本文已被:浏览 1951次 下载 8621次
Received:February 04, 2010 Revised:March 09, 2010
Received:February 04, 2010 Revised:March 09, 2010
中文摘要: 随着网络技术的普及,传统的静态密码方案已不能满足电子商务中的身份认证的要求。描述了动态口令技术的基本原理,分析了其软件和硬件实现的利弊, 设计了一种基于挑战/应答模式的动态口令认证协议,并在此协议基础上设计实现了基于手机令牌的动态口令身份认证系统,论述了系统的总体设计、认证过程、安全性措施和具体的实施步骤,最后进行了系统的安全性分析。分析表明,该系统具有安全性高、适用面广,使用方便,系统成本低的特点。
Abstract:With the development of Internet technology, the traditional static password based authentication solutions are no longer an adequate protection scheme to serious enterprise applications. In this article, the principle of dynamic password technology is described, and the pros and cons of implementing dynamic password technology by software and hardware are analyzed as well. A dynamic password authentication protocol based on challenge/response mechanism is designed. The system’s design authentication processes, and safety measures are described, and its security is analyzed as well. The analysis indicates that this system features high security and wide application. It can be conveniently used and implemented at a low cost.
文章编号: 中图分类号: 文献标志码:
基金项目:
| Author Name | Affiliation |
| YE Xi | 温州医学院 计算机系 浙江 温州 325035 |
| YE Yi-Ru | |
| CEN Qin |
| Author Name | Affiliation |
| YE Xi | 温州医学院 计算机系 浙江 温州 325035 |
| YE Yi-Ru | |
| CEN Qin |
引用文本:
叶晰,叶依如,岑琴.基于手机令牌的动态口令身份认证系统的实现.计算机系统应用,2010,19(10):32-36
YE Xi,YE Yi-Ru,CEN Qin.Implementation of a Dynamic Identity Authentication System Based on Mobile Phone Token.COMPUTER SYSTEMS APPLICATIONS,2010,19(10):32-36
叶晰,叶依如,岑琴.基于手机令牌的动态口令身份认证系统的实现.计算机系统应用,2010,19(10):32-36
YE Xi,YE Yi-Ru,CEN Qin.Implementation of a Dynamic Identity Authentication System Based on Mobile Phone Token.COMPUTER SYSTEMS APPLICATIONS,2010,19(10):32-36
