摘要
在无线网络中,为防止用户口令被窃取,提出一种Web口令安全传输方法。在Web门户中显示局部动态软键盘,同时加入随机码,通过消息摘要算法(MD5)将用户口令与随机码进行加密,然后发送。实验结果证明:该方法可以防止黑客通过接入点截获用户口令、重放攻击和暴力破解;与已有Web口令安全传输方法相比,计算复杂度低,效率、安全性和可信度高;可以有效防止终端攻击和网络攻击。
In wireless networks, a Web password security transfer method is put forward to prevent user passwords from being stolen. In a Web portal,a local dynamic soft keyboard is showed,and a random code is added, then the user password and random code are encrypted by message digest algorithm(MD5) and sent. Experimental results prove that:the method proposed here can prevent hacker from intercepting user passwords through access points(AP),replay attacks and brute force attacks;compared with the existing Web password security transfer methods, the method proposed here has the advantages of low computation complexity,high efficiency,security and reliability and can prevent terminal attacks and network attacks.
出处
《南京理工大学学报》
EI
CAS
CSCD
北大核心
2014年第6期745-749,共5页
Journal of Nanjing University of Science and Technology
基金
国家自然科学基金(61272419)
关键词
动态软键盘
随机码
无线网络
用户口令
接入点
重放攻击
暴力破解
终端攻击
网络攻击
dynamic soft keyboard
random code
wireless networks
user passwords
access points
replay attacks
brute force attacks
terminal attacks
network attacks