作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2011, Vol. 37 ›› Issue (6): 138-140. doi: 10.3969/j.issn.1000-3428.2011.06.048

• 安全技术 • 上一篇    下一篇

基于身份加密的图像口令认证方案

章启恒,唐西林   

  1. (华南理工大学理学院,广州 510640)
  • 出版日期:2011-03-20 发布日期:2011-03-29
  • 作者简介:章启恒(1986-),男,硕士研究生,主研方向:密码学,信息隐藏;唐西林,教授
  • 基金资助:
    国家自然科学基金资助项目“后量子密码:多变量公钥密码体制”(60973131)

Graphical Password Authentication Scheme with Identity-Based Encryption

ZHANG Qi-heng, TANG Xi-lin   

  1. (School of Science, South China University of Technology, Guangzhou 510640, China)
  • Online:2011-03-20 Published:2011-03-29

摘要: 基于对称密钥的认证协议需要通信双方拥有共同的密钥,共享密钥的更新存在安全问题。针对上述问题,提出一个以数字信封技术注册图像口令的图像口令认证方案,利用基于身份加密算法的密钥分配协议解决共享密钥的更新问题,采用动态图像序列的登录方式抵抗肩窥攻击,且用户可以自由选择图像口令。理论分析结果证明,该方案可以抵抗重放攻击等常规攻击,并节省通信带宽。

关键词: 图像口令, 数字信封, 基于身份加密, 密钥更新

Abstract: Authentication protocol based on the symmetric key demands the both communicators share the same key, and there is safety problem in the updating of the shared key. In order to solve the problems, this paper proposes a scheme which can register the graphical passwords with digital envelope. It resolves the key update with key establishment based on Identity-Based Encryption(IBE), and resists shoulder surfing adopting dynamic graphical sequence. Users can choose graphical passwords freely. Analysis result proves that the scheme can resist common attacks like replay attack effectively, and its communication cost is reduced.

Key words: graphical password, digital envelope, Identity-Based Encryption(IBE), key update

中图分类号: