Research On The Security Of Password Authentication Protocol

Password authentication has always been a key component of information security network security,and it is the most popular and practical authentication method.With the development of network and the expanding scope of the application,the traditional password authentication protocol is not enough to meet the updated demands increasingly.In view of the above problems,“how to design a safe and efficient password authentication protocol” is the goal that researchers focus on.Aiming at the security and efficiency of the protocol,the paper has done the following contributions:DssP: Efficient Dual-server Secret Sharing Protocol Based on Password Authentication for Cloud Storage Services.In cloud storage applications,in terms that the key for encrypting data is usually a string of long random numbers,for security considerations,and the key needs to be uploaded to the cloud server.If the key is needed,download it from the cloud server.However,some of the existing protocols donnot content the requirements of security and efficiency.To solve this problem,a dual-server-based key secure storage protocol for cloud storage is proposed.In this scheme,users only need to remember a simple password to realize the function of storing or obtaining keys through dual servers.In addition,using the provable security theory to prove that the protocol meets all security requirements,and evaluate its performance through comparing with other similar protocols.The protocol has less cost in terms of the computing and communication,and balance safety and efficiency.Efficient key protection and key agreement scheme based on dual-server with password for mobile device environment.The private data and authentication information to be obtained by attackers because of loss of mobile devices,malicious attacks,interceptions,etc.In order to solve this problem,we proposes a dual-server key protection and key exchange protocol for mobile devices.The protocol ensures that if a malicious adversary obtains the mobile device through some illegitimate ways such as compromises an authentication server,the malicious adversary cannot complete the authentication and key agreement with only one party's data.It solves effectively the malicious events caused by the loss of the mobile device.In addition,after precise security certification and performance analysis,the protocol is proved to be secure and efficient.Security analysis and improvement of user authentication scheme for Wireless body area network.The wireless body area network occupies an important position in the current medical system,and the communication security of the body area network is also a major problem.Password authentication is one of the basic ways to ensure the security of the body area network.However,there are more or less shortcomings about some protocols.Therefore,the paper designs a secure password authentication protocol suitable for the body area network environment,which satisfies the various security parameters required.Not only the security requirements being satisfied,but also the efficiency advantage is also very obvious compared with several other schemes of the same type.