《计算机应用研究》|Application Research of Computers

在多服务器环境下的双因素动态身份鉴别方案

Novel two-factor dynamic identity based remote user authentication scheme for multi-server environment

免费全文下载 (已被下载 次)  
获取PDF全文
作者 刘莎,朱淑华
机构 1.暨南大学 a.信息科学技术学院;b.网络与教育技术中心,广州 510632;2.中山大学 信息科学与技术学院,广州 510006
统计 摘要被查看 次,已被下载
文章编号 1001-3695(2015)04-1119-04
DOI 10.3969/j.issn.1001-3695.2015.04.038
摘要 针对Li等人基于智能卡的多服务器身份认证方案,分析指出了其中存在的安全性问题,提出了一个改进的双因素动态身份鉴别方案。该方案为用户提供了一种关于身份注册信息的自我更新机制,用户可以在不与远程服务器通信的状态下,动态更新身份标志、口令和秘密参数等相关信息。另外,自验证的时间戳技术的借鉴利用,不仅避免了时钟同步问题,而且节约了产生随机数的开销。该方案还实现了用户的动态登录和对用户登录操作的可追踪性。新方案不仅继承了Li方案计算量低、存储量小的优点,而且还提高了认证方案的安全性和实用性,可以适用于实际的网络环境和应用。
关键词 认证;动态身份;智能卡;安全性分析;多服务器环境
基金项目 国家自然科学基金资助项目(61272415,61272413,61133014)
广东省产学研及科技计划资助项目(2012A080102007,2011B090400324,2011B090400469,2012B040305008,2012B091000136,2012B091000038)
广东省高校工程研究中心项目(GCZX-A1103)
广州市科技计划项目(2013Y2-00071)
本文URL http://www.arocmag.com/article/01-2015-04-038.html
英文标题 Novel two-factor dynamic identity based remote user authentication scheme for multi-server environment
作者英文名 LIU Sha, ZHU Shu-hua
机构英文名 1. a. School of Information Science & Technology, b. Network & Educational Technology Center, Jinan University, Guangzhou 510632, China; 2. School of Information Science & Technology, Sun YatSen University, Guangzhou 510006, China
英文摘要 This paper firstly analyzed some security problems in Li’s identity based authentication scheme for multi-server architecture, and proposed a novel two-factor dynamic identity based scheme. The new scheme provided users with a self-updating mechanism to modify the registration information about the identity of the users without communicating with the remote server, dynamically updated status ID symbol, passwords and secret parameters and other related information. In addition, it used a self-verified timestamp technique to solve the problem of implementing clock synchronization and it could avoid the resource-consuming of generating nonce. The new scheme also provided the users’ anonymity and traceability. This scheme can not only inherit the low computation and small memory space from Li’s scheme, but also improve the security and usability of the authentication scheme. It is also easy to apply the scheme to the practical network and applications.
英文关键词 authentication; dynamic identity; smart card; cryptanalysis; multi-server system
参考文献 查看稿件参考文献
  [1] LAMPORT L. Password authentication with insecure communication[J] . Communications of the ACM, 1981, 24(11):770-772.
[2] HWANGM S, LI Li-hua. A new remote user authentication scheme using smart cards[J] . IEEE Trans on Consumer Electronics, 2000, 46(1):28-30.
[3] DAS M L, SAXENA A, GULATI V P. A dynamic ID-based remote user authentication scheme[J] . IEEE Trans on Consumer Electronics, 2004, 50(2):629-631.
[4] XU Jing, ZHU Wen-tao, FENG Deng-guo. An improved smart card based password authentication scheme with provable security[J] . Computer Standards and Interface, 2009, 31(4):723-728.
[5] SONG Rong-gong. Advanced smart card based password authentication protocol[J] . Computer Standards and Interfaces, 2010, 32(5):321-325.
[6] LI Xiong, NIU Jian-wei, KHAN M K, et al. An enhanced smart card based remote user password authentication scheme[J] . Journal of Network and Computer Applications, 2013, 36(5):1365-1371.
[7] LEE W B, CHANG C C. User identification and key distribution maintaining anonymity for distributed computer network[J] . International Journal of Computer System Science & Engineering, 2000, 15(4):211-214.
[8] LI Li-hua, LIN L C, HWANG M S. A remote password authentication scheme for multi-server architecture using neural network[J] . IEEE Trans on Neural Network, 2001, 12(6):1498-1504.
[9] LIAO Yi-pin, WANG S S. A secure dynamic identity ID based remote user authentication scheme for multi-server environment[J] . Computer Standards & Interfaces, 2009, 31(1):24-29.
[10] HSIANG H C, SHIH W K. Improvement of the secure dynamic ID based remote user authentication scheme for multi-server environment[J] . Computer Standards & Interfaces, 2009, 31(6):1118-1123.
[11] SOOD S K, SARJIE A K, SINGH K. A secure dynamic identity based authentication protocol for multi-server architecture[J] . Journal of Network and Computer Applications, 2011, 34(2):609-618.
[12] LIAO Yi-pin, HSIAO C M. A novel multi-server remote user authentication scheme using self-certified public keys for mobile clients[J] . Future Generation Computer Systems, 2013, 29(3):886-900.
[13] KHAN M K, HE De-biao. A new dynamic identity-based authentication protocol for multi-server environment using elliptic curve cryptography[J] . Security and Communication Networks, 2012, 5(11):1260-1266.
[14] LI Xiong, XIONG Yong-ping, MA Jian, et al. An efficient and security dynamic protocol for multi-server architecture using smart cards[J] . Journal of Network and Computer Applications, 2012, 35(2):763-769.
[15] LI Xiong, MA Jian, WANG Wen-dong, et al. A novel smart card and dynamic ID based remote user authentication scheme for multi-server environments[J] . Mathematical and Computer Modeling, 2013, 58(1):85-95.
[16] LEE C C, LIN T H, CHANG Rui-xiang. A secure dynamic ID based remote user authentication scheme for multi-server using smart cards[J] . Expert Systems with Applications, 2011, 38(11):13863-13870.
[17] TSAUR W J, LI Jia-hong, LEE W B. An efficient and secure multi-server authentication scheme with key agreement[J] . The Journal of Systems and Software, 2012, 85(4):876-882.
收稿日期 2014/4/15
修回日期 2014/5/26
页码 1119-1122
中图分类号 TP393.08
文献标志码 A