检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
机构地区:[1]深圳大学数学与计算科学学院,广东深圳518060
出 处:《通信技术》2008年第9期185-186,189,共3页Communications Technology
基 金:国家自然科学基金资助项目(No:10771077和No:10671114)
摘 要:密钥交换的SAKA协议存在三大安全缺陷。为克服这些缺陷,人们提出了改进的Lin协议、E-SAKA协议和改进的E-SAKA协议。通过分析发现E-SAKA协议及其改进算法仍然会受到密钥猜测攻击,并且E-SAKA协议中攻击者能获得会话密钥。进一步提出了一个基于Lin协议的改进协议,并论证此协议在防止中间人攻击和解决SAKA协议的三大缺陷的同时,能有效抵挡在线猜测攻击。The simple authenticated key agreement (SAKA) protocol still suffers from the three weaknesses. Several improved protocols, such as improved Lin protocol, E-SAKA protocol, are thus brought forward and claimed that they can overcome these three weaknesses. After reviewing these protocols, it is proved that these protocols still suffer from the password guessing attack, and the attacker against the E-SAKAprotocol can get the session key. Then a novel protocol based on improved Lin protocol is proposed. The novel protocol can prevent the man-in-the-middle attack and remedy these three weaknesses while effectively resists the on-line password guessing attack.
关 键 词:密钥交换 中间人攻击 密钥猜测攻击 在线猜测攻击
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.222
