计算机工程与科学2018,Vol.40Issue(3):445-455,11.DOI:10.3969/j.issn.1007-130X.2018.03.009
基于混沌映射的用户匿名三方口令认证密钥协商协议
A three-party password authentication key agreement schemes based on chaotic maps with user anonymity
摘要
Abstract
In the three-party password authenticated key agreement based on chaotic map,by using week passwords,users can share the session key in order to avoid security threats in the authentication process of a public key infrastructure or storing long-term key.By analyzing the chaotic map-based password authenticated key agreement protocols proposed by Lee,we find that the agreement cannot change the password.Besides,it can only be applied to the two-way communication between the user and the server.In order to improve this scheme,we propose two user-anonymous three-party password authentication key agreement protocols based on Chebyshev chaotic map:one is based on synchronized clocks,while the other is based on nonces.The protocol based on synchronized clocks has less traffic,while the protocol based on nonces is easier to implement.The advantage of the two protocols is that users selects only one simple password for mutual authentication and key negotiation.The server does not need to protect the user password table,which can avoid the password-related attacks.In addition,in the process of mutual authentication,the user uses a temporary identity and hash function to achieve the user anonymity,while enhancing the security of the protocol and reducing the number of messages in the communication process as well.As a result,the efficiency of the agreement is improved,with perfect forward security.And its security is proven by BAN logic.关键词
混沌映射/用户匿名/口令认证/密钥协商/切比雪夫多项式Key words
chaotic map/anonymous/password authentication/key agreement/Chebyshev polynomials分类
信息技术与安全科学引用本文复制引用
王彩芬,陈丽,刘超,乔慧,王欢..基于混沌映射的用户匿名三方口令认证密钥协商协议[J].计算机工程与科学,2018,40(3):445-455,11.基金项目
国家自然科学基金(61262057,61562077) (61262057,61562077)
西北师范大学青年教师科研能力提升计划(NWNU-LKQN-14-7) (NWNU-LKQN-14-7)
