The Implementation Of One-time Password Authentication System Based On Public Encryption Algorithm

The network information brings people convenient trouble at the same time,information disclosure and information tampering occurred from time to time,Illegal and criminal activities that using the internet behavior more and more.As the first protective wall of network security to prevent personal information leakage,the user identity authentication plays a great significance role.This paper first introduces the network security and analysis the problems and solutions in network security and authentication domain from the eye on internal and external.Then,we introduces the theory of identity authentication in detail,and analysis the authentication theory in the aspect of concept,classification and the basic way to realize.The article also introduces the one-time password authentication technology(OTP),including the principle of OTP technology,the realization mechanism,authentication method etc.Then,based on the analysis of OTP technology,the article introduced the basic principle of one-time password authentication system S/KEY and the improved system combined by DES and RSA,and then analysis the advantages and disadvantages of safety performance in the traditional certification system in detail.Because of the problem of authentication protocol and encryption algorithm,it's easy for the attacker to take sensitive information by the method including data interception,fake server.In a comprehensive analysis and summarize advantages and disadvantages of the authentication system program,the paper modified the original program verification system combined the RSA and hash algorithm,put forward the improved OTP authentication protocol.The new protocol takes the two-factor authentication mode and converts the key of token to sequence number of the token to reduce the amount of calculation.In the new protocol,the servers only stores the serial number of the token but the key of the token,greatly improved the security in this way.Next,according to the latest authentication methods,the paper design and implement a simple authentication system procedures,compared the new authentication system with others from the theoretical and experimental methods in the safety,effectiveness,practicality,etc.The result proved the improved authentication system has great advantages in terms of security compare to other authentication methods,but in order to enhance security,the system dynamically generates a random number taken resulted in an increase in the number of data transfers to some extent and affected the performance of the authentication system.Finally,The paper concludes the article related to the content,and make arrangements about future work plans and objectives.This paper analyzes the advantages and disadvantages of authentication system program,improved program verification system combined with RSA and hash algorithm,and then designed an one-time password system program module that can realize bidirectional authentication.Analysis the usability,validity and practicability of the improved method by experiment,proved that the new authentication meet the requirements of modern network and can be applied to practical system.