现用户完全匿名认证,减少服务器端的计算量。

关键词: 多服务器, 智能卡, 匿名认证, 动态ID, 隐私保护

Abstract: Through the analysis of robust smart card authentication scheme for multi-server architecture,it is found that this scheme does not fully realize user anonymous authentication,and exists Denial of Service(DoS) attack,smart card breach attack and other security issues.To solve these problems,this paper proposes an improved scheme.By using the random masking technology,the smart card storage key of each user is different and the user name changes randomly when users login every time,and the BAN logic analysis is performed to demonstrate the effectiveness of the improved scheme.Analysis results show that it can resist smart card breach attack and DoS attack,achieves full anonymous authentication for users,and reduces the server-side computation.

Key words: multi-server, smart card, anonymous authentication, dynamic ID, privacy protection

中图分类号:

TP399

王耄,王晓明. 基于智能卡的多服务器匿名认证方案[J]. 计算机工程, doi: 10.3969/j.issn.1000-3428.2016.05.027.

WANG Mao,WANG Xiaoming. Multi-server Anonymous Authentication Scheme Based on Smart Card[J]. Computer Engineering, doi: 10.3969/j.issn.1000-3428.2016.05.027.

http://www.ecice06.com/CN/Y2016/V42/I5/156

参考文献

参考文献［1］Fan Rong,He Daojing.An Efficient and DoS-resistant User Authentication Scheme for Two-tiered Wireless Sensor Networks［J］.Journal of Zhejiang University:Science C,2011,12(7):550-560. ［2］Jiang Qi,Ma Jianfeng,Li Guangsong,et al.An Enhanced Authentication Scheme with Privacy Preservation for Roaming Service in Global Mobility Networks［J］.Wireless Personal Communications,2013,68(4):1477-1491. ［3］Pippal R S,Jaidhar C D.Secure Key Exchange Scheme for IPTV Broadcasting［J］.Informatica,2012,36(1):47-52. ［4］Liao Yipin,Wang Shenshang.A Secure Dynamic ID Based Remote User Authentication Scheme for Multi-server Environment［J］.Computer Standards & Interfaces,2009,31(1):24-29. ［5］Chen Te-Yu,Hwang Min-Shiang,Lee Cheng-Chi,et al.Cry-ptanalysis of a Secure Dynamic ID Based Remote User Auth-entication Scheme for Multi-server Environment［C］//Proceedings of the 4th International Conference on Innovative,Computing,Information and Control.Washington D.C.,USA:IEEE Computer Society,2009:725-728. ［6］Hsiang C,Shih W K.Improvement of the Secure Dynamic ID Based Remote User Authentication Scheme for Multi-server Environment［J］.Computer Standards & Interfaces,2009,31(6):1118-1123. ［7］Lee C C,Lin Tsung-Hung,Chang Ruixiang.A Secure Dynamic ID Based Remote User Authentication Scheme for Multi-server Environment Using Smart Cards［J］.Expert Systems with Applications,2011,38(11):13863-13870. ［8］Li Xiong,Xiong Yongping,Jian Ma,et al.An Efficient and Security Dynamic Identity Based Authentication Protocol for Multi-server Architecture Using Smart Cards［J］.Journal of Network and Computer Applications,2012,35(2):763-769. ［9］Xue Kaiping,Hong Peilin,Ma Changsha.A Light Weight Dynamic Pseudonym Identity Based Authentication and Key Agreement Protocol Without Verification Tables for Multi-server Architecture［J］.Journal of Computer and System Sciences,2012,80(1):195-206. ［10］万涛,廖维川,马建峰.面向多服务器架构的认证协议分析与改进［J］.西安电子科技大学学报,2013,40(6):174-179. ［11］Wang Bin,Ma Maode.A Smart Card Based Efficient and Secured Multi-server Authentication Scheme［J］.Wireless Personal Communications,2013,68(2):361-378. ［12］Ravi S P,Jaidhar C D,Shashikala T.Robust Smart Card Authentication Scheme for Multi-server Architecture［J］.Wireless Personal Communication,2013,72(1):729-745. ［13］Guo Dianli,Wen Fengtong.Analysis and Improvement of a Robust Smart Card Based-authentication Scheme for Multi-server Architecture［J］.Wireless Personal Com-munications,2014,78(1):475-490. ［14］Burrows M,Abadi M,Needham R M.A Logic of Authentication［J］.Proceedings of the Royal Society of London,Series A:Mathematical and Physical Sciences,1989,426(1871):233-271. ［15］Kessler V,Wedel G.AUTLOG——An Advanced Logic of Authentication［C］//Proceedings of IEEE Computer Security Foundations Workshop VII.Franconia,USA:IEEE Press,1994:90-99. ［16］Kemal B,Nazife B.One-time Passwords:Security Analysis Using BAN Logic and Integrating with Smart Card Authentication［J］.Lecture Notes in Computer Science,2003,2869:794-801. 编辑刘冰

[1]	邱天晨, 郑小盈, 祝永新, 封松林. 面向非独立同分布数据的联邦学习架构[J]. 计算机工程, 2023, 49(7): 110-117.
[2]	陈福安, 柳毅. 基于区块链的V2G无证书环签密隐私保护方案[J]. 计算机工程, 2023, 49(6): 34-41,52.
[3]	杨越佳, 华蓓, 钟志威, 高咪. 基于同态加密的隐私保护逻辑回归协同计算[J]. 计算机工程, 2023, 49(4): 23-31.
[4]	唐敏, 张宇浩, 邓国强. 一种高效的非交互式隐私保护逻辑回归模型[J]. 计算机工程, 2023, 49(4): 32-42,51.
[5]	王群, 李馥娟, 倪雪莉, 夏玲玲, 梁广俊. 区块链隐私保护机制研究[J]. 计算机工程, 2023, 49(4): 1-13.
[6]	张晓均, 刘庆, 郑爽, 王鑫, 薛婧婷, 王世雄. 支持隐私保护的可验证云端数据分享方案[J]. 计算机工程, 2023, 49(3): 49-57.
[7]	李尤慧子, 俞海涛, 殷昱煜, 高洪皓. 基于超级账本的集群联邦优化模型[J]. 计算机工程, 2023, 49(1): 22-30.
[8]	周全兴, 李秋贤, 丁红发, 樊玫玫. 基于博弈论优化的高效联邦学习方案[J]. 计算机工程, 2022, 48(8): 144-151,159.
[9]	陈乃月, 金一, 李浥东, 蔡露鑫, 魏圆梦. 基于区块链的公平性联邦学习模型[J]. 计算机工程, 2022, 48(6): 33-41.
[10]	朱黎明, 丁晓波, 龚国强. 图数据连续发布中的隐私保护方法[J]. 计算机工程, 2022, 48(5): 154-161.
[11]	谷青竹, 董红斌. PPDM中面向k-匿名的MI Loss评估模型[J]. 计算机工程, 2022, 48(4): 143-147.
[12]	徐鑫, 温蜜. 基于数据库驱动认知无线电网络的位置隐私保护方案[J]. 计算机工程, 2022, 48(2): 164-172.
[13]	张晓东, 陈韬伟, 余益民. 一种基于LWE‐CPABE的区块链数据共享方案[J]. 计算机工程, 2022, 48(10): 158-168,175.
[14]	吴甜甜, 杨亚芳, 赵运磊. 一种面向车联网通信的条件隐私保护认证协议[J]. 计算机工程, 2021, 47(6): 14-22.
[15]	徐雅斌, 郭昊. 面向数据发布的隐私保护模型及参数优选方法[J]. 计算机工程, 2021, 47(5): 124-130.

选择文件类型/文献管理软件名称

选择包含的内容

基于智能卡的多服务器匿名认证方案

Multi-server Anonymous Authentication Scheme Based on Smart Card

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

本文评价

模态框（Modal）标题

选择文件类型/文献管理软件名称

选择包含的内容

基于智能卡的多服务器匿名认证方案

Multi-server Anonymous Authentication Scheme Based on Smart Card

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

本文评价