双向认证系统的研究与实现

【作者】 王丽华；

【导师】 张岳新；

【作者基本信息】 南京理工大学 ， 计算机应用技术， 2007， 硕士

【摘要】 随着全球信息化的飞速发展，网络，作为一种重要的信息传递手段，已经成为现代人生活中不可或缺的一部分。尤其是近几年来，我国网络建设的普及范围越来越广泛，已经成为一个网络大国。伴随着蓬勃发展的网络而来的是令人担忧的网络安全问题，而事实上各种利用网络进行的违法行为也日益呈现上升趋势。作为网络安全技术重要组成部分的身份认证技术自然成为了人们关心的热门话题。口令认证是最常用的身份认证方式，而一次性口令由于其较高的安全性受到人们普遍关注。本文论述了一次性口令的原理及实现方式，通过分析比较几种常见的一次性口令认证技术，总结了现有一次性口令认证方式中存在的一些不足，并结合公钥加密及SSL协议的基本思想，设计了一种双向认证的一次性口令认证方案。文中对新方案的具体实现做了详细说明，并采用B／S模式对方案进行了实现。新方案中采用SSL协议的思想安全地实现了服务器和客户端的密钥交换，确保了信息能准确无误地到达对方，并采用两个随机数来加强口令的随机性。整个系统具有简单灵活，实现成本低，安全性高等特点。更多还原

【Abstract】 With the rapid globalization of information, the network, as one of the informationtransmission methods, has already become a very important part in people’s life nowadays,especially when China has become a network country due to the widespread of networkconstruction in recent years. But at the same time, network security becomes a problemwhich arouses more people’s concern. In fact, there are more and more illegal activities byusing the network. Therefore, identity authentication, the important part of networksecurity technology, becomes a heated topic recently.Among all the identity authentications, password authentication is the one used most,and among which the one time password scheme draws most attention because of its highsecurity. This paper introduces the principle and the realization way of the one timepassword scheme at first, and then summarizes the defects of existing schemes bycomparing several kinds of common one time password schemes. Combining those withpublic key encryption and SSL protocol, a bidirectional authentication one time passwordscheme is designed. Then the concrete steps of the new scheme are given, and it is simplerealized by the B/S mode.During the design of the new scheme, SSL protocol is used to guarantee the safeexchange of keys between the server and the customers, so that the information can be sentto the other side correctly. Besides, the method of two random numbers is used tostrengthen the randomness of the password. The system is simply and flexible. It costslower, but is much safer.更多还原