计算机科学 ›› 2009, Vol. 36 ›› Issue (10): 106-107.
• 计算机网络与信息安全 • 上一篇 下一篇
程英,高庆德
出版日期:
发布日期:
基金资助:
CHENG Ying, GAO Qing-de
Online:
Published:
摘要: 研究了基于散列函数的强口令密码认证协议,分析了目前该类协议中具有较高安全性的SPAS协议。虽然协议具有较高的安全性,但是通过分析发现协议还是存在安全漏洞。存在安全缺陷的主要原因是协议中使用的密码技术过于单一。该类协议中,如果不使用其它密码技术,很难使协议达到安全。
关键词: 散列函数,认证协议,spas协议
Abstract: Studied a strong password authentication protocol based on hash function, by analyzing the security of SPAS protocol among this kind of protocols. Although the SPAS is designed meticulously and regarded as more secure, but we also find some secure vulnerability in it. Using single cryptography technology induces this protocol has secure leak. At last we can prove that if this kind of protocol uses single cryptography technology, it can't produce a secure protocol.
Key words: Hash function, Authentication protocol, Strong password authentication protocol
程英,高庆德. 一个强口令认证协议的漏洞研究[J]. 计算机科学, 2009, 36(10): 106-107. https://doi.org/
CHENG Ying, GAO Qing-de. Study of the Hole of Strong Password Authentication Protocol[J]. Computer Science, 2009, 36(10): 106-107. https://doi.org/
0 / / 推荐
导出引用管理器 EndNote|Reference Manager|ProCite|BibTeX|RefWorks
链接本文: https://www.jsjkx.com/CN/
https://www.jsjkx.com/CN/Y2009/V36/I10/106
Cited