检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
出 处:《浙江大学学报(理学版)》2008年第2期145-149,共5页Journal of Zhejiang University(Science Edition)
基 金:国家自然科学基金资助项目(10671051,10271037);浙江省自然科学基金资助项目(103060);浙江省教育厅科研计划项目(20061069);杭州师范大学科研项目(2006XNZ03)
摘 要:LAMPORT第一次提出了一个带有智能卡的远程用户认证方案,随后HWANG和LI指出了该方案存在的问题,并提出了一个新的方案.然而HWANG-LI方案中仍有不少安全漏洞,CHAN-CHANG、SHEN-LIN-HWANG和CHANG-HWANG先后对该方案进行了不同方式的攻击,并提出了一系列改进方案.最近KUMAR和AWASTIHI-LAL又分别提出了两个新的方案.然而,这些方案都存在一个共同的弱点,那就是由系统中心掌握用户的口令,这给用户带来了安全隐患.为了解决这个问题,文章在这些方案的模式下,利用二元一次不定方程解的不定性和离散对数问题的难解性,提出了一个新的远程用户认证方案.该方案主要在注册阶段和登录阶段加强了安全性,不仅可以抵御以往类似CHAN-CHENG和CHANG-HWANG的攻击,而且口令由用户掌握,并可随时更改,保证了用户的安全.LAMPORT proposed the first well-known remote password authentication scheme of using smart cards. HWANG and LI pointed out some problems in the LAMPORT's scheme and they proposed a new remote user authentication scheme. Unfortunately, HWANG and LI's scheme has some weaknesses in security. CHAN-CHANG, SHEN-LIN-HWANG and then CHANG-HWANG had some attacks on HWANG-LI's scheme and some modified schemes were proposed. Recently KUMAR and AWASTIHI-LAL also introduced two remote user authentication schemes. But these schemes all have a weakness in common: the AS and the remote user share a secret which is called password. Actually, this property is a disadvantage for the security. By using bivariate simple equation and the discrete logarithm problem, a new remote user authentication scheme is presented to solve this problem. The scheme can withstand the attack that is similar to CHAN and CHENG'attack and CHANG and HWANG' attack in registration phase and authentication phase. The password is controlled by the user, and can be changed at any time.
分 类 号:TP309[自动化与计算机技术—计算机系统结构] O153[自动化与计算机技术—计算机科学与技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.222
