检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
机构地区:[1]杭州电子科技大学理学院,浙江杭州310018
出 处:《信息网络安全》2015年第7期51-57,共7页Netinfo Security
基 金:国家自然科学基金[11471123];浙江省自然科学基金[LY12A01004]
摘 要:全球移动网络(GLOMONET)允许移动用户漫游进外部网络时仍能取得家庭网络的服务。因此,为了确保通信的安全进行,提供服务前移动用户必须经过验证。由于智能卡在管理密码文件中具有防篡改及便捷的优点,近期一些基于智能卡的安全认证方案被相继提出。文章指出了已有方案中的一些安全漏洞,并在此基础上提出了一个改进的安全并匿名的用户认证方案。该方案采用椭圆曲线加密,整个过程都使用低成本的函数如单向哈希函数和异或运算,安全性能高、计算量少、存储空间占用小,更适合于节能移动设备。方案只需要在用户、外地代理和家庭代理之间进行4次信息交换。方案具有重要的安全属性如单一用户注册、安全匿名性、无密码表等,且已证明能抵制重放攻击、已知密钥攻击、模仿攻击、内部攻击等各种恶意攻击。Global mobility network (GLOMONET)'is a useful network environment which allows a mobile user to access the services provided by his home network in a foreign network. In order to ensure the secure communications conducted over the GLOMONET, it is important to authenticate mobile users before providing services. Recently, due to the advantages of tamper-resistance and convenience in managing the password files, some secure authentication schemes based on smart cards are proposed. The article points out the security vulnerabilities in some schemes and proposes a modified user authentication scheme. The scheme adopts the elliptic curve encryption system and uses low-cost function such as one-way hash function and exclusive-OR operation, so it is more secure and it has smaller amounts of calculations and smaller storage spaces. It is more suitable for battery-powered mobile equipments. It only requires four information exchanges between user and two agents. It possesses important security attributes including single registration, user anonymity, and no password table. The scheme is proved that can resist various attacks such as replay attack, known-key attack, imitation attack, and inside attack.
分 类 号:TN929.5[电子电信—通信与信息系统]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.30