检索结果-南通市图书馆

Research on Mobile Network Payment security protocol based on Symmetric Cryptography

在线全文

学校读者我要写书评

暂无评论

Research on Mobile Network Payment Security Protocol based o...

A Lightweight Authentication protocol Scheme for RFID security

2015 3rd International Conference on Machinery,Materials and Information Technology Applications(ICMMITA 2015)

作者： Wang Linjing Zhang Peijiang Henan University of Traditional Chinese Medicine

With the rapid development of network technology and mobile terminal equipment, mobile payment has become a trend. Due to the complexity of payment environment, the payment terminal equipment performance is limited, mobile payment security protocol is essential with a high degree of security. This paper not only proposes a Hash symmetric password authentication mechanism, which is used in the mobile payment security protocol, but also design the password authentication and error analysis control scheme, and then they is carried out the security test in the 4G network infrastructure. Through the test, it is found that its cipher technology is more than 99% on the acceptance rate of the correct data and the dropping rate of attack data, it not only has higher security, and it is easy to implement and promote.

关键词： Mobile payment Symmetric cryptography security protocol Hash mechanism 4G network

来源： cnki会议评论

在线全文

cnki会议

学校读者我要写书评

暂无评论

Wuhan University Journal of Natural Sciences 2013年第6期18卷 504-510页

作者： WEI Guoheng ZHANG Huanguo School of Computer Wuhan University Information security Department Naval University of Engineering

Lightweight and safety are two essential features for large-scale application of radio frequency identification （RFID） tags. Based on the analysis of potential safety problem of RFID and the characteristics of existing typical authentication protocol, a new low-cost RFID tags authentication protocol was proposed. The performance of the new protocol was analyzed. The results show that the protocol can resist replay attacks and concurrent attacks and has nontracking, authenticity, and service availability. In addition, the protocol can also reduce the storage of tags and computation burden to meet the application requirements of low-cost tags.

关键词： low-cost tags radio frequency identification (RFID) security protocol authentication

An Attack—Finding Algorithm for security protocols

在线全文

学校读者我要写书评

暂无评论

Journal of Computer Science & Technology 2002年第4期17卷 450-463页

作者：刘东喜李小勇等 DepartmentofComputerScienceandTechnology ShanghaiJiaotongUniversityShanghai200030P.R.China

This paper proposes an automatic attack construction algorithm in order to find potential attacks on ecurity *** is based on a dynamic strand space model,which enhances the original strand space model by introducing active nodes on strands so as to characterize the dynamic procedure of protocol *** exact causal dependency relations between messages considered in the model,this algorithm can avoid state space explo-sion caused by asynchronous *** order to get a finite state space,a new method called strand-added on demand is exploited,which extends a bundle in an incremental manner without requiring explicit configuration of protocol execution parameters.A finer granularity model of term structure is also introduced, in which subterms are divided into check subterms and data subterms .Moreover,data subterms can be further classified based on the compatible data subterm relation to obtain automatically the finite set of valid acceptable terms for an honest *** this algorithm,terms core is designed to represent the intruder's knowledge compactly,and forward search technology is used to simulate attack patterns *** this algorithm,a new attack on the Dolve-Yao protocol can be found,which is even more harmful beeause the secret is revealed before the session terminates.

关键词： dynamic strand space security protocol attack construction strand-added on demand check subterm data subterm compatible data subterm relation terms core

An enhanced scheme for mutual authentication for healthcare services

在线全文

维普期刊数据库

学校读者我要写书评

暂无评论

Digital Communications and Networks 2022年第2期8卷 150-161页

作者： Salman Shamshad Muhammad Faizan Ayub Khalid Mahmood Saru Kumari Shehzad Ashraf Chaudhry Chien-Ming Chen Department of Computer Science COMSATS University IslamabadSahiwal Campus57000Pakistan Department of Mathematics Ch.Charan Singh UniversityMeerutUttar Pradesh250004India Department of Computer Engineering Faculty of Engineering and ArchitectureIstanbul Gelisim UniversityIstanbulTurkey College of Computer Science and Engineering Shandong University of Science and TechnologyQingdao266590China Riphah School of Computing&Innovation(RSCI) Riphah International UniversityLahore CampusLahore 55150Pakistan Department of Mathematics University of Padua35131 PaduaItaly

With the advent of state-of-art technologies,the Telecare Medicine Information System(TMIS)now offers fast and convenient healthcare services to patients at their ***,this architecture engenders new risks and challenges to patients'and the server's confidentiality,integrity and *** order to avoid any resource abuse and malicious attack,employing an authentication scheme is widely considered as the most effective approach for the TMIS to verify the legitimacy of patients and the ***,several authentication protocols have been proposed to this *** recently,Chaudhry et *** that there are vulnerabilities of impersonation attacks in Islam et al.'s ***,they introduced an improved protocol to mitigate those security ***,Qiu et *** that these schemes are vulnerable to the man-in-the-middle,impersonation and offline password guessing ***,they introduced an improved scheme based on the fuzzy verifier techniques,which overcome all the security flaws of Chaudhry et al.'s ***,there are still some security flaws in Qiu et al.'s *** this article,we prove that Qiu et al.'s protocol has an incorrect notion of perfect user anonymity and is vulnerable to user impersonation ***,we introduce an improved protocol for authentication,which reduces all the security flaws of Qiu et al.'s *** also make a comparison of our protocol with related protocols,which shows that our introduced protocol is more secure and efficient than previous protocols.

关键词： Authentication protocol security protocol Anonymous protocol Impersonation attack TMIS

Progress and Prospect of Some Fundamental Research on Information security in China

在线全文

维普期刊数据库

学校读者我要写书评

暂无评论

Journal of Computer Science & Technology 2006年第5期21卷 740-755页

作者：冯登国王小云 State Key Laboratory of Information security Institute of Software Chinese Academy of Sciences Beijing 100080 P.R. China School of Mathematics and System Science Shandong University Jinan 250100 P.R. China

With the development of network and information technologies, information security is more and more widely researched in China. To know where the work is and where it goes, we focus on comprehensively surveying the twenty years of important fundamental research by Chinese scholars, and giving, from our point of view, the significance as well as the outlook of future work. Some of the reviewed work, including the researches on fundamental theory of cryptography, cryptographic algorithm, security protocol, security infrastructure and information hiding, greatly advances the related sub-fields, and is highly recognized in and outside of China. Nevertheless, the overall work, we think, is still facing the problems of unbalanced development of sub-areas, limited scope of research, lack of systematic work and application, etc., leaving much room for improvement in the near future.

关键词： cryptology security protocol security infrastructure information security

nPAKE^+:A Tree-Based Group Password-Authenticated Key Exchange protocol Using Different Passwords

在线全文

维普期刊数据库

学校读者我要写书评

暂无评论

Journal of Computer Science & Technology 2009年第1期24卷 138-151页

作者：万志国邓慧杰鲍丰 Bart Preneel 顾明 Key Laboratory for Information System security Ministry of Education National Laboratory for Information Science and TechnologySchool of SoftwareTsinghua University School of Information Systems Singapore Management UniversitySingapore Institute for Infocomm Research 21 Heng Mui Keng TerraceSingapore K.U.Leuven ESAT/SCDKasteelpark Arenberg 10LeuvenBelgium

Although two-party password-authenticated key exchange （PAKE） protocols have been intensively studied in recent years, group PAKE protocols have received little attention. In this paper, we propose a tree-based group PAKE protocol - nPAKE^＋ protocol under the setting where each party shares an independent password with a trusted server. The nPAKE^＋ protocol is a novel combination of the hierarchical key tree structure and the password-based Diffie-Hellman exchange, and hence it achieves substantial gain in computation efficiency. In particular, the computation cost for each client in our protocol is only O（log n）. Additionally, the hierarchical feature of nPAKE^＋ enables every subgroup to obtain its own subgroup key in the end. We also prove the security of our protocol under the random oracle model and the ideal cipher model.

关键词： security protocol password-authenticated key exchange group key agreement

Lightweight authentication protocol for e-health clouds in IoT-based applications through 5G technology

在线全文

学校读者我要写书评

暂无评论

Digital Communications and Networks 2021年第2期7卷 235-244页

作者： Minahil Muhammad Faizan Ayub Khalid Mahmood Saru Kumari Arun Kumar Sangaiah Department of Computer Science COMSATS University Islamabad Sahiwal Campus57000Pakistan Department of Mathematics Ch.Charan Singh UniversityMeerutUtter Paradesh250001India School of Computing Science and Engineering VIT UniversityVelloreTamil NaduIndia

Modem information technology has been utilized progressively to store and distribute a large amount of healthcare data to reduce costs and improve medical *** this context,the emergence of e-Health clouds offers novel opportunities,like easy and remote accessibility of medical ***,this achievement produces plenty of new risks and challenges like how to provide integrity,security,and confidentiality to the highly susceptible e-Health *** these challenges,authentication is a major issue that ensures that the susceptible medical data in clouds is not available to illegal *** smart card,password and biometrics are three factors of authentication which fulfill the requirement of giving high *** three-factor ECC-based authentication protocols on e-Health clouds have been presented so ***,most of the protocols have serious security flaws and produce high computation and communication ***,we introduce a novel protocol for the e-Health cloud,which thwarts some major attacks,such as user anonymity,offline password guessing,impersonation,and stolen smart card ***,we evaluate our protocol through formal security analysis using the Random Oracle Model(ROM).The analysis shows that our proposed protocol is more efficient than many existing protocols in terms of computation and communication ***,our proposed protocol is proved to be more efficient,robust and secure.

关键词： Authentication security protocol IoT 5G e-health cloud

An Improvement ofGNY Logic for the Reflection Attacks

在线全文

维普期刊数据库

学校读者我要写书评

暂无评论

Journal of Computer Science & Technology 1999年第6期14卷 619-623页

作者：丁一强 Laboratory of Computer Sciences Institute of Software Chinese Academy of Sciences Beijing P.R. China

In this paper, the limitation of the GNY logic about its inabilityto detect the reflection attacks against some authentication protocols is given. Animprovement is proposed which takes into account the possible multip... 详细信息

关键词： security protocol protocol analysis formal method reflection Attack

A Secure Short Message Communication protocol

在线全文

学校读者我要写书评

暂无评论

International Journal of Automation and computing 2008年第2期5卷 202-207页

作者： Chao-Wen Chang Heng Pan Hong-Yong Jia School of Electronic and Information Engineering Xi~an Jiaotong University Xi＇an 710071 PRC Institute of Electronic Technology Information Engineering University Zhengzhou 450004 PRC

According to the security requirement of the short message service （SMS） industry application, a secure short message communication protocol is proposed. This is an application level protocol constructed on the standard SMS communication protocol using public key authentication and key agreement without the need of wireless public key infrastructure （WPKI）. Secure short message transmission and dynamic key agreement between mobile terminals and the accessing gateway axe realized. The security of the proposed protocol is validated through the BAN logic. Compared with the standard SMS protocol, the effective payload rate of our protocol can reach 91.4%, and subscriber identity module （SIM） tool kit （STK） applications based on our protocol suit well for all kinds of mobile terminals in practical application.

关键词： Short messaging service security protocol subscriber identity module (SIM) tool kit (STK) authentication mobile