关键词: 双因子密钥 身份认证 密钥交换 密钥猜测攻击 重放攻击 中间人攻击

Abstract:

Authentication protocols based on traditional USB Key are unable to process complex encryption/decryption data and lead to many disadvantages. Based o n the features that USB Key with a smartcard chip can process complex encryption/decryption and generate random keys, this paper presents a dual key aut hentication and key exchange protocol （DKAKEP）. DKAKEP integrates the random number authentication, the one-time session key, the AES encryption and t  the secure hash algorithm, provides secure and fast authentication and key exchange, and supports many useful features such as fast key change, supporti ng multiple hash algorithms and needing no time synchronous mechanisms. The security analysis and practical application indicate that DKAKEP provides go od practicality, security and reliability.

Key words: （dual key, authentication protocol;key exchange, password guessing attack, replay attack; , man in middle attack）