發(fā)布時(shí)間：2019-04-08 12:16

【摘要】：互聯(lián)網(wǎng)絡(luò)的快速發(fā)展給人們的生活帶來(lái)了極大的便利。認(rèn)證是互聯(lián)網(wǎng)絡(luò)安全的最基本要素，能夠?qū)崿F(xiàn)用戶(hù)與服務(wù)商之間彼此身份確認(rèn)。由于其獨(dú)有的 長(zhǎng)度短、容易記‖特性，口令認(rèn)證協(xié)議已成為當(dāng)前互聯(lián)網(wǎng)絡(luò)認(rèn)證的主要技術(shù)。然而，近年來(lái)的 密碼泄露‖事件，表明了當(dāng)前主流的靜態(tài)口令技術(shù)存在著嚴(yán)重的安全隱患。 在總結(jié)已有公鑰認(rèn)證協(xié)議、對(duì)稱(chēng)密鑰認(rèn)證協(xié)議以及口令認(rèn)證技術(shù)的基礎(chǔ)之上，本文設(shè)計(jì)并實(shí)現(xiàn)一套安全高效的基于一次口令認(rèn)證體系。主要的內(nèi)容包括以下三個(gè)方面： (1)設(shè)計(jì)一個(gè)基于一次口令的兩方認(rèn)證協(xié)議，所設(shè)計(jì)的協(xié)議無(wú)需在服務(wù)端存儲(chǔ)用戶(hù)口令，并且用戶(hù)端僅僅執(zhí)行哈希函數(shù)、異或等操作，能夠有效地降低用戶(hù)端的計(jì)算開(kāi)銷(xiāo)。 (2)在一次口令兩方認(rèn)證協(xié)議的基礎(chǔ)之上，設(shè)計(jì)一個(gè)基于一次口令的三方認(rèn)證協(xié)議。用戶(hù)能夠通過(guò)注冊(cè)服務(wù)器與其他授權(quán)服務(wù)器進(jìn)行相互認(rèn)證。 (3)在Eclipse環(huán)境中使用JAVA語(yǔ)言，實(shí)現(xiàn)本文所提出的兩個(gè)認(rèn)證協(xié)議，并且對(duì)協(xié)議的性能進(jìn)行了測(cè)試，測(cè)試結(jié)果表明所提出的協(xié)議具有很好的性能。
[Abstract]:The rapid development of Internet has brought great convenience to people's life. Authentication is the most basic element of Internet security, which can realize the identification between users and service providers. Due to its short length and easy to remember, password authentication protocol has become the main technology of Internet authentication. However, the password leakage in recent years shows that there are serious security risks in the current mainstream static password technology. On the basis of summarizing the existing public key authentication protocol, symmetric key authentication protocol and password authentication technology, this paper designs and implements a secure and efficient one-time password authentication system. The main contents include the following three aspects: (1) Design a two-party authentication protocol based on one-time password, the protocol does not need to store user password on the server side, and the client only performs hash function, XOR and so on. It can effectively reduce the computing overhead of the client. (2) on the basis of two-party authentication protocol, a three-party authentication protocol based on one-time password is designed. Users can authenticate with other authorized servers through the registration server. (3) using Java language in Eclipse environment, the two authentication protocols proposed in this paper are implemented, and the performance of the proposed protocol is tested. The test results show that the proposed protocol has good performance.
【學(xué)位授予單位】：西安電子科技大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類(lèi)號(hào)】：TP393.08

【參考文獻(xiàn)】

相關(guān)期刊論文 前1條

1 馮登國(guó);可證明安全性理論與方法研究[J];軟件學(xué)報(bào);2005年10期

，

本文編號(hào)：2454566