| 多服务器环境下基于动态ID的轻量级身份认证协议 |
| |
| 引用本文: | 齐小晨,黎妹红,杜晔.多服务器环境下基于动态ID的轻量级身份认证协议[J].北京航空航天大学学报,2021,47(12):2632-2640. |
| |
| 作者姓名: | 齐小晨 黎妹红 杜晔 |
| |
| 作者单位: | 1.北京交通大学 智能交通数据安全与隐私保护技术北京市重点实验室, 北京 100044 |
| |
| 基金项目: | 国家自然科学基金U1736114国家重点研发计划2017YFB0802805 |
| |
| 摘 要: | 为了实现用户和服务器之间的通信安全及高效的身份认证,设计有效的身份认证协议成为研究热点。分析了已有协议的安全性,发现仍存在不能抵抗拒绝服务攻击(DOS)和离线口令猜测攻击的缺陷。因此,提出了新的基于动态ID的轻量级单向哈希函数身份认证协议,并通过非形式化安全性分析、随机预言机模型(ROM)分析和AVISPA实验仿真3种安全性分析,以及计算开销和通信开销的分析,比较证明了所提协议能够实现安全高效的身份认证。
|
| 关 键 词: | 多服务器 身份认证 密钥协商 随机预言机模型(ROM) AVISPA |
| 收稿时间: | 2020-08-21 |
Lightweight identity authentication protocol based on dynamic ID in multi-server environment |
| |
| Institution: | 1.Beijing Key Laboratory of Security and Privacy in Intelligent Transportation, Beijing Jiaotong University, Beijing 100044, China2.School of Computer and Information Technology, Beijing Jiaotong University, Beijing 100044, China |
| |
| Abstract: | To realize the communication security and efficient identity authentication between users and servers, how to design effective identity authentication protocols has gradually become an important research hotspot, more and more identity authentication protocols are proposed. First, this paper analyses the security of the exiting protocols, and finds that it cannot resist Denial of Service (DOS) and offline password guessing attacks. Then, a new lightweight one-way hash function authentication protocol based on dynamic ID is proposed to remedy the security vulnerability mentioned above. For the security analysis, it is proved by non-formal security analysis and two formal analysis methods: Random Oracle Model (ROM) and AVISPA. Finally, the analysis and comparison of computation overheads and communication overheads prove that our protocol can achieve secure and efficient identity authentication. |
| |
| Keywords: | |
|
| 点击此处可从《北京航空航天大学学报》浏览原始摘要信息 |
| 点击此处可从《北京航空航天大学学报》下载免费的PDF全文 |
