| 摘 要: 多数的身份认证方案是依赖于单个的认证服务器与用户之间的相互认证,如果一个用户想要使用不同的网
络服务,就必须向每一个服务器进行注册。然而要使得用户记住不同的身份和口令是非常困难的。最近,Li et al.分析
了Sood et al.提出的多服务器间基于动态身份的认证方案,指出了其中存在的问题并且提出了一个改进的方案。Li et
al.声称他们的方案可以保证用户的匿名性,提供了相互认证和共享密钥,并且可以抵抗一些常见的攻击。然而,通过
仔细分析之后,我们发现Li et al.的方案容易受到假冒攻击。因此,本文提出了一种高效安全的多服务器间基于动态身
份的相互认证和密钥共识方案并给出了安全性分析。 |
| 关键词: 身份认证;密钥共识;多服务器;安全性 |
|
中图分类号: TP393
文献标识码: A
|
| 基金项目: 本论文得到天津市应用基础与前沿技术研究计划支助,编号为No.15JCYBJC15900. |
|
| An Dynamic Identity Based Authentication and Key Agreement Protocol for Multi-Server Architecture |
|
WANG Mu,KANG Baoyuan,JING Dongya
|
( School of Computer Science and Software Engineering, Tianjin Polytechnic University, Tianjin 300387, China)
|
| Abstract: Most of the authentication protocols rely on the mutual authentication of the single authentication server and the user.If a user wants to use numerous different network services,he/she has to register himself/herself to every serviceproviding server.In order to solve this problem,various multi-server authentication protocols have been proposed.After analyzing the protocol proposed by Sood et al.,Li et al. pointed out the problems,proposed a new protocol and claimed that the new protocol can provide user with anonymity,mutual authentication,session key agreement and resistance to several common attacks.However,through careful analysis,the paper finds that Li et al.'s protocol is still vulnerable to the impersonation attack.Therefore,the paper proposes an efficient and secure dynamic identity based authentication and key agreement protocol for multi-server architecture,along with security analysis. |
| Keywords: identity authentication;key agreement;multi-server architecture;security |
