Lightweight anonymous authentication and key negotiation method in multi-server environment
What is Al technical title?
Al technical title is built by PatSnap Al team. It summarizes the technical point description of the patent document.
An anonymous authentication and key negotiation technology, applied in the field of information security, can solve the problems of single function, easy account impersonation attack, unable to provide key negotiation function, etc.
Active Publication Date: 2016-04-20
深圳市迅威恒达信息技术有限公司
View PDF5 Cites 26 Cited by
Summary
Abstract
Description
Claims
Application Information
AI Technical Summary
This helps you quickly interpret patents by identifying the three key elements:
Problems solved by technology
Method used
Benefits of technology
Problems solved by technology
[0003] (1) Poor scalability
Most multi-factor authentication schemes are basically adapted to a single server environment, that is to say, if a user wants to log in to different servers to obtain different services at the same time, the user needs to register on multiple different servers and remember different usernames and passwords. Login password (users use the same username and password on different servers, and the account is vulnerable to impersonation attacks). Research shows that users on the Internet log in to more than 20 different servers per month on average. A large number of usernames and login passwords bring users It is inconvenient to memorize, store, and manage, and it has caused potential safety hazards
In addition, most of the current multi-factor authentication schemes can only provide two-party identity authentication, which has a single function and cannot provide the key negotiation function, and the application scenarios and scope are limited.
[0004] (2) Low efficiency
The current development trend is that mobile terminal users hold mobile terminals with limited computing power, storage capacity and communication capabilities, including smartphones, tablets, and PDAs, which cannot complete complex computing tasks.
Therefore, most existing multi-factor authentication technologies cannot be directly migrated to res
Method used
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more
Image
Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
Click on the blue label to locate the original text in one second.
Reading with bidirectional positioning of images and text.
Smart Image
Examples
Experimental program
Comparison scheme
Effect test
Example Embodiment
[0037] Example 1
[0038] Now as user U 3 To server S 6 Take anonymous authentication and key negotiation as an example, the specific method is as follows:
[0039] (1) System establishment and selection of system parameters
[0040] The registration center RC selects the SHA-2 algorithm and the fuzzy extractor according to the security requirements of the system, and makes the SHA-2 algorithm and the fuzzy extractor public, and then writes the SHA-2 algorithm and the Rep(.) algorithm of the fuzzy extractor to the user's smart card In SC, the smart card has a certain storage capacity, computing capacity and the ability to connect to a remote server, such as OR1200 of the open source 32-bit processor RISC.
[0041] (2) The server and user are registered in the RC registry
[0042] Assuming that the server and the user register their real identities in the registry and become legal members of the system, let the registry RC select a key x with a binary length of l and a one-way Hash func...
Example Embodiment
[0054] Example 2
[0055] In this embodiment, after step (2) the server and the user are registered in the registration center RC, the fingerprint of user 3 is accidentally damaged, and the password pw needs to be changed 3 And / or biological information b 3 ,Specific steps are as follows:
[0056] (a) Password pw 3 And / or biological information b 3 Updates of
[0057] The specific method is: User U 3 Insert the user's smart card SC into the card reader and enter the ID 3 , Pw 3 , B′ 3 , The user’s smart card SC uses the Rep(.) algorithm of the fuzzy extractor to recover the user U 3 The biological key Rep(Δ 3 ,b′ 3 )=θ′ 3 , And calculate A′ 3 =h(pw 3 ||θ′ 3 ), verify F 3 =h(ID 3 ||A′ 3 ) Is established, if not established, the user smart card SC automatically interrupts the request; if established, the user is prompted to enter a new password And / or biological information User U 3 Recollect your own biological information And choose a new password by G e n ( b 3 ...
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more
PUM
Login to view more
Abstract
The invention relates to a lightweight anonymous authentication and key negotiation method in a multi-server environment and belongs to the technical field of information safety. The method is characterized by achieving the anonymous authentication and key negotiation in the multi-server environment by means of the following three steps: (1) building a system and selecting system parameters; (2) registering in a registering center RC by a server and a user; (3) carrying out authentication and key negotiation by the user and a remote server so as to provide subsequent communication session keys. The lightweight anonymous authentication and key negotiation method is applicable to remote authentication of a mobile terminal and servers with low calculation capability, memory space and communication capability; the mobile terminal can log in any server registered by RC through a user name and a password; the server only can authenticate that the user is a valid user and cannot know the specific identity of the user, so that the privacy of the user is protected; the lightweight anonymous authentication and key negotiation method is excellent in expansibility; the two-party negotiation session keys are determined by random numbers Ni1 and Ni2 selected by authenticating for each time by two parties; the independence and the forward and backward security of the session keys are ensured.
Description
technical field [0001] The patent of the present invention belongs to the field of information security technology, specifically, in the multi-service environment of the mobile Internet, a mobile terminal user authenticates and logs in to a remote server based on biometric information and negotiates a subsequent session key to obtain a remote service. Key agreement method. Background technique [0002] Existing remote authentication technologies mainly include authentication technologies based on passwords, authentication technologies based on smart cards, and authentication technologies based on human biological information. Low-entropy passwords are vulnerable to offline guessing attacks. In a multi-server environment, high-entropy passwords are likely to bring difficulties to users in memorization and management. The smart card is easy to be stolen, and the information stored on the smart card is easy to be attacked by side channel technology and leaked inadvertently. B...
Claims
the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more
Application Information
Patent Timeline
Application Date:The date an application was filed.
Publication Date:The date a patent or application was officially published.
First Publication Date:The earliest publication date of a patent with the same application number.
Issue Date:Publication date of the patent grant document.
PCT Entry Date:The Entry date of PCT National Phase.
Estimated Expiry Date:The statutory expiry date of a patent right according to the Patent Law, and it is the longest term of protection that the patent right can achieve without the termination of the patent right due to other reasons(Term extension factor has been taken into account ).
Invalid Date:Actual expiry date is based on effective date or publication date of legal transaction data of invalid patent.
Login to view more 
Login to view more