检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
作 者:冯志华[1] 罗重 鄢军霞[2] 邓威 FENG Zhi-hua;LUO Chong;YAN Jun-xia;DENG Wei(Beijing Institute of Computer Technology and Applications,Second Research Academy of China Aerospace Science and Industry Corporation,Beijing 100854,China;Information School,Wuhan Vocational College of Software and Engineering,Wuhan 430205,China)
机构地区:[1]中国航天科工集团第二研究院北京计算机技术及应用研究所,北京100854 [2]武汉软件工程职业学院信息学院,湖北武汉430205
出 处:《计算机工程与设计》2020年第3期621-627,共7页Computer Engineering and Design
基 金:国家重点研发计划基金项目(2018YFB220030)。
摘 要:针对固态盘数据保护问题,提出一种基于物理不可克隆函数(physical unclonable function,PUF)的固态盘双向认证协议,实现加密固态盘和用户之间的身份认证以及密钥管理。认证协议以盘端PUF模块生成的物理指纹作为最高可信根,采用口令+UKey双认证因子,UKey作为用户身份认证标识和数据密钥载体。使用BAN逻辑和SPIN工具从形式化的角度对提出的协议进行分析和模型检测,分析结果表明,所提协议能够实现有效的双向认证,具备对恶意女仆攻击、中间人攻击、重放攻击、物理探测攻击、侧信道攻击等的抵抗能力。Aiming at the data protection problem of SSD,a PUF-based mutual authentication protocol for secure SSD was proposed to realize identity authentication and key management between the encrypted SSD and the user.The physical fingerprint generated through the disks’PUF module was used as the highest trusted root,the password+UKey dual authentication factor was adopted with the UKey serving as the user identity authentication identifier and the data key carrier.The BAN logic and SPIN tool were used to analyze the proposed protocol from the formal perspective.The analysis results show that the protocol can achieve effective mutual authentication,and has the ability to resist evil maid attacks,man-in-the-middle attacks,replay attacks,physical detection attacks,side channel attacks,etc.
关 键 词:安全固态盘 物理不可克隆函数 身份认证 密钥管理 BAN逻辑 SPIN模型
分 类 号:TP309.2[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:3.16.112.104
