Universal serial bus mass storage is a widely used storage device. In order to protect the user data securi-ty in USB storage devices, an effective authentication and data protection scheme is proposed. Using the attribute-based control technology, the security authentication of the USB device user is realized, and the privacy data fine-grained control of the USB device is realized. Security analysis shows that the scheme has strong security, it can re-sist replay attack, denial of service attack, the online password guessing attack, user impersonation attack, etc. Ex-perimental performance analysis shows that the scheme has high efficiency in user registration, authentication and file decryption.%通用串行总线大容量存储器是一种被广大用户广泛使用的存储设备.为了保护USB存储设备中用户数据安全,提出了一种适用于USB大容量存储器有效的身份认证与数据保护方案.利用属性权限控制技术,实现了对USB设备用户的安全认证、实现了对USB设备中隐私数据细粒度控制.安全性分析表明该方案具有较强的安全性,能够抵抗重放攻击、拒绝服务攻击、在线口令猜测攻击、用户伪装攻击等;实验性能分析表明该方案在用户注册、认证、文件解密等方面具有较高的效率.
展开▼