摘要
分析了现有基于挑战/应答一次性口令方案存在的不足,在此基础上设计了一种新的基于公开密钥加密算法的一次性口令身份认证方案。该方案不仅能够提供通信双方的相互认证,避免各种攻击,而且克服了传统挑战/应答方案认证开销大的弱点,有效地保护了用户身份信息,能防止重放攻击等攻击手段。最后对方案的安全性和效率做了分析。
Some shortages of the existing One-time Password based on challenge/response authentication protocols are analyzed, and a new one-time password authentication scheme is designed based on Public Key Encryption, which provides client/ server with mutual authentication and can avoid different attacks. It also overcomes the existing challenge/response protocol weakness of server's overhead and can protect user's identity. Finally its security and efficiency character are analyzed,
出处
《电脑开发与应用》
2009年第6期64-66,共3页
Computer Development & Applications
关键词
一次性口令
身份认证
公开密钥加密
one-time password, authentication, public key encryption
