發(fā)布時間：2019-04-08 12:16

【摘要】：互聯(lián)網(wǎng)絡(luò)的快速發(fā)展給人們的生活帶來了極大的便利。認證是互聯(lián)網(wǎng)絡(luò)安全的最基本要素，能夠?qū)崿F(xiàn)用戶與服務(wù)商之間彼此身份確認。由于其獨有的 長度短、容易記‖特性，口令認證協(xié)議已成為當(dāng)前互聯(lián)網(wǎng)絡(luò)認證的主要技術(shù)。然而，近年來的 密碼泄露‖事件，表明了當(dāng)前主流的靜態(tài)口令技術(shù)存在著嚴重的安全隱患。 在總結(jié)已有公鑰認證協(xié)議、對稱密鑰認證協(xié)議以及口令認證技術(shù)的基礎(chǔ)之上，本文設(shè)計并實現(xiàn)一套安全高效的基于一次口令認證體系。主要的內(nèi)容包括以下三個方面： (1)設(shè)計一個基于一次口令的兩方認證協(xié)議，所設(shè)計的協(xié)議無需在服務(wù)端存儲用戶口令，并且用戶端僅僅執(zhí)行哈希函數(shù)、異或等操作，能夠有效地降低用戶端的計算開銷。 (2)在一次口令兩方認證協(xié)議的基礎(chǔ)之上，設(shè)計一個基于一次口令的三方認證協(xié)議。用戶能夠通過注冊服務(wù)器與其他授權(quán)服務(wù)器進行相互認證。 (3)在Eclipse環(huán)境中使用JAVA語言，實現(xiàn)本文所提出的兩個認證協(xié)議，并且對協(xié)議的性能進行了測試，測試結(jié)果表明所提出的協(xié)議具有很好的性能。
[Abstract]:The rapid development of Internet has brought great convenience to people's life. Authentication is the most basic element of Internet security, which can realize the identification between users and service providers. Due to its short length and easy to remember, password authentication protocol has become the main technology of Internet authentication. However, the password leakage in recent years shows that there are serious security risks in the current mainstream static password technology. On the basis of summarizing the existing public key authentication protocol, symmetric key authentication protocol and password authentication technology, this paper designs and implements a secure and efficient one-time password authentication system. The main contents include the following three aspects: (1) Design a two-party authentication protocol based on one-time password, the protocol does not need to store user password on the server side, and the client only performs hash function, XOR and so on. It can effectively reduce the computing overhead of the client. (2) on the basis of two-party authentication protocol, a three-party authentication protocol based on one-time password is designed. Users can authenticate with other authorized servers through the registration server. (3) using Java language in Eclipse environment, the two authentication protocols proposed in this paper are implemented, and the performance of the proposed protocol is tested. The test results show that the proposed protocol has good performance.
【學(xué)位授予單位】：西安電子科技大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2014
【分類號】：TP393.08

【參考文獻】

相關(guān)期刊論文 前1條

1 馮登國;可證明安全性理論與方法研究[J];軟件學(xué)報;2005年10期

，

本文編號：2454566