Mechanism on Computer Access Permission Management Based on the Mobile Clients' Dynamic Password Algorithm

doi:10.3969/j.issn.1671-1122.2014.11.008

Abstract

Abstract:

With the rapid development of information technology, the Internet area has inundated with information security problems. With the maturity of hacker technology, the invasion of a personal computer has become an easy task, so personal computer privacy and permission management have become more seriously in our daily life. Traditional methods that only use login password would threat to computer security and privacy when owner’s friends or colleagues use his computer. Based on the RSA encryption mode, we design a dynamic password encryption algorithm and propose a mechanism on computer access permission management mechanism. Firstly, the mechanism could increase the difficulty of password cracking and improve the security of encryption with the use of dynamic password created by both PC and mobile terminal. We combine plaintext coding with RSA encryption algorithm for dynamic password in order to avoid some problems of dynamic password generated by time seed algorithm. In addition, we added control information into the dynamic password, and loaded the filter driver of file in the kernel after the screen was successfully unlocked, therefore, owner’s private directory would be safer and the system protection grade of sensitive documents would be higher. The mechanism we implemented is aimed to solve as mall and awkward problem in our daily life. Experimental results show that mechanism on computer access permission management based on the dynamic password can solve the problem of personal privacy and access permission management effectively, thus it has a good prospect of application.

Key words: privacy protection, mobile clients' dynamic password, RSA, access permission management

CLC Number:

TP309

ZHANG Qing-yang, YANG Yang, CHENG Jiu-jun, LIAO Jing-xue. Mechanism on Computer Access Permission Management Based on the Mobile Clients' Dynamic Password Algorithm[J]. Netinfo Security, 2014, 14(11): 46-51.

Figures/Tables 6

References 11

[1]	HARN L.A public-key based dynamic password scheme[C]//Proc. Symp. Applied Computing.USA,1991: 430-435.
[2]	CHEN C Y, GUN C Y, LIN H F.A fair and dynamic password authentication system[C]//AIMSEC, 2011 2nd International Conference on. Deng Leng, 2011: 4505-4509.
[3]	LIAO I E, LEE C C, HWANG M S.A password authentication scheme over insecure networks[J]. Journal of Computer and System Sciences, 2006, 72(4): 727-740.
[4]	DIFFIE W, HELLMAN M E.New directions in cryptography[J]. Information Theory, IEEE Transactions, 1976, 22(6): 644-654.
[5]	HAN D, ZHANG Q, LI J.The Dynamic key and implementation of Rijndael algorithm[C]//2011 International Conference on Multimedia Technology. 2011:5610-5613.
[6]	CHANG C C, TSU S M, CHEN C Y.Remote scheme for password authentication based on theory of quadratic residues[J]. Computer Communications, 1995,18(12): 936-942.
[7]	DAS A K, SHARMA P, CHATTERJEE S, et al.A dynamic password-based user authentication scheme for hierarchical wireless sensor networks[J]. Journal of Network and Computer Applications, 2012, 35(5): 1646-1656.
[8]	TURKANOVIC M, HOLBL M.An Improved Dynamic Password-based User Authentication Scheme for Hierarchical Wireless Sensor Networks[J]. Elektronika ir Elektrotechnika, 2013, 19(6): 109-116.
[9]	WANG Y, LIU J, XIAO F, et al.A more efficient and secure dynamic ID-based remote user authentication scheme[J]. Computer communications, 2009, 32(4): 583-585.
[10]	刘智伟,孙其博. 基于权限管理的Android应用行为检测[J]. 信息网络安全,2014,(6):72-77.
[11]	谢新勤. 基于访问控制列表的权限管理模型研究[J]. 信息网络安全,2011,(5):54-57.

[1]	XU Zirong, GUO Yanping, YAN Qiao. Malicious Software Adversarial Defense Model Based on Feature Severity Ranking [J]. Netinfo Security, 2024, 24(4): 640-649.
[2]	QI Han, WANG Jingtong, ABDULLAH Gani, GONG Changqing. Robustness of Variational Quantum Convolutional Neural Networks Based on Random Quantum Layers [J]. Netinfo Security, 2024, 24(3): 363-373.
[3]	JIANG Kui, LU Lufan, SU Yaoyang, NIE Wei. SHDoS Attack Detection Research Based on Attention-GRU [J]. Netinfo Security, 2024, 24(3): 427-437.
[4]	FU Yanming, LU Shenglin, CHEN Jiayuan, QIN Hua. Dynamic Task Allocation for Crowd Sensing Based on Deep Reinforcement Learning and Privacy Protection [J]. Netinfo Security, 2024, 24(3): 449-461.
[5]	FENG Guangsheng, JIANG Shunpeng, HU Xianlang, MA Mingyu. New Research Progress on Intrusion Detection Techniques for the Internet of Things [J]. Netinfo Security, 2024, 24(2): 167-178.
[6]	SONG Yuhan, ZHU Yuefei, WEI Fushan. An Anomaly Detection Scheme for Blockchain Transactions Based on AdaBoost Model [J]. Netinfo Security, 2024, 24(1): 24-35.
[7]	XU Ke, LI Jiayi, JIANG Xinghao, SUN Tanfeng. A Video Gait Privacy Protection Algorithm Based on Sparse Adversarial Attack on Silhouette [J]. Netinfo Security, 2024, 24(1): 48-59.
[8]	SHEN Hua, TIAN Chen, GUO Sensen, MU Zhiying. Research on Adversarial Machine Learning-Based Network Intrusion Detection Method [J]. Netinfo Security, 2023, 23(8): 66-75.
[9]	ZHANG Xinglan, ZHANG Feng. Quantum Solving Euler’s Totient Function to Crack RSA [J]. Netinfo Security, 2023, 23(7): 1-8.
[10]	YU Huifang, QIAO Yifan, MENG Ru. Attribute-Based Anti-Quantum Threshold Ring Signcryption Scheme for Blockchain-Based Finance [J]. Netinfo Security, 2023, 23(7): 44-52.
[11]	LI Chenwei, ZHANG Hengwei, GAO Wei, YANG Bo. Transferable Image Adversarial Attack Method with AdaN Adaptive Gradient Optimizer [J]. Netinfo Security, 2023, 23(7): 64-73.
[12]	TANG Yu, ZHANG Chi. A Privacy Protection Scheme for Information-Centric Networking Based on Intel SGX [J]. Netinfo Security, 2023, 23(6): 55-65.
[13]	JIANG Zenghui, ZENG Weijun, CHEN Pu, WU Shitao. Review of Adversarial Samples for Modulation Recognition [J]. Netinfo Security, 2023, 23(6): 74-90.
[14]	DU Weidong, LI Min, HAN Yiliang, WANG Xu’an. An Efficient Versatile Homomorphic Encryption Framework Based on Ciphertext Conversion Technique [J]. Netinfo Security, 2023, 23(4): 51-60.
[15]	YIN Shu, CHEN Xingshu, ZHU Yi, ZENG Xuemei. Anonymous Domain Name Algorithm Based on Character Space Construction [J]. Netinfo Security, 2023, 23(4): 80-89.