摘要
针对无线局域网中的便携式通信终端的计算资源、通信能力有限,难以执行大运算量的密码算法问题,提出了一种基于共享秘密的认证方式.该认证方式采用完整性校验码等安全技术为通信双方提供双向认证,由根秘密生成用于不同目的的多种密钥,并构成密钥体系.该认证方式能抵御重放攻击和中间人攻击,而且具有通信量小、计算量小、能提供密钥协商功能等优点,适合在资源受限的设备中用于保护移动通信中的信息安全.
According to portable communication terminal has limited computation resource and communication ability.Which is difficult to implement key cryptography algorithm with large amount of calculation question.It is proposed an authentication method based on EAP-SAKE in order to solve the problem.It uses some security technologies to provide mutual authentication between peers,such as message integrity code,etc.This authentication method generates different keys for various purposes from root secret and constitutes key hierarchy.In addition,it can resist replay attack and man-in-middle attack.It has less communication load and computing amount and provides key negotiation.So it is more suitable for protecting the information security in mobile terminal which has limited resource in WLAN.
出处
《郑州轻工业学院学报(自然科学版)》
CAS
2011年第3期50-52,62,共4页
Journal of Zhengzhou University of Light Industry:Natural Science