摘要
针对静态口令身份认证技术易受攻击的安全缺陷,在事件同步一次性口令产生机制的基础上,结合公钥密码体制,设计并实现了一种新的一次性口令双向认证方案。与传统的挑战/响应双向认证方案相比,该方案实现简单、执行效率高,适用于电子商务过程中的身份认证,能够实现网络环境下用户和服务器的双向认证,避免各种攻击,可以大大提高用户访问的安全性,有效保护用户信息。
In this paper, a new mutual authentication scheme is proposed, which is based on event synchronization one- time password mechanism and pub'lic key cryptosystem. This scheme could provide client/server mutual authentication and avoid various attacks. Thus the access security would be greatly enhanced and the user's information be effectively protected. Compared with the traditional challenge/response mutual authentication scheme, this scheme possesses the advantage of high security and efficiency.
出处
《信息安全与通信保密》
2010年第2期79-81,共3页
Information Security and Communications Privacy
关键词
一次性口令
双向认证
公钥体制
one-time password
mutual authentication
public key cryptosystem