多数的身份认证方案是依赖于单个的认证服务器与用户之间的相互认证,如果一个用户想要使用不同的网络服务,就必须向每一个服务器进行注册。然而要使得用户记住不同的身份和口令是非常困难的。最近,Li et al.分析了Sood et al.提出的多服务器间基于动态身份的认证方案,指出了其中存在的问题并且提出了一个改进的方案。Li et al.声称他们的方案可以保证用户的匿名性,提供了相互认证和共享密钥,并且可以抵抗一些常见的攻击。然而,通过仔细分析之后,我们发现Li et al.的方案容易受到假冒攻击。因此,本文提出了一种高效安全的多服务器间基于动态身份的相互认证和密钥共识方案并给出了安全性分析。%Most of the authentication protocols rely on the mutual authentication of the single authentication server and the user.If a user wants to use numerous different network services,he/she has to register himself/herself to every service-providing server.In order to solve this problem,various multi-server authentication protocols have been proposed.After analyzing the protocol proposed by Sood et al.,Li et al. pointed out the problems,proposed a new protocol and claimed that the new protocol can provide user with anonymity,mutual authentication,session key agreement and resistance to several common attacks.However,through careful analysis,the paper finds that Li et al.'s protocol is still vulnerable to the impersonation attack.Therefore,the paper proposes an efficient and secure dynamic identity based authentication and key agreement protocol for multi-server architecture,along with security analysis.
展开▼
