当前网络在线安全预警中身份认证方法大多通过静态口令实现,不仅易于猜测,而且容易被窃听,安全性较差.为此,提出一种新的网络在线安全预警中一次性口令身份认证方法,给出一次性口令身份认证原则,在进行用户注册的过程中,令用户输入注册的用户ID、用户口令PW及两个随机数,对上述数据进行计算,获取首次认证数据,经安全信道传输至服务器中储存,以供第一次认证使用.给出用户登录服务器时一次性口令身份认证的详细过程.实验结果表明,所提方法在用户数量较多和内部用户、外部用户均冒充合法用户的情况下,均可保持较高的认证精度,且认证效率高.%In the current online security early warning most static password authentication method not only easy to guess,but easy to hacking,poor security.For this,a new online security early warning of one-time password authentication methods was put forward,principle of one-time password authentication are given,in the process of user registration,the user input registered user ID,user password PW and two random Numbers,for calculation,the data access authentication data,for the first time by the security channel transmission to store in the server,for the first time use certification.When the user login server,are one-time password authentication process in detail.The experimental results show that the proposed method in the number of users,external and internal users more users are pretending to be legitimate users,all can keep high precision of certification,and certification of high efficiency.
展开▼
