计算机科学 ›› 2010, Vol. 37 ›› Issue (9): 121-123.
• 计算机网络与信息安全 • 上一篇 下一篇
邱罡,张崇,周利华
出版日期:
发布日期:
基金资助:
QIU Gang, ZHANG Chong,ZHOU Li-hua
Online:
Published:
摘要: 为增强现有单点登录技术中用户域的安全性,在客户端平台引入可信平台模块(TPM),同时采用智能卡、口令及指纹相结合的客户端认证方案,实现了用户、客户端及智能卡间的相互认证,并保证了应用服务所提供的信息资源的安全使用。分析结果表明,该方案不要求用户与客户端预先协商信任关系,且可辫别客户端的主人和普通使用者。使用哈希函数的用户认证计算及推式平台完整性验证使得系统具有较高的运行效率。
关键词: 可信计算,单点登录,智能卡,身份认证,模型
Abstract: To enhance the security of user domain in single sign-on system, the hrusted Platform Modul}(TPM) was introduced to ensure the terminal trustworthiness. Meanwhile a user authentication scheme combined with password, fingerprint and smartcard was adopted, which achieves the mutual identification among user, user terminal and smartcard,and ensures the usage security of the information provided by application service. The security and performance analysis shows that the user authentication can identify the owner of user terminal from the genuine operators without any prcnegotiation, computation with Hash function in user authentication and push validation attestation on user platform integrity are of high efficiency.
Key words: Trusted computing, Single sign-on, Smart card, Identity authentication, Model
邱罡,张崇,周利华. 基于可信计算的Web单点登录方案[J]. 计算机科学, 2010, 37(9): 121-123. https://doi.org/
QIU Gang, ZHANG Chong,ZHOU Li-hua. Web Single Sign-on Scheme Based on Trusted Computing[J]. Computer Science, 2010, 37(9): 121-123. https://doi.org/
0 / / 推荐
导出引用管理器 EndNote|Reference Manager|ProCite|BibTeX|RefWorks
链接本文: https://www.jsjkx.com/CN/
https://www.jsjkx.com/CN/Y2010/V37/I9/121
Cited