摘要
提出一种改进的跨域基于指纹与智能手机协助的口令认证密钥交换协议,并证明该协议具有语义安全性、密钥保密性,且能对抗不可检测在线字典攻击、离线字典攻击,实现服务器与用户之间的双向认证,安全性分析表明该协议是安全有效的。
Describes an improved cross-realm C2C-PAKE protocol based on fingerprint and smartphone assistance,analyzes the protocol with seman⁃tic security and key confidentiality.It can resist undetected online dictionary attacks and offline dictionary attacks.It also realizes two-way authentication between server and user.Security analysis shows that the protocol is secure and effective.
作者
刘卫红
何丽
LIU Wei-hong;HE Li(Guangdong AIB Polytechnic College,Guangzhou 510507)
出处
《现代计算机》
2019年第33期19-23,共5页
Modern Computer
关键词
跨域
口令认证
指纹
密钥交换
C2C-PAKE
安全协议
Cross-Realm
Password Authentication
Fingerprint
Key Exchange
C2C-PAKE
Security Protocol
