An Enhanced Kerberos Protocol Based on OTP with Formal Analysis

doi:10.3969/j.issn.1671-1122.2019.10.008

Abstract

Abstract:

Kerberos protocol is an important trusted third-party authentication protocol in distributed networks. It is widely used in mainstream operating systems, cloud computing, wireless networks and other application scenarios, but it is vulnerable to password guessing attacks, replay attacks and so on. Although PKINIT protocol based on public key cryptography can enhance the resistance of Kerberos protocol to these attacks, it needs to introduce too much computing resources and communication costs. Therefore, this paper proposes and implements a scheme based on one-time password mechanism to enhance the security of Kerberos protocol, and makes formal analysis based on BAN logic. The experimental results show that compared with the PKINIT protocol, the scheme reduces the computational complexity, reduces the initial authentication service time to 67.7% of the PKINIT protocol, and has the advantage of easy deployment.

Key words: Kerberos, PKINIT, OTP, password guessing attack, BAN logic

CLC Number:

TP309

Limin MA, Wei ZHANG, Ying SONG. An Enhanced Kerberos Protocol Based on OTP with Formal Analysis[J]. Netinfo Security, 2019, 19(10): 57-64.

Figures/Tables 4

References 13

[1]	RFC 4120. The Kerberos Network Authentication Service(V5)FC 4120. The Kerberos Network Authentication Service(V5)[S]. USA: IETF, 2005.
[2]	RFC 6113. A Generalized Framework for Kerberos Pre-AuthenticationFC 6113. A Generalized Framework for Kerberos Pre-Authentication[S]. USA: IETF, 2011
[3]	HOJABRI M, RAO K V.Innovation in Cloud Computing: Implementation of Kerberos Version5 in Cloud Computing in Order to Enhance the Security Issues[C]//IEEE. 2013 International Conference on Information Communication & Embedded Systems, February 21-22, 2013, Chennai, India. NJ: IEEE, 2013: 452-456.
[4]	SHAO Yeqin, CHEN Jianping, GU Xiang.Improved Kerberos Single Sign-on Protocol[J]. Computer Engineering, 2011, 37(24): 109-111.
	邵叶秦,陈建平,顾翔. 改进的Kerberos单点登录协议[J]. 计算机工程, 2011,37(24):109-111.
[5]	ZHUANG Xiaomei, TANG Xilin.Enhanced Security Scheme of Kerberos Protocol Based on Hybrid Cryptosystem[J]. Computer systems & applications, 2015, 24(5): 257-260.
	庄小妹,唐西林. 基于混合机制的 Kerberos 安全性增强方案[J]. 计算机系统应用,2015,24(5):257-260.
[6]	YANG Ping, NING Hongyun.Security Analysis and Strategy Research of Kerberos Protocol[J]. Computer Engineering, 2015, 41(5): 144-148.
	杨萍,宁红云. Kerberos 协议的安全分析及对策研究[J]. 计算机工程,2015,41(5):144-148.
[7]	REN Xiaolie.Application and Improvement Research of Kerberos in Wireless Network[J]. Journal of Chengdu University of Information Technology, 2011, 26(2): 137-143.
[8]	RFC 4556. Public Key Cryptography for Initial Authentication in Kerberos(PKINIT)[S]. USA: IETF, 2006.
[9]	ZHANG Xiao.Improvement of Kerberos Protocol Based on PKI[J]. Information Technology, 2011, 10:211-213.
	张晓,基于PKI的Kerberos协议的改进[J]. 信息技术,2011,10:211-213.
[10]	ZHANG Lihua, YANG Xiuqing.Scheme of Enhanced Security for Kerberos Protocol[J]. Computer Engineering and Design, 2009, 30(9): 2124-2126.
	张利华,杨秀青. Kerberos协议的安全性增强方案[J]. 计算机工程与设计,2009,30(9):2124-2126.
[11]	AL-JANABI S T F, RASHEED M A S. Public-key Cryptography Enabled Kerberos Authentication[C]//IEEE. The 2011 Developments in E-Systems Engineering, December 6-8, 2011, Dubai, United Arab Emirates. NJ: IEEE, 2011: 209-214.
[12]	RFC1760. The S/Key One-time Password System(OTP)[S]. USA: IETF, 1995.
[13]	BICAKCI K, BAYKAL N.Improving the Security and Flexibility of One-Time Passwords by Signature Chains[J]. Turk J Elec Engin, 2003, 11(3): 223-236.

符号	含义
C	用户端
AS	认证服务器
TGS	票据授权服务器
Realm	标识用户所属的域
KDC	密钥分配中心
Ticket_tgs	票据授权票据
ID_x	实体x的标识
Times	时间戳
Nonce	某阶段使用的随机数
K_x	用户x的对称密钥
K_x_,_y	用户x和用户y的会话密钥
PU_x	用户x的公钥
PR_x	用户x的私钥
E(K[M])	使用对称密钥K对消息M进行加密
S_PRx(M)	使用用户x的私钥PR_x对消息M进行签名
V_PUx(M)	使用用户x的公钥PU_x对签名进行验证

语句	含义
	A相信X, A认为X为真
	A看到X, A收到包含X的消息
	A曾经说过X, A曾经发送过X
	A对X具有管辖权
#(X)	X是新鲜的,即X在协议当前执行中未被传送过
	K是A和B的对称会话密钥
{X }_K	使用K加密X
	K是A的公钥

协议操作	Kerberos协议	PKINIT 协议	文献[10] 方案	ECC-OTP-Kerberos 协议
对称密钥加密操作	2T_SK	T_SK	T_SK	T_SK
公钥加密操作	0	2T_PU?2T_PR	2T_PU?2T_PR	T_PU?T_PR

时间协议	初始认证服务耗费时间/ms	相较PKINIT协议百分比
Kerberos协议	8	25.8%
PKINIT协议	31	100%
ECC-OTP-Kerberos协议	21	67.7%