• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

J4 ›› 2014, Vol. 36 ›› Issue (01): 94-98.

• 论文 • 上一篇    下一篇

一种改进的智能卡认证方法的实现

付青琴1,昂正全2,徐平江1   

  1. (1.国网电力科学研究院,江苏 南京 210003;2.北京航天飞行控制中心,北京 100094)
  • 收稿日期:2012-06-28 修回日期:2012-11-13 出版日期:2014-01-25 发布日期:2014-01-25
  • 基金资助:

    北京市科委项目资助(TF71-11-001)

Implementation of an improved authentication method on IC cardFU Qingqin1,ANG Zhengquan2,XU Pingjiang1

  1. (1.National Electric Power Research Institute,Nanjing 210003;
    2.Beijing Aerospace Flight Control Center,Beijing 100094,China)
  • Received:2012-06-28 Revised:2012-11-13 Online:2014-01-25 Published:2014-01-25

摘要:

分析了传统智能卡认证方法的缺点,提出了一种改进的基于用户自定义算法环境的防攻击智能卡认证方法。智能卡可以根据用户自定义的算法环境,按照不同的算法进行认证。本文支持的算法可以分为DES算法和16字节分组长度算法,用户可以通过命令指定算法类型来完成智能卡的认证,从而达到一定的使用权限,完成需要操作的权限认证。同时,还提出一种防攻击的方法通过限制外部认证密钥可尝试的次数,保证智能卡系统在被外界恶意攻击的情况下的数据传输的安全性。

关键词: 智能卡, 算法环境, 认证方法, 防攻击

Abstract:

Analyzes disadvantages of traditional authentication on IC card, and proposes an improved IC card authentication method based on userdefined algorithm environment so as to avoid attacks. Cards can be authenticated by various algorithms according to userdefined algorithm environment. The supported algorithms can be categorized into DES algorithms and 16 byte packet length algorithms. Users can use the algorithm specified by command to complete the smart card authentication, thus achieving certain permissions and completing the certification authority of the required operation. Meanwhile, the paper proposes another method to avoid attacks, which can guarantee the safety of data transport by limiting the use times of external authentication key even if the system is under attack.

Key words: IC card;augorithms environment;authentication method;avoid attacking