Based on the characteristic of key-insulated public-key cryptosystem, wepropose a distributed landora session keys distribution protocol without a key distribution center.The session key is generated by different user...Based on the characteristic of key-insulated public-key cryptosystem, wepropose a distributed landora session keys distribution protocol without a key distribution center.The session key is generated by different user and only used one time. So thekey is one-time key. Inaddition, the user who generates the next one-time key, is random selected by the current sessionkey. In the protocol of this paper, the characteristic of time in the key-insulated public-key, adistributed protocol, translates into the characteristic of spaee which every point has differentsecret key in the different period. At the same time, the system is fit for key management in AdHoe, and is a new scheme of key management in Ad Hoc.展开更多
针对嵌入式系统资源受限的特点,结合一次性口令OTP(One Time Password)认证方案的基本原理,研究了一种新型的适用于嵌入式操作系统的一次性口令身份认证方案——EOS-OTP(Embedded Operating System One Time Password)。EOS-OTP方案采...针对嵌入式系统资源受限的特点,结合一次性口令OTP(One Time Password)认证方案的基本原理,研究了一种新型的适用于嵌入式操作系统的一次性口令身份认证方案——EOS-OTP(Embedded Operating System One Time Password)。EOS-OTP方案采用椭圆曲线加密算法ECC,在保证完成一次性口令认证基本功能的前提下,提供了客户端/服务器之间的互相认证。该方案认证步骤简单、运算量较小、可以有效的保护用户的信息,能有效的防止重放攻击、冒充攻击等攻击手段。实验中,选择目前比较流行的Android嵌入式操作系统来验证EOS-OTP方案相对于传统的一次性口令认证方案S/KEY、SAS、SAS-2的区别,在Android平台上用java编程实现四种方案,实验结果表明,EOS-OTP方案在不降低安全性的前提下,提高了运行效率。展开更多
文摘Based on the characteristic of key-insulated public-key cryptosystem, wepropose a distributed landora session keys distribution protocol without a key distribution center.The session key is generated by different user and only used one time. So thekey is one-time key. Inaddition, the user who generates the next one-time key, is random selected by the current sessionkey. In the protocol of this paper, the characteristic of time in the key-insulated public-key, adistributed protocol, translates into the characteristic of spaee which every point has differentsecret key in the different period. At the same time, the system is fit for key management in AdHoe, and is a new scheme of key management in Ad Hoc.
文摘针对嵌入式系统资源受限的特点,结合一次性口令OTP(One Time Password)认证方案的基本原理,研究了一种新型的适用于嵌入式操作系统的一次性口令身份认证方案——EOS-OTP(Embedded Operating System One Time Password)。EOS-OTP方案采用椭圆曲线加密算法ECC,在保证完成一次性口令认证基本功能的前提下,提供了客户端/服务器之间的互相认证。该方案认证步骤简单、运算量较小、可以有效的保护用户的信息,能有效的防止重放攻击、冒充攻击等攻击手段。实验中,选择目前比较流行的Android嵌入式操作系统来验证EOS-OTP方案相对于传统的一次性口令认证方案S/KEY、SAS、SAS-2的区别,在Android平台上用java编程实现四种方案,实验结果表明,EOS-OTP方案在不降低安全性的前提下,提高了运行效率。
