摘要
针对目前网络终端认证方式存在的安全问题如无法防止冒用身份攻击,提出了一种基于智能手机的安全网络终端认证方式。在该认证方式下,智能手机中的SIM卡把智能手机作为虚拟读卡器与网络终端建立连接。用户可以通过智能手机的操作系统和网络终端上的PKCS#11(公开密钥密码标准)模块操作SIM卡进行认证。给出了具体的认证协议,并对该协议进行了安全分析。通过对认证协议的安全性分析表明,该协议可抵御多种协议攻击,具有较强的安全性和可靠性。
A network terminal authentication method based on smart phone is proposed. In this method, the SIM card seems the smart phone as a virtual reader and establishes the link with the network terminal. The SIM card is used to authenticate by the operating system of the smart phone and the PKCS#11 on the network terminal. The realization method of the authentication protocol is also given, and its security is analyzed. The security analysis verifies that this protocol provides good security and reliability.
出处
《计算机工程与设计》
CSCD
北大核心
2009年第7期1784-1786,共3页
Computer Engineering and Design
关键词
智能手机
网络终端
SIM卡
安全认证
smart phone
network terminal
SIM card
security authentication
