|
|
计算机应用研究 2005
A Type of New Two-way Authenticate One-time Password System
|
Abstract:
One-time password systems are popular simple user-authentication schemes in Internet. It can effectively resolve the un-secure way of password transfer in plan-text in Internet. This paper discussed some one-time password system, point out the defects such as un-secure server, small integer attack on S/KEY system, and so on. Also in this paper, by using hash function and implementation of client and server's two-way authentication, a framework of two-way authenticate one-time password system was carried out. It can resolve problems such as un-secure server and small integer attack.
