- 學位論文
高效率之遠端身份認證協定應用於智慧卡之研究
A Study of Efficient Remote User Authentication Protocol with Smart Cards
摘要
近年來,隨著網路服務的快速發展,帶動了智慧卡在網路上應用的普及,網路使用者對智慧卡使用的安全性也因此更加重視。由於網路是一個虛擬的世界,當使用者在存取網路資源或服務時,有些重要的個人資訊就會在不安全的公眾網路上傳輸,容易發生機密資訊遭有心人士所竊取的風險,也可能發生有心人士冒充使用者的身份來存取網路資源的問題。因此,需要一個身份驗證的機制來確認通訊雙方之身份。本論文主要針對智慧卡所擁有低成本運算與方便可攜性的特性,提出二個適用於智慧卡之使用者身份驗證協定以利作為不同環境下之使用。為了有效地降低智慧卡之運算成本以及資訊傳輸量,本論文捨棄了傳統運算量大的RSA或ElGamal之公開金鑰之密碼系統,讓使用者的機密資訊在公開網路傳輸時也能具有保護作用。在達到雙方身份驗證的同時,也產生通訊雙方共同擁有的會議金鑰,讓個人重要資訊獲得更多保障。另一方面,在本研究裡,我們也提供一種讓使用者可隨時變更智慧卡的密碼之功能。有了這個運算成本低且功能完整的技術,讓智慧卡身份驗證協定更加有效率而且更具人性化。 整體而言,本論文將探討一些具有低成本運算與低資訊傳輸量的技術,除了能適用於有線網路環境之服務,更將適合應用於無線網路狀態之服務。
並列摘要
Recently, due to the rising and flourishing of the computer networks development. Application of smart card becomes even more and more universality and functionality. Hence, the remote user authentication scheme over an insecure channel gets a topic for discussion. Owing to the Internet is a virtual network environment. When a user wants to access resource and service for any remote server, several important information of personal will deliver over insecure public network. Event of secret information stolen by intruder easily occurred, even the identity of legal user to access network resource faked. Therefore, it claims the remote user authentication protocol to authenticate the validity between the two parties of a user and a server. This thesis focuses on remote user authentication mechanism with smart cards, and then proposes two user authentication protocols with smart cards. Moreover, it achieves the merit of low-computation cost and low-amount transmission. In order to reduce the computation cost and the amount of information transmission for smart cards, this thesis gives up the traditional public key cryptosystem based on RSA and ElGamal. Our propose methods can protect user’s secret information over public network and can generate the common session key during mutual authentication between two parties of a user and a server. In addition, a user can freely update password in this proposed protocol. In this thesis, the required operations are only few hashing operations, simple exclusive-or operations, and nonce-based number. Since the properties of the low-computation cost and the low-amount transmission, the proposed proposal can greatly reduce the computation cost and lower the amount of communication for both the user and the server. Moreover, this proposed protocol also provides complete functionality and suitability for the user with smart cards upon wireless network services. Overall, this dissertation is to investigate more efficient and low communications in wireless networks. We want the results of proposed schemes will be more attractive to many applications.
參考文獻
延伸閱讀
- 劉昭聖(2012)。利用智慧卡做網路使用者認證之研究〔碩士論文,淡江大學〕。華藝線上圖書館。https://doi.org/10.6846/TKU.2012.00648
- Chang, P. Y. (2012). 植基於智慧卡暨使用者隱私保護之身分認證的研究 [master's thesis, National Taichung University of Science and Technology]. Airiti Library. https://doi.org/10.6826/NUTC.2012.00102
- 李添福、張志標、陳麒文、劉相君(2010)。適用於智慧卡環境之相互認證機制。載於南台科技大學資訊管理學系(主編),數位教學暨資訊實務研討會(頁233-241)。南台科技大學資訊管理學系。https://doi.org/10.29839/SWJX.201003.0233
- 廖鴻圖、林建福、蕭麗齡、鄭惠菱(2007)。使用智慧卡之通行碼身分鑑別協定。資訊管理學報,14(3),179-196。https://doi.org/10.6382/JIM.200707.0179
- Cheng, Z. Y., Liu, Y., Chang, C. C., & Chang, S. C. (2012). An Improved Protocol for Password Authentication Using Smart Cards. 電腦學刊, 22(4), 28-37. https://www.airitilibrary.com/Article/Detail?DocID=19911599-201202-201203030082-201203030082-27-36