| Summary: | 碩士 === 國立交通大學 === 資訊及電子工程研究所 === 85 === Many existing inter-domain authentication protocols require
their clients to communicate with every involved key
distribution center (KDC) directly. This is inefficient and
costly when the client side is a wireless mobile unit, for
wireless transmission has relatively lower bandwidth and the
mobile unit!is battery powered. In this thesis, we present an
efficient inter-domain authentication protocol which minimizes
the numbers of authentication messages and providing better
security. Our protocol needsseven messages for inter-domain
initial authentication regardless of the number of KDCs
transited between the visited and home domains; four messages
for subsequent authentication when the mobile user requests a
different service provided by the visited domain; two messages
while requesting the same service again. In this thesis, an
enhanced version of BAN Logic is also proposed to prove the
association of the shared key between the two communication
parties. With the enhanced version of BAN Logic, it is proved
that our protocol can achieve more goals of authentication than
those required by original BAN Logic.
|
|---|
