基于Java语言实现一次性动态口令算法  

作　　者：缪蕊 钟志贤 刘珺[1] 包爱民[1] 姜维 申小琦 MIAO Rui;ZHONG Zhixian;LIU Jun;BAO Aimin;JIANG Wei;SHEN Xiaoqi(Department of Network and Information Technology,Kunming Metallurgy College,Kunming 650033,China;Jilin Mingri Technology CompanyLimited,Changchun 130000,China)

机构地区：[1]昆明冶金高等专科学校网络管理与信息化部,云南昆明650033 [2]吉林省明日科技有限公司,吉林长春130000

出　　处：《昆明冶金高等专科学校学报》2021年第1期71-77,共7页Journal of Kunming Metallurgy College

基　　金：云南省应用基础研究计划项目:基于物联网与嵌入式的智慧教室控制系统关键技术研究(2019FD012);昆明冶金高等专科学校科研基金项目:基于ARM+Linux的嵌入式智能教室管理系统研究与设计(2018XJZK01)。

摘　　要：随着互联网和电子商务的不断发展,人们对网络购物及网上支付需求的不断增加,简单易用的静态口令认证技术由于自身安全的缺陷,已经不能满足当前网络应用系统。因此,业界提出了一次性口令认证技术,也称为动态口令技术。虽然指纹识别等生物特征识别技术也得到了广泛的运用,但因为对终端设备要求较高、成本较高等原因,还不能完全取代动态口令技术。从安全和能耗角度考虑,提出一种基于Java的一次性动态口令算法,用HmacSHA1算法加密实现通讯双方的互相认证,可抵抗冒充攻击。多平台实验表明:该方案安全性高,可移植性强,不需要第三方插件,耗能低,执行效率高,适合移动商务的身份认证,可应用于智能手机等移动设备。With the constant development of the internet and e-commerce,people have an increasing demand for the online shopping and payment,therefore,the simple and easy-to-use static password authentication technology can t meet the current network application system due to its safety defects.So,the industry has put forward the one-time password authentication technology which is also known as the dynamic password technology.Although the biometric identification technology,such as the fingerprint identification,etc.,has been widely used,it can t completely replace the dynamic password technology due to its high requirements for the terminal equipment and high cost,etc.In view of this situation,this paper puts forward a kind of one-time dynamic password algorithm based on java language,from the perspectives of the safety and energy consumption,using HmacSHA1 algorithm for encryption to realize the mutual authentication between two communication sides,which can withstand impersonation attacks.The multi-platform experiment shows that the scheme is high security with strong portability.It doesn t require third-party plug-ins,and has the advantages of low energy consumption and high execution efficiency.The technology is suitable for the identity authentication of the mobile commerce and can be applied to the mobile equipment of the smartphone,etc.

关 键 词：身份认证 一次性口令 HASH函数 

分 类 号：TP393.08[自动化与计算机技术—计算机应用技术]