摘要
研究了动态口令技术,分析了文献[1]中的一个远程动态口令认证方案,发现原方案不能抵抗劫取连接攻击。对原方案进行了修改,修改后的方案克服了原方案存在的安全漏洞,保留了原方案的所有安全特性,具有更高的安全性。
The dynamic password technology is studied, and the remote dynamic password authentication scheme mentioned in article [ 1 ] is analyzed. It is found that the scheme can not resist the jacking connection attack. An improved scheme is proposed. The new scheme not only conquers the security problem of the original scheme, but also holds all the security characteristics of the original scheme. The improved scheme is more secure than the original scheme.
出处
《计算机应用与软件》
CSCD
北大核心
2008年第9期54-55,共2页
Computer Applications and Software
基金
河南省杰出青年科学基金资助项目(0312001800)
关键词
动态口令认证
密码协议
劫取连接攻击
Dynamic password authentication Cryptographic protocols Jacking connection attack