摘要
远程认证协议允许远程服务器和用户通过不安全信道实现相互认证。唐宏斌等指出Chen等方案的基于智能卡的远程认证协议存在着一些安全问题,如丢失智能卡攻击,重放攻击等,并且提出一种基于智能卡的远程认证协议,为了抵抗重放攻击而引入时间戳机制。提出一种改进的基于智能卡的远程异步认证方案,在能抵抗提到的所有攻击条件下,不需要考虑时钟同步问题而能抵抗重放攻击,使操作更简单且未增加计算性能代价。
Remote authentication scheme allows a remote server and the user to realize mutual authe-ntication through the unsafe channel. Tang Hongbin et al claim that there are some security problems in Chen et al’s scheme, such as loss of smart card attack, replay attack, etc. It proposes an improved remote authentication scheme based on smart card. But Tang Hongbin et al introduce timestamp mechanism to resist replay attack. This paper proposes a remote asynchronous authenti-cation scheme based on smart card. The scheme doesn’t need to sonsider clock synchronization and can resist all men-tioned attacks, operation is easier and the performance cost is not increased.
出处
《计算机工程与应用》
CSCD
2014年第8期61-65,89,共6页
Computer Engineering and Applications
关键词
异步
认证协议
智能卡
椭圆曲线离散对数问题
asynchronous
authentication scheme
smart card
Elliptic Curve Discrete Logarithm Problem(ECDLP)