计算机应用与软件2015,Vol.32Issue(5):278-282,5.DOI:10.3969/j.issn.1000-386x.2015.05.068
两个基于智能卡口令认证方案的改进
IMPROVING TWO SMARTCARD-BASED PASSWORD AUTHENTICATION SCHEMES
摘要
Abstract
We analyse the security of two smartcard-based password authentication schemes.Apart from the security defect pointed out by Xue Feng et al.on them two, we root out that one of the authentication schemes also has the design defect in password change phase. Moreover, both schemes cannot resist the attacks of jacking connection.On the basis of the above, we improve them separately, the improved schemes use the hash function computation and the bilinear pairing computation respectively to withstand the jacking connection attack, and at the same time they also overcome the security problem in protocols.It is proved through theoretical analysis that the effective resistance on DoS attack, DDoS attack, insider attack and off-line guessing attack can be achieved.The security of original schemes is improved as well.关键词
智能卡/口令认证/劫取连接攻击/双线性对Key words
Smartcard/Password authentication/Jacking connection attack/Bilinear pairing分类
信息技术与安全科学引用本文复制引用
赵广强,凌捷..两个基于智能卡口令认证方案的改进[J].计算机应用与软件,2015,32(5):278-282,5.基金项目
广东省战略性新兴产业核心技术攻关项目(2012A010701004) (2012A010701004)
广东省自然科学基金重点项目(S20120200110 71) (S20120200110 71)
广东省教育部产学研合作项目(2012B091000037,2012B09100004 1). (2012B091000037,2012B09100004 1)
