北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2008, Vol. 31 ›› Issue (6): 50-53.doi: 10.13190/jbupt.200806.50.203

• 论文 • 上一篇    下一篇

一个新的RDP密码套件

张华1,温巧燕1,袁征1,2   

  1. (1. 北京邮电大学 网络与交换国家重点实验室, 北京 100876; 2.北京电子科技学院,北京 10070)
  • 收稿日期:2008-01-26 修回日期:2008-09-08 出版日期:2008-12-31 发布日期:2008-12-31
  • 通讯作者: 张华

A New Ciphersuite for Remote Desktop Protocol

ZHANG Hua1, WEN Qiao-yan1, YUAN Zheng1,2   

  1. (1. State key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing
    100876, China; 2. Beijing Electronic Science and Technology Institute, Beijing 10070, China)
  • Received:2008-01-26 Revised:2008-09-08 Online:2008-12-31 Published:2008-12-31
  • Contact: Zhang Hua

摘要:

针对远程桌面协议,提出1个新的基于口令的增强认证性的密码套件. 该密码套件利用远程桌面协议原有的口令,设计了一个增强认证的密钥协商协议,且不改变密钥计算过程. 在随机预言机模型下,给出安全性证明. 采用这个密码套件的远程桌面协议握手过程能够避免中间人攻击. 这也是有关通过新的可证明安全的密码套件提高远程桌面协议安全性的首次尝试.

关键词: 远程桌面协议, 认证, 密钥交换, 握手协议, 密码套件

Abstract:

Remote Desktop Protocol can make clients to access the remote servers, but it is vulnerable to man-in-middle attacks. A new password-based ciphersuite was proposed for the remote desktop protocol in this paper. It devised a key agreement protocol with the original password of RDP. The new ciphersuite can offer strong authentication. It doesn’t change the computation of keys. This ciphersuite is provably secure in random oracle model. The handshake of RDP that adopts this ciphersuite can avoid man-in-middle attacks. It is the first attempt at drafting provably secure key agreement ciphersuites for RDP.

Key words: Remote Desktop Protocol, Authentication, Key Exchange, Handshake Protocol, Ciphersuite

中图分类号: