摘要
由于每次登录时用户提交的认证信息都是固定不变的,传统的口令认证机制容易遭受回放攻击。本文根据一个关于互素数的定理,提出了一种基于智能卡的动态身份认证机制。用户每次登录时,智能卡根据从服务器发来的challenge和事先嵌入智能卡的参数信息,为合法用户计算当前的认证信息。由于每次用户提交的认证信息都是动态可变的,从而有效地防止了回放攻击。
Traditional password authentication schemes are vulnerable to replay attacks because of the fixed password and unchanged messages submitted by users for verification. This paper proposes a dynamic identity authentication scheme through a theorem about relative prime numbers w ith the help of a smart-card. Every time a user logins into a remote system,the smart-card will compute current authentication messages according to the challenge sent from the remote system and parameters embedded into the smart card. As the message submitted by users varies randomly,the scheme can prevent replay attacks from taking place effectively.
出处
《通信学报》
EI
CSCD
北大核心
2003年第8期117-121,共5页
Journal on Communications
关键词
认证
口令
智能卡
回放攻击
authentication
password
smart card
replay attack