| 摘要 |
A method for protecting authentication data in a remote authentication process is provided to store and update secret data safely without an additional function by storing secret data at a PCR(Platform Configuration Register) in a TPM(Trusted Platform Module) and updating data by using a PCR updating function, and minimize deterioration of performance in time required for authentication by using hash operation in an authentication protocol and achieving authentication with one message transmission. A method for protecting authentication data in a remote authentication process includes the steps of registering an ID and authentication data at a remote computing platform to access, sharing secret data, registering secret data at a PCR of a TPM of a computing platform of a user, updating the PCR by using the authentication data when remote authentication is executed, transmitting the updated PCR values and the ID to the remote computing platform, updating secret data by using authentication data corresponding to the ID when authentication is requested, examining whether the updated secret data coincides with the transmitted PCR values, judging a success of authentication if the updated secret data coincides with the transmitted PCR. If authentication is failed, data stored at the PCR is invalidated and secret data is newly shared.
|
