三方驗證金鑰協議協定之研究

在公開的網路上，有許多的金鑰協議協定或金鑰交換協定被提出，用來幫助雙方分別秘密去計算出一把共同金鑰。然而，這些協定有可能造成雙方分別計算出不相同的金鑰。例如:在2010年，Lee and Hwang 兩人提出了一個金鑰交換協定，此協定有可能遭受中間人攻擊造成雙方計算出不相同的金鑰。另外，在2012年，Lv et al. 提出了一個三方驗證的金鑰交換協定，但是此協定可能遭受離線攻擊和中間人攻擊。在本研究中，我們將集中於三方驗證金鑰協議之研究和分析並提出改進的金鑰協議。

關鍵字

驗證；中間人攻擊；離線攻擊；通行碼；三方金鑰協議

並列摘要

A key agreement protocol or key exchange protocol is proposed to help two parties to compute a common session key respectively, over a insecure channel. There are many schemes having been proposed to implement such a protocol. However, some of the proposed schemes can result these two parties compute no common session key. For instance, in 2010, Lee and Hwang proposed such a key exchange scheme that has a chance to make two protocol parties to compute no common session key with a man-in-the-middle attack. In addition, in 2012, Lv et al. proposed a three- party authenticated key exchange scheme that may su er an o -line attack and a man-in-the middle attack. In the thesis, we make a research to the three-party authenticated key agreement and analyse them with the man-in-the-middle attack. Finally, we hope that we can inprove them.

並列關鍵字

Authentication ； man-in-the-middle attack ； off-line attack ； password-based ； three-party key exchange.

參考文獻

[1] Abdalla, M., and Pointcheval, D. Simple password-based encrypted key

in Computer Science 3376 (2005), 191{208.

[2] Chung, H.-R., and Ku, W.-C. Three weaknesses in a simple three-party

key exchange protocol. Information Sceinces 178 (2008), 220{229.

[3] Crandall, R., and Pomerance, C. Prime Numbers: A Computational

國際替代計量

三方驗證金鑰協議協定之研究

全文下載

主題瀏覽