A direction-based protocol freshness checking method

Abstract

The invention discloses a direction-based protocol freshness checking method, which comprises the following steps that: a user side and a platform side simultaneously maintain a serial number pair: aplatform communication serial number SNs and a user communication serial number SNc are respectively used as freshness factors of session protocols actively initiated by the platform side and the userside; When the platform end initiates a session, SNs maintained by the platform end are accumulated and sent to the user end, and the user end verifies the SNs after receiving the SNs, then completesaccumulation and synchronizes the SNs to the platform end; And when initiating a session, the user end accumulates the SNc maintained by the user end and sends the SNc to the platform end, and the platform end verifies the SNc after receiving the SNc, completes accumulation and synchronizes the SNc to the user end. According to the method, a comprehensive application mechanism of an encryption mechanism, a hash mechanism and a response mechanism is combined, serial numbers which are continuously accumulated in the direction are adopted as fresh factors, Hash values are combined, and effectivedefense on message blocks, message blocks, protocol steps, protocols and various replay attacks is achieved at the minimum cost.

Description

technical field [0001] The invention relates to a direction-based protocol freshness checking method. Background technique [0002] A well-run communication protocol in the network should not only have validity, fairness and integrity, but also should have sufficiently high security. Usually we refer to protocols with security functions as security protocols, and their security properties mainly include authentication, confidentiality, integrity, non-repudiation, and freshness. Security protocols are an important part of network security. Over the years, although the research on security protocols has achieved fruitful results, many security protocols currently in use have some potential attack loopholes. Attacks that threaten protocol security mainly include tampering attacks, Substitution attacks, impersonation attacks, replay attacks, etc. [0003] Replay attack is the most common type of attack for the protocol, and it is a more serious one. For example, the attacker ...

AI Technical Summary

Problems solved by technology

[0015] In order to overcome the above-mentioned shortcomings of the prior art, the present invention provides a direction-based protocol freshness check method, which is a replay attack defense mechanism, the main purpose of which is to solve the problem that the traditional serial number freshness check mechanism has a biased range For larger and vulnerable problems, different bidirectional serial number pairs are maintained according to different protocol subjects, which can accurately reduce the bias value to the range of (-1,+1), and combine the algorithm mechanism and response mechanism to form a defense mechanism , effectively resisting replay attacks

Images