| With the popularity of the Internet and rapid development, the problem caused by network security becomes important, in fact, there are more and more illegal activitics by using the network. The security of internet is becoming more emphasized, as the first protecting line of the application system, the identity authentication is used to verify the real identity of users, and prevent the sensitive data from being stolen by attackers.Among all the identity authentication, using password is in the most common usage, and the One-Time password gets more attention because of its high security. This paper introduces the principle and the realization way of the One-Time password scheme at first, Through the analysis of the traditional static password authentication method and some of the existing combination of cryptographic algorithms improvement program, summarizes the defects which exist in these scheme in the static password authentication scheme, combined asymmetric encryption algorithm RSA and Network Time Synchronization Protocol for the NTP, designed able to achieve two-way password authentication to improve the program. The principle of the new program has made a detailed description of its specific design described.The new scheme using RSA and SHA to realize the bidirection between client and server, using two random numbers which exist both in client and server to make up the challenge,all information security system is based authentication, to prevent the system from being attacked by third party. The RSA encryption technology to encrypt a certain extent, to improve the safety, using the Network Time Protocol NTP is a standard Internet protocol for the Internet time synchronization, so do not worry about the time of the server and client are not synchronized. The whole system has the features of simpliness, flexibility cheapness and high security. |
PDF Full Text Request