作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2009, Vol. 35 ›› Issue (5): 142-143,. doi: 10.3969/j.issn.1000-3428.2009.05.049

• 安全技术 • 上一篇    下一篇

基于ECC的远程用户智能卡认证方案

余卿斐1,杨晓元1,2,周宣武1,2   

  1. (1. 武警工程学院电子技术系网络与信息安全武警部队重点实验室,西安 710086; 2. 西安电子科技大学网络信息安全教育部重点实验室,西安 710071)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2009-03-05 发布日期:2009-03-05

ECC-based Remote User Authentication Scheme Using Smart Card

YU Qing-fei1, YANG Xiao-yuan1,2, ZHOU Xuan-wu1,2   

  1. (1. Key Laboratory of Network & Information Security of the APF, Engineering College of the APF, Xi’an 710086; 2. Key Laboratory of Network & Information Security of the Ministry of Education, Xidian University, Xi’an 710071)
  • Received:1900-01-01 Revised:1900-01-01 Online:2009-03-05 Published:2009-03-05

摘要: 针对对Hwang-Li智能卡认证方案的有效攻击,提出一类基于椭圆曲线密码的远程用户智能卡认证方案。利用椭圆曲线上的离散对数问题设计单向陷门函数,使口令和身份不再是简单的基数与幂的关系。避免Shen-Lin-Hwang攻击和Chan-Cheng攻击,充分发挥椭圆曲线密码系统密钥量小、效率高的优势。在同等安全强度下,以较少的存储空间和较小的通信带宽与系统开销实现较高的安全性,可广泛应用于分布式系统。

关键词: 用户认证, 智能卡, 椭圆曲线密码体制

Abstract: An Elliptic Curve Cryptography(ECC) based remote user authentication scheme using smart card is proposed, due to the fact that Hwang-Li’s scheme is vulnerable to impersonation attack. One-way function is designed based on Elliptic curve discrete logarithm problem, so that the relationship of password and identity is no longer base and power. The scheme stands up to Shen-Lin-Hwang’s attack and Chan-Chen’s attack, and makes best use of the advantages of ECC.

Key words: user authentication, smart card, Elliptic Curve Cryptography(ECC)

中图分类号: