Improvement Of FIDO UAF Protocol For Trusted Mobile Applications

Posted on:2018-10-05

Degree:Master

Type:Thesis

Country:China

Candidate:L Z Luo

Full Text:PDF

GTID:2428330569985418

Subject:Computer technology

Abstract/Summary:

PDF Full Text Request

The FIDO UAF protocol is a universal authentication framework protocol proposed by the Fast Identity Online Alliance.The purpose is to enhance the authentication of the password while reducing the frequency of use of the password.FIDO UAF protocol uses standard public and private key encryption and decryption technology to achieve strong user authentication.FIDO UAF protocol is divided into registration and certification processes.In the registration process,the user's public-private key pair is generated,the private key is stored in the security area of the user device.The key generation is performed in the trusted execution environment.The user's privacy information does not leave the security zone and ensures the security of the user information.The public key information is sent to the FIDO server.In the authentication process,the challenge information is signed by the private key in the user device after the authentication(by pressing the fingerprint authorization)and verified the signature by the FIDO server,thereby reducing the frequency of use of password.As the registration process of the FIDO UAF protocol is actually the registration of the user device,the same user can generate one public-private key pair on the same device in any business.This design has a limitation for the financial application,there is a certain security risk for the user's query and payment using the same public-private key pair which taking the same level of security.This paper improve the FIDO UAF protocol for the demand of financial application,using the public key infrastructure and each device has different key verified by the unified FIDO authentication center.The details of improved FIDO UAF protocol is analysed from the architecture,key generation,registration and authentication process.The improved FIDO UAF protocol is verified by the two different business that using the non-secret login and the non-secret payment,using different fingerprint complete the certification,and the functional requirements of the proposed improved method are initially achieved.

Keywords/Search Tags:

FIDO UAF Protocol, Trusted execution environment, Public key infrastructure, Identity authentication

PDF Full Text Request

Related items

1	Trusted Identity Authentication Scheme Based On Mobile Terminal
2	Research On Trusted Identity Authentication Mechanism In Space-Earth Integrated Network
3	Network Authentication Technology Research And Vikey Identity Authentication System To Achieve
4	Research On Key Technologies Of Unified Framework Of Multi-Authentication Methods Based On FIDO Protocol
5	Research On Trusted Technology Of Android Based On TEE
6	Research On Kerberos Authentication Protocol Integrating Public Key Cryptography
7	Research On Key Technology Of Trusted Authentication
8	Research On MapReduce Secure Data Exchange Based On Trusted Execution Environment Technology
9	Research On Trusted Execution Environment Construction And Security Defense Techniques For Embedded Devices
10	Research On The Combination Of Identity-Based Cryptographic Techniques And Public Key Infrastructure