Three-factor identity authentication and key negotiation method in multi-server environment

Abstract

The invention discloses a three-factor identity authentication and key negotiation method in a multi-server environment. The method comprises the following phases: a registration center initializationphase, a server registration phase, a client registration phase and an authentication and key negotiation phase, and a functional portion of client password replacement. By adoption of the three-factor identity authentication and key negotiation method disclosed by the invention, the participation of a trusted third party registration/authentication center is not required in the authentication phase, thus reducing the communication steps and costs, improving the protocol operation efficiency and ensuring the security of the protocol at the same time. The mutual authentication of the two parties is realized by a static DH value shared by the client and the server uniquely, and the confidentiality of a session key is realized by a dynamic DH value shared by both parties uniquely and used for calculating the session key so as to ensure the security of an established channel. The three-factor identity authentication and key negotiation method disclosed by the invention has authenticationproperty and confidentiality, is secure and provides an efficient multi-server three-factor identity authentication and key negotiation protocol on the communication.

Description

technical field [0001] The invention relates to a three-factor user identity authentication and key generation protocol in a multi-server environment that does not require the participation of a trusted third party in the authentication stage, and belongs to the technical field of cryptographic protocols. Background technique [0002] With the rapid development of contemporary network technology, especially the development and growth of a series of network technologies closely related to life such as the Internet of Things in recent years, our life and the network have been closely integrated. From electronic wallets that can be used in food markets, to online shopping for clothing, to booking hotels from mobile apps, to online ticketing and shared bicycles. The four largest parts of people's lives: basic necessities of life. All can be realized through the network. The more people's lives are inseparable from the network, the more they need to pay attention to the securit...

AI Technical Summary

Problems solved by technology

[0006] The above-mentioned proposed protocols all have security holes, and in the authentication phase, the server needs to send the user's authentication information to the Registered / Authenticate Center (Registered / Authenticate Center)

This increases the number of communication steps and makes the communication cost high

At the same time, when a large number of users send authentication requests, there is a communication traffic bottleneck