改进的具有PFS特性的口令认证密钥协商方案

J4 ›› 2012, Vol. 47 ›› Issue (9): 19-25.

改进的具有PFS特性的口令认证密钥协商方案

汪定^1,2,薛锋^1,王立萍^1,马春光²

1. 解放军蚌埠汽车士官学校训练部, 安徽蚌埠 233011;
2. 哈尔滨工程大学计算机学院, 黑龙江哈尔滨 150001

收稿日期:2012-07-07 出版日期:2012-09-20 发布日期:2012-09-24
作者简介:汪定(1985- ),男,硕士研究生,研究方向为密码学与信息安全. Email: wangdingg@mail.nankai.edu.cn
基金资助:
国家自然科学基金资助项目(61170241);哈尔滨市科技创新人才研究专项资金资助项目(2012RFXXG086)

Improved password-based key agreement scheme with perfect forward secrecy

WANG Ding1,2, XUE Feng1, WANG Li-ping1, MA Chun-guang2

1. Department of Training, Automobile Sergeant Institute of PLA, Bengbu 233011, Anhui, China;
2. College of Computer Science, Harbin Engineering University, Harbin 150001, Heilongjiang, China

Received:2012-07-07 Online:2012-09-20 Published:2012-09-24

摘要/Abstract

摘要：

讨论了具有完备前向安全性(perfect forward secrecy, PFS)的基于智能卡的远程用户口令认证密钥协商方案,指出该方案无法实现所声称的在非抗窜扰智能卡假设下抗离线口令猜测攻击,对密钥泄露仿冒攻击是脆弱的,并且存在时钟同步问题,不适于分布式网络应用。给出了一个改进方案,用随机数代替时间戳来实现消息的新鲜性,对其进行了安全性和效率分析。分析结果表明,改进方案弥补了原方案的安全缺陷,保持了较高的效率,适于分布式网络应用环境。

关键词: 身份认证;智能卡;口令猜测攻击;完备前向安全性

Abstract:

In this paper, it was pointed out that a recent smartcard-based password authentication scheme with Perfect Forward Secrecy (PFS) cannot achieve the claimed security and its following flaws were reported: 1) It is vulnerable to offline password guessing attack and key compromise impersonation attack; 2) It has the problems of no poor reparability and time-synchronization. As our main contribution, an improved scheme was presented and analyzed. The analysis shows that our new scheme eliminates the defects of Hao et al.’s scheme while keeping the merit of high performance, and it is suitable for applications in distributed networks.

Key words: authentication; smart card; offline password guessing attack; perfect forward secrecy

汪定1,2,薛锋1,王立萍1,马春光2. 改进的具有PFS特性的口令认证密钥协商方案[J]. J4, 2012, 47(9): 19-25.

WANG Ding1,2, XUE Feng1, WANG Li-ping1, MA Chun-guang2. Improved password-based key agreement scheme with perfect forward secrecy[J]. J4, 2012, 47(9): 19-25.

参考文献

多维度评价

Viewed

Full text

Abstract

Cited

Shared

Discussed