摘要
介绍了IKE协议,研究了IKE协议的安全性问题。对中间人攻击进行了分析并提出了一种改进cookie生成算法;针对拒绝服务攻击分析了系统安全性缺陷,并针对此类缺陷作出了算法改进;在前两种改进方案的基础上设计了一种新的口令认证密钥交换协议,经验证,新的口令认证密钥交换协议更安全有效。
The IKE(Internet Key Exchange) protocol is introduced and its security problem is researched.The man-in-the-middle attacks are analyzed and an improved cookie generation algorithm is put forward.Aiming at DoS(Denial of Service) attacks,the disadvantages of system security are analyzed and the algorithm is improved for overcoming the disadvantages.A new password authentication key exchange protocol is designed on the basis of the former two improvement schemes,and the verification indicates that the protocol is safer and more effective.
出处
《计算机时代》
2011年第11期26-27,31,共3页
Computer Era
基金
安徽省高等学校省级自然科学基金资助项目(KJ2010B304)
安徽省高等学校省级人文社会科学基金资助项目(2011sk147)