A New Ciphersuite for Remote Desktop Protocol

doi:10.13190/jbupt.200806.50.203

JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM ›› 2008, Vol. 31 ›› Issue (6): 50-53.doi: 10.13190/jbupt.200806.50.203

• Papers • Previous Articles Next Articles

A New Ciphersuite for Remote Desktop Protocol

ZHANG Hua1, WEN Qiao-yan1, YUAN Zheng1,2

(1. State key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing
100876, China; 2. Beijing Electronic Science and Technology Institute, Beijing 10070, China)

Received:2008-01-26 Revised:2008-09-08 Online:2008-12-31 Published:2008-12-31
Contact: Zhang Hua

Abstract

Abstract:

Remote Desktop Protocol can make clients to access the remote servers, but it is vulnerable to man-in-middle attacks. A new password-based ciphersuite was proposed for the remote desktop protocol in this paper. It devised a key agreement protocol with the original password of RDP. The new ciphersuite can offer strong authentication. It doesn’t change the computation of keys. This ciphersuite is provably secure in random oracle model. The handshake of RDP that adopts this ciphersuite can avoid man-in-middle attacks. It is the first attempt at drafting provably secure key agreement ciphersuites for RDP.

Key words: Remote Desktop Protocol, Authentication, Key Exchange, Handshake Protocol, Ciphersuite

CLC Number:

TN929.53

ZHANG Hua1, WEN Qiao-yan1, YUAN Zheng1,2

. A New Ciphersuite for Remote Desktop Protocol[J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2008, 31(6): 50-53.

References

[1] 刁俊峰. 软件安全中的若干关键技术研究. 北京: 北京邮电大学, 2007: 41-55. Diao Jun-feng. Research on some key technologies of software security. Beijing: Beijing University of Posts and Telecommunications, 2007: 41-55.
[2] 袁征, 温巧燕, 陈瑞利, 等. ID口令进化的Ad Hoc网络会话密钥方案[J]. 北京邮电大学学报, 2007, 30(5): 82-85. Yuan Zheng, Wen Qiaoyan, Chen Ruili, et al. Conversation keys scheme bases ID and evolved passwords in Ad hoc network[J]. Journal of Beijing University of Posts and Telecommunications, 2007, 30(5): 82-85.
[3] Microsoft. Remote desktop protocol (RDP) features and performance white paper. . http://whitepapers.zdnet.co.uk/0,100000065 1,260006500p-39000438q,00.html.
[4] Zhou Lan, Susilo W, Mu Y. Efficient ID-based authenticated group key agreement from bilinear pairings//MSN 2006. Berlin: Springer-LNCS, 2006: 521-532.
[5] Bellare M, Pointcheval D, Rogaway P. Authenticated key exchange secure against dictionary attacks//EUROCRYPT 2000. Berlin: Springer-LNCS, 2000: 139-154.
[6] Bresson E, Chevassut O, Pointcheval D. Cryptography for secure dynamic group communication: US,20050157874. 2004-11-30. http:// www.freepatentsonline.com/US20050157874.html.
[7] Bellovin S M, Merritt M. Cryptographic protocol for secure communications: US,5241599. 1993-8-31. http://www.freepatentsonline.com/US5241599.html.
[8] Bellovin S M, Merritt M. A cryptographic protocol for secure communications: European 05 35863B1. 2002-01-23. http://www.free patentsonline.com/EP0535863B1.html.
[9] Jablon D. Cryptographic methods for remote authentication: US,6226383. 2001-05-01. http://www.freepatentsonline.com/US6226383.html.
[10] Wu Thomas J. System and method for securely logging onto a remotely located computer: US,653 9479. 2003-03-25. http://www.freepatentsonline.com/US6539479.html.

[1]	WU Xuan, JI Weifeng, WENG Jiang, LI Yingqi, SHEN Xiuyu. Certificateless Handover Authentication and Key Agreement Protocol for Network Slicing [J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(4): 103-108.
[2]	PENG Weiping, HAN Ning, SONG Cheng. Certificateless Identity Authentication Scheme for Internet of Vehicles in Edge Computing Environment [J]. Journal of Beijing University of Posts and Telecommunications, 2022, 45(1): 46-51.
[3]	YI Qian, LI Wei, YI Shu-ping, XIE Jun-dong. Trustworthy Identity Authentication Based on Joint Time-Frequency Analysis of Mouse Behavior [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(4): 121-128.
[4]	XUE Jian-bin, BAI Zi-mei. Security and Efficient Authentication Scheme for Mobile Edge Computing [J]. Journal of Beijing University of Posts and Telecommunications, 2021, 44(1): 110-116.
[5]	LI Tao, ZHANG Jing, YANG Hao. Analysis and Improvement of Privacy Protection Scheme in VANET [J]. Journal of Beijing University of Posts and Telecommunications, 2020, 43(1): 104-110.
[6]	WANG Ren-zhong, TAO Dan. Implicit Authentication Mechanism Based on Context Awareness for Smartphone [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(6): 118-125.
[7]	SONG Cheng, GU Xin-an, WANG Lei, LIU Zhi-zhong, YAN Xi-xi. Research on Identity-Based Batch Anonymous Authentication Scheme for Vehicular Network [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(5): 69-74.
[8]	XIAO Jian, LI Wen-jiang, GENG Hong-yang, ZHAI Ying-bo. An Anti-DoS Attack RFID Security Authentication Protocol in the Internet of Vehicles [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2019, 42(2): 114-119.
[9]	ZHANG Jun-song, ZHANG Qi-kun, GAN Yong, MENG Ying-hui. A New Authentication Protocol for Wireless Medical Sensor Network [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(4): 104-109.
[10]	SHI Le-yi, CUI Yu-wen, FU Wen-jing, CHEN Hong-long. A Lightweight Anonymous Authentication and Key Negotiation Scheme for Clustered WSN [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2018, 41(2): 21-26.
[11]	YAO Su, GUAN Jian-feng, PAN Hua, ZHANG Hong-ke. Provably Secure Three-Elements Peer Access Authentication Protocol in Identifier/Locator Separation Network [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2017, 40(s1): 58-62.
[12]	MA Li-cui, LI Mei-hong, WU Qian-qian, DU Ye. Research of Dynamic Key Encryption Algorithm in Smart Grid Communication [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2017, 40(4): 74-79.
[13]	SONG Cheng, ZHANG Ming-yue, PENG Wei-ping, JIA Zong-pu, LIU Zhi-zhong. Privacy Protection Mechanism Based on Secure Multi-party Computation in VANET [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2017, 40(3): 67-71.
[14]	LIU Yan-bing, SONG Xiu-li, XIAO Yong-gang. Authentication Mechanism and Trust Model for Internet of Vehicles Paradigm [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2017, 40(3): 1-18.
[15]	ZHANG Qiu-yu, XING Peng-fei, HUANG Yi-bo, DONG Rui-hong, YANG Zhong-ping. Perceptual Hashing Algorithm for Multi-Format Audio [J]. JOURNAL OF BEIJING UNIVERSITY OF POSTS AND TELECOM, 2016, 39(4): 77-82.

A New Ciphersuite for Remote Desktop Protocol

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments