The Research And Implementation Of Two-way Dynamic Password Identity Authentication System

As the development of computer technology and Internet technology, more and more activities rely on the network. However, due to the existences of network fraud, counterfeit identity, and other network security issues, the various departments, as well as the consumers have suffered considerable losses, which have brought great harm to the network development and Information Society progress.Identity authentication is the basis of the whole information security system, and also the Bridgehead of network security. The traditional authentication technology uses static password method, which is simple, but can not guarantee sufficient accessing security because of its own shortcomings. For the security weaknesses of traditional static password, Dynamic Password Authentication technology is raised as a novel way of certification where the password is changed from time to time. The basic idea is to add uncertainty during the login process, so that each time you log in the different information is transferred, which in turn improves the safety of the login process.First, a survey is made on the research background and current research situation, with the analysis of a variety of traditional authentication technologies for several typical certifications for their advantages and disadvantages, and then a discussion is made on the classification and development of the dynamic password authentication technology. With the concern of the possible security flaws in the classic dynamic password authentication schemes, a dynamic password authentication scheme is given, which is based on the challenge/response mechanism, and uses a one-way hash function to generate a summary of certification information, which is then encrypted/decrypted by the ElGamal algorithm. The design of the scheme is the main job of this paper. This scheme is then analyzed for its safety and performance, including a comparison with a typical scheme. Finally, a prototype system is implemented and tested, by applying it in the learning system. Finally, the paper is ended up with the discussion of further work.This scheme uses a random number as challenge factors, avoiding the defects led by the strict time synchronization of server and client that uses the time factor. At the same time, with the combination of smart card and fingerprint recognition, the further security is guaranteed. This scheme has implemented a two-way authentication between server and client, reflecting the fairness of the certification, with the advantages of safety, reliability, easy-to-use, easy-to-transplant, low cost and easy- to-promote.