摘要 |
PROBLEM TO BE SOLVED: To provide an authentication method preventing a short password from being leaked in an environment where a verifier-side internal state is leaked to an attacker or a terminal on a certifier side falls under the control of the attacker. SOLUTION: A certifier terminal generates a random number B, and transmits an identifier I to a verifier device when the identifier I and a password A are input. The verifier device generates a random number D and transmits it to the certifier terminal, and the certifier terminal calculates R=H (D), and Y=G<SP>A</SP>R<SP>B</SP>, and transmits Y to the verifier device. When the identifier I and the password A are input, the certifier terminal transmits the identifier I to the verifier device. The verifier device calculates R=H (D), generates a random number (u) to calculate S=G<SP>u</SP>, T=R<SP>u</SP>and certification informationπ, and transmits S, T,πto the certifier terminal. The certifier terminal verifiesπ, calculates X=S<SP>A</SP>T<SP>B</SP>when passing the verification, generates a random number M, calculates V=h (X, M), and transmits (V, M) to the verifier device. The verifier device confirms V=h (Y<SP>u</SP>, M). COPYRIGHT: (C)2010,JPO&INPIT
|