«上一篇/Previous Article|本期目录/Table of Contents|下一篇/Next Article»

《计算机技术与发展》[ISSN:1006-6977/CN:61-1281/TN]

卷:

期数:

2013年12期

页码:

109-112

栏目:

智能、算法、系统工程

出版日期:

1900-01-01

文章信息/Info

Title:

Analysis of Kerberos Protocol Based on Strand Space Theory

文章编号:

1673-629X（2013）12-0109-04

作者:

魏浩; 解争龙; 弋改珍

咸阳师范学院 信息工程学院

Author(s):

WEI Hao; XIE Zheng-long; YI Gai-zhen

关键词:

串空间; Kerberos协议; 保密性; 认证性

Keywords:

string space; Kerberos protocol; confidentiality; authenticity

文献标志码:

A

摘要:

在介绍串空间理论基本概念、攻击者模型以及Kerberos协议的基础上，利用串空间理论得出Kerberos各协议参与主体和攻击者的迹，构造了协议的串空间，给出了Kerberos协议的丛图。在证明一个定理的基础上，使用启发式和反证法的思路，证明了认证服务器分配给客户端和应用服务器会话密钥的保密性，即攻击者从现有知识和构造能力无法推导出服务器分配给客户端和应用服务器的会话密钥；证明了客户端和认证服务器以及客户端和应用服务器能够相互认证，得出了Kerberos协议正确性的结论

Abstract:

Based on the theory of the string space,the model of the attacker and the Kerberos protocol,obtain traces of the subject in-volved in Kerberos protocol and the attacker with string space theory,and establish string space and bundles of the Kerberos protocol. It is proved that the session key of the client and application server assigned by authentication server is confidential by heuristic and reduction to absurdity. The attacker can not obtain the session key from existing knowledge and building capacity. The client and the authentication server and client and application server can be authenticated each other. It is concluded that the Kerberos protocol is correct

常用功能

更新日期/Last Update: 1900-01-01