基于口令和智能卡的双因素身份认证与盲云存储方案
Two-factor Authentication Scheme for Blind Cloud Storage System Based on Password and Smart Card
王怡 1胡学先 1魏江宏1
作者信息
- 1. 中国人民解放军战略支援部队信息工程大学 郑州 450001
- 折叠
摘要
面向大规模用户数据的存储需求,如何安全地使用云存储技术实现用户数据的远程存取,同时保证数据的可移植性和安全性是当前的一个研究热点.在2022年的USENIX Security会议上,Chen等针对用户仅拥有一个低熵口令的情形,提出了一种高效可移植的盲云存储方案,然而该方案不可避免地继承了 口令难以抵抗在线字典攻击的弱点.为弥补单一口令认证方式带来的安全性缺陷,文中提出了一种基于口令和智能卡的双因素身份认证与盲云存储方案.安全性分析和仿真实验结果表明,该方案在保证良好的可移植性、可部署性和盲云存储特性的同时,实现了比纯口令方案更高的安全性,且具有相当的计算和通信效率.
Abstract
Aiming at the demand for large-scale data storage,how to securely realize remote access to user data using cloud sto-rage technologies while retaining data portability and security is a research hotspot at present.In USENIX Security 2022,Chen et al.proposed an efficient and portable blind cloud storage scheme for the case where users just hold one low-entropy password.However,the scheme inevitably inherits the weakness of passwords unresistant to online dictionary attack.To compensate the se-curity shortage of password-only authentication,this paper designs a two-factor authentication scheme for blind cloud storage sys-tem based on password and smart card.Experimental results show that the proposed scheme not only realizes portability,deploy-ability and blind cloud storage,but also achieves a higher level of security over password-only authentication schemes with equiva-lently computation and communication efficiency.
关键词
智能卡/低熵口令/身份认证/双因素/盲云存储Key words
Smart card/Low-entropy password/Identity authentication/Two-factor/Blind cloud storage引用本文复制引用
基金项目
国家自然科学基金(62172433)
国家自然科学基金(62172434)
河南省自然科学基金(222300420099)
出版年
2024
NETL
NSTL
万方数据