CAJ | 학술논문

口令认证是远程身份认证中最常见的一种方式.介绍并分析了静态口令和静态ID的不足,因为它们在网络传输过程中会泄露用户的部分登录信息,提出了将动态口令和动态ID结合起来运用,以更好地保护用户的登录信息,利用基于指纹特征识别的智能指纹仪产生动态口令和动态ID采实现远程双向认证.在用户登录后,用户和系统采用定时或不定时启动身份认证,以及产生一次性的认证信息,可防止截取攻击和劫取连接攻击.
구령인증시원정신빈인증중최상견적일충방식.개소병분석료정태구령화정태ID적불족,인위타문재망락전수과정중회설로용호적부분등록신식,제출료장동태구령화동태ID결합기래운용,이경호지보호용호적등록신식,이용기우지문특정식별적지능지문의산생동태구령화동태ID채실현원정쌍향인증.재용호등록후,용호화계통채용정시혹불정시계동신빈인증,이급산생일차성적인증신식,가방지절취공격화겁취련접공격.
Password Authentication is a long-range identification of the most common way. The deficiencies of the static Password and the passive ID are described and analyzed at first, as they will be divulging some login information of the user during the trans-ferring process in the network. Then, a combination of the user's dynamic password and dynamic ID is put forward in order to bet-ter protect the user's login information, by way of fingerprint-based intelligent fingerprint identification Miriam which could generate dynamic password and dynamic ID to achieve long-range two-way authentication. During the login, the user or the system regularly or irregularly start authentication, as well as generating one-time authentication information to prevent the interception of attacks and hostage-connected attack.