文化大學機構典藏 CCUR:Item 987654321/31986
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 46962/50828 (92%)
Visitors : 12429719      Online Users : 646
RC Version 6.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
    •  Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: https://irlib.pccu.edu.tw/handle/987654321/31986


    Title: 可對抗離線猜弱密碼之智慧卡遠端身份認證機制
    A Smart Card Remote Authentication Resisting Offline Password Guessing Attack
    Authors: 張佑任
    Contributors: 資訊管理學系碩士在職專班
    Keywords: 認證
    智慧卡
    離線猜密碼
    會期金鑰
    authentication
    smart card
    off-line password guessing
    session key
    Date: 2016
    Issue Date: 2016-02-17 14:27:19 (UTC+8)
    Abstract: 由於資訊與通訊科技的快速成長,使用智慧卡結合密碼來進行認證,是一有效率且廣泛運用於網路的認證機制。然而,來自外部或惡意的各種安全攻擊,使得網路應用系統出現離線猜弱密碼、偽冒、資料竄改、重送等安全弱點。例如,Islam於2014年及V. Odelu、A. K. Das及A. Goswami於2015年,所提出之智慧卡認證機制,不但運算成本過高且無法抵抗智慧卡失竊/離線猜弱密碼攻擊。
    本研究將以密碼學之安全雜湊函數、Diffie–Hellman金鑰交換等方法,改良上述智慧卡認證機制的安全缺陷,使其具有可對抗離線猜弱密碼,使用者與伺服器之間可交互認證,並提供會期金鑰與會期金鑰前推私密性。
    Due to the rapid growth of information and communication technologies, remote authentication based on password and smart card is an efficient authentication mechanism and widely used on the Internet. However, various known security attacks from the malicious users or outsiders make the internet application systems vulnerable, such as password guessing attack, forgery / modification attack, and replay attack. Islam and Odelu et al. proposed a password authentication scheme using smart card In 2014 and 2015 respectively. These schemes are not only dsigned with high computation costs but also vulnerable to smart card stolen/ off-line password guessing attack.
    By using secure hash function and Diffie-Hellman key exchange algorithm, this study proposes an improved authentication protocol to prevent the weakness of above authentication mechanisms using smart card. The improved scheme can resist the off-line password guessing and provide mutual authentication and session key perfect forward secrecy.
    Appears in Collections:[Department of Information Management & Graduate Institute of Information Management] Thesis

    Files in This Item:

    File Description SizeFormat
    index.html0KbHTML299View/Open


    View Licence

    All items in CCUR are protected by copyright, with all rights reserved.

    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - Feedback