摘要 |
A robust and secure password (or key) change method between a user and an authentication server in a distributed communication network is disclosed. The protocol requires the exchange of only two messages between the user desiring the key change and the server, the user's request including, at least partly encrypted, an identification of the sending user, old and new keys, and two nonces, at least one including a time indication. The authentication server's response includes a possibly encrypted accept/reject indication and the regularly encrypted request from the user. |
申请人 |
INTERNATIONAL BUSINESS MACHINES CORP., ARMONK, N.Y., US |
发明人 |
HAUSER, RALF, CH-8053 ZURICH, CH;JANSON, PHILIPPE, CH-8820 WAEDENSWIL, CH;MOLVA, REFIK, F-06160 JUAN-LES-PINS, FR;TSUDIK, GENE, CH-8800 THALWIL, CH;VAN HERREWEGHEN, ELSIE, CH-8800 THALWIL, CH |