<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Publishing DTD v1.3 20210610//EN" "JATS-journalpublishing1-3.dtd">
<article article-type="research-article" dtd-version="1.3" xmlns:mml="http://www.w3.org/1998/Math/MathML" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xml:lang="ru"><front><journal-meta><journal-id journal-id-type="publisher-id">mais</journal-id><journal-title-group><journal-title xml:lang="ru">Моделирование и анализ информационных систем</journal-title><trans-title-group xml:lang="en"><trans-title>Modeling and Analysis of Information Systems</trans-title></trans-title-group></journal-title-group><issn pub-type="ppub">1818-1015</issn><issn pub-type="epub">2313-5417</issn><publisher><publisher-name>Yaroslavl State University</publisher-name></publisher></journal-meta><article-meta><article-id pub-id-type="doi">10.18255/1818-1015-2013-4-91-103</article-id><article-id custom-type="elpub" pub-id-type="custom">mais-187</article-id><article-categories><subj-group subj-group-type="heading"><subject>Research Article</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="ru"><subject>Оригинальные статьи</subject></subj-group><subj-group subj-group-type="section-heading" xml:lang="en"><subject>Articles</subject></subj-group></article-categories><title-group><article-title>Новый подход к множественной аутентификации пользователя в современных разнородных информационных системах</article-title><trans-title-group xml:lang="en"><trans-title>A Novel Approach to Many-to-Many User Authentication in Different Information Systems</trans-title></trans-title-group></title-group><contrib-group><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Петров</surname><given-names>Виталий Игоревич</given-names></name><name name-style="western" xml:lang="en"><surname>Petrov</surname><given-names>Vitaly</given-names></name></name-alternatives><bio xml:lang="ru"><p>научный сотрудник,</p><p>PO Box 527, FI-33101, Korkeakoulunkatu 10, Тампере, Финляндия</p></bio><bio xml:lang="en"><p>научный сотрудник,</p><p>PO Box 527, FI-33101, Korkeakoulunkatu 10, Tampere, Finland</p></bio><email xlink:type="simple">vitaly.petrov@tut.fi</email><xref ref-type="aff" rid="aff-1"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Комар</surname><given-names>Мария Сергеевна</given-names></name><name name-style="western" xml:lang="en"><surname>Komar</surname><given-names>Maria</given-names></name></name-alternatives><bio xml:lang="ru"><p>магистрант,</p><p>150000 Россия, Ярославль, ул. Советская, д. 14</p></bio><bio xml:lang="en"><p>магистрант,</p><p>Sovetskaya, 14, Yaroslavl, 150000, Russia</p></bio><email xlink:type="simple">maria.s.komar@uniyar.ac.ru</email><xref ref-type="aff" rid="aff-2"/></contrib><contrib contrib-type="author" corresp="yes"><name-alternatives><name name-style="eastern" xml:lang="ru"><surname>Кучерявый</surname><given-names>Евгений Андреевич</given-names></name><name name-style="western" xml:lang="en"><surname>Koucheryavy</surname><given-names>Yevgeny</given-names></name></name-alternatives><bio xml:lang="ru"><p>профессор,</p><p>PO Box 527, FI-33101, Korkeakoulunkatu 10, Тампере, Финляндия</p></bio><bio xml:lang="en"><p>профессор,</p><p>PO Box 527, FI-33101, Korkeakoulunkatu 10, Tampere, Finland</p></bio><email xlink:type="simple">yk@cs.tut.fi</email><xref ref-type="aff" rid="aff-1"/></contrib></contrib-group><aff-alternatives id="aff-1"><aff xml:lang="ru"><institution>Технологический университет г. Тампере</institution><country>Финляндия</country></aff><aff xml:lang="en"><institution>Tampere University of Technology</institution><country>Finland</country></aff></aff-alternatives><aff-alternatives id="aff-2"><aff xml:lang="ru"><institution>Ярославский государственный университет им. П.Г. Демидова</institution><country>Россия</country></aff><aff xml:lang="en"><institution>P.G. Demidov Yaroslavl State University</institution><country>Russian Federation</country></aff></aff-alternatives><pub-date pub-type="collection"><year>2013</year></pub-date><pub-date pub-type="epub"><day>20</day><month>08</month><year>2013</year></pub-date><volume>20</volume><issue>4</issue><fpage>91</fpage><lpage>103</lpage><permissions><copyright-statement>Copyright &amp;#x00A9; Петров В.И., Комар М.С., Кучерявый Е.А., 2013</copyright-statement><copyright-year>2013</copyright-year><copyright-holder xml:lang="ru">Петров В.И., Комар М.С., Кучерявый Е.А.</copyright-holder><copyright-holder xml:lang="en">Petrov V., Komar M., Koucheryavy Y.</copyright-holder><license xml:lang="ru" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>Данная работа распространяется под лицензией Creative Commons Attribution 4.0.</license-p></license><license xml:lang="en" license-type="creative-commons-attribution" xlink:href="https://creativecommons.org/licenses/by/4.0/" xlink:type="simple"><license-p>This work is licensed under a Creative Commons Attribution 4.0 License.</license-p></license></permissions><self-uri xlink:href="https://www.mais-journal.ru/jour/article/view/187">https://www.mais-journal.ru/jour/article/view/187</self-uri><abstract><p>Предлагается новый подход к множественной аутентификации пользователя в разнородных информационных системах. Описанное решение основано на применении беспроводных ключей — специальных устройств, которые идентифицируют пользователя посредством передачи запрашиваемой ключевой информации с использованием беспроводной связи. Ключевым свойством предложенного подхода является неинтерактивность: вместо двухсторонней аутентификации ключа и информационной системы для защиты данных, хранящихся на ключе, предлагается использование специального алгоритма шифрования. Разработанный алгоритм построен на комбинации стойких криптографических примитивов, что исключает возможность неавторизованным участникам системы читать данные других пользователей, даже при наличии физического доступа к памяти ключа. Указанный подход не требует вычислительной мощности или питания на стороне ключа и не вовлекает пользователя в процесс аутентификации, что позволяет использовать в качестве ключа USB носитель или пассивную NFC метку. Для доказательства корректности работы системы было разработано программное обеспечение, реализующее описанную систему аутентификации для технологий USB и NFC. Также было проведено качественное сравнение полученного решения с существующими аналогами.</p></abstract><trans-abstract xml:lang="en"><p>In this paper, we propose a novel approach to many-to-many user authentication in heterogeneous information systems. The described solution is based on the use of wireless keys – special devices that identify the user by transmitting the requested key information over a wireless network. The key feature of the proposed approach is noninteractive operating mode that allows to use a special encryption algorithm instead of two-way authentication. The algorithm is built on the basis of existing cryptographic primitives that prevents unauthorized system participants from getting access to the data of other users, even with physical access to the memory of the key. This approach does not require computational power or the battery on the key side and does not involve the user in the authentication process that allows implementing a method on passive NFC tags. To proof the concept, software implementation of the described system was developed and a qualitative comparison of the resulting solutions with existing analogues was conducted.</p></trans-abstract><kwd-group xml:lang="ru"><kwd>множественная аутентификация</kwd><kwd>беспроводные сети</kwd><kwd>безопасность информационных систем</kwd></kwd-group><kwd-group xml:lang="en"><kwd>authentication</kwd><kwd>wireless networking</kwd><kwd>information systems security</kwd></kwd-group></article-meta></front><back><ref-list><title>References</title><ref id="cit1"><label>1</label><citation-alternatives><mixed-citation xml:lang="ru">Dan Griffin. Safer Authentication with a One–Time Password Solution // MSDN. 2008. Magazine 5.</mixed-citation><mixed-citation xml:lang="en">Dan Griffin. Safer Authentication with a One–Time Password Solution // MSDN. 2008. Magazine 5.</mixed-citation></citation-alternatives></ref><ref id="cit2"><label>2</label><citation-alternatives><mixed-citation xml:lang="ru">ПИН-код ПЛАС №122. 2007</mixed-citation><mixed-citation xml:lang="en">ПИН-код ПЛАС №122. 2007</mixed-citation></citation-alternatives></ref><ref id="cit3"><label>3</label><citation-alternatives><mixed-citation xml:lang="ru">Цифровой сертификат //URL: www.authority.ru/scdp/page?als=504349</mixed-citation><mixed-citation xml:lang="en">Цифровой сертификат //URL: www.authority.ru/scdp/page?als=504349</mixed-citation></citation-alternatives></ref><ref id="cit4"><label>4</label><citation-alternatives><mixed-citation xml:lang="ru">Криптографический токен //URL: www.rsa.com/rsalabs/node.asp?id=2133</mixed-citation><mixed-citation xml:lang="en">Криптографический токен //URL: www.rsa.com/rsalabs/node.asp?id=2133</mixed-citation></citation-alternatives></ref><ref id="cit5"><label>5</label><citation-alternatives><mixed-citation xml:lang="ru">Biometrics research Group – What is biometrics? //URL: http://biometrics.cse.msu.edu/info/index.html</mixed-citation><mixed-citation xml:lang="en">Biometrics research Group – What is biometrics? //URL: http://biometrics.cse.msu.edu/info/index.html</mixed-citation></citation-alternatives></ref><ref id="cit6"><label>6</label><citation-alternatives><mixed-citation xml:lang="ru">Biddle R., Chiasson S., van Oorschot P.C. Graphical Passwords: Learning from Fisrt Generation, Technical Report TR-09-09 / School of Computer Science, Carleton University, Ottawa, Canada, 2009.</mixed-citation><mixed-citation xml:lang="en">Biddle R., Chiasson S., van Oorschot P.C. Graphical Passwords: Learning from Fisrt Generation, Technical Report TR-09-09 / School of Computer Science, Carleton University, Ottawa, Canada, 2009.</mixed-citation></citation-alternatives></ref><ref id="cit7"><label>7</label><citation-alternatives><mixed-citation xml:lang="ru">Беспроводной ключ от ПК //URL: http://www.rohos.ru/2011/05/security-performanceswith-wireless-pc-lock/</mixed-citation><mixed-citation xml:lang="en">Беспроводной ключ от ПК //URL: http://www.rohos.ru/2011/05/security-performanceswith-wireless-pc-lock/</mixed-citation></citation-alternatives></ref><ref id="cit8"><label>8</label><citation-alternatives><mixed-citation xml:lang="ru">Комар М. Защищенное хранилище документов: выпускная квалификационная работа бакалавра. Ярославль, 2013. (Komar M. Zashchishchennoe khranilishche dokumentov: vypusknaya kvalifikatsionnaya rabota bakalavra. Yaroslavl, 2013 [in Russian]).</mixed-citation><mixed-citation xml:lang="en">Комар М. Защищенное хранилище документов: выпускная квалификационная работа бакалавра. Ярославль, 2013. (Komar M. Zashchishchennoe khranilishche dokumentov: vypusknaya kvalifikatsionnaya rabota bakalavra. Yaroslavl, 2013 [in Russian]).</mixed-citation></citation-alternatives></ref><ref id="cit9"><label>9</label><citation-alternatives><mixed-citation xml:lang="ru">Petrov Vitaly, Komar Maria, Koucheryavy Yevgeni. A Lightweight Many-to-Many Authentication Protocol for Near Field Communications // 21st IEEE International Conference on Network Protocols, Goettingen, Germany.</mixed-citation><mixed-citation xml:lang="en">Petrov Vitaly, Komar Maria, Koucheryavy Yevgeni. A Lightweight Many-to-Many Authentication Protocol for Near Field Communications // 21st IEEE International Conference on Network Protocols, Goettingen, Germany.</mixed-citation></citation-alternatives></ref><ref id="cit10"><label>10</label><citation-alternatives><mixed-citation xml:lang="ru">Google Inc. – Google Wallet //URL: www.google.com/wallet/ 26.05.2011</mixed-citation><mixed-citation xml:lang="en">Google Inc. – Google Wallet //URL: www.google.com/wallet/ 26.05.2011</mixed-citation></citation-alternatives></ref><ref id="cit11"><label>11</label><citation-alternatives><mixed-citation xml:lang="ru">Apple iWallet //URL: www.patentlyapple.com/patently-apple/tech-nfc/ 11.06.2013</mixed-citation><mixed-citation xml:lang="en">Apple iWallet //URL: www.patentlyapple.com/patently-apple/tech-nfc/ 11.06.2013</mixed-citation></citation-alternatives></ref><ref id="cit12"><label>12</label><citation-alternatives><mixed-citation xml:lang="ru">codeREADr project //URL: www.codereadr.com/, 2009-2013</mixed-citation><mixed-citation xml:lang="en">codeREADr project //URL: www.codereadr.com/, 2009-2013</mixed-citation></citation-alternatives></ref><ref id="cit13"><label>13</label><citation-alternatives><mixed-citation xml:lang="ru">Универсальная электронная карта //URL: http://www.uecard.ru/, 2010 – 2013</mixed-citation><mixed-citation xml:lang="en">Универсальная электронная карта //URL: http://www.uecard.ru/, 2010 – 2013</mixed-citation></citation-alternatives></ref><ref id="cit14"><label>14</label><citation-alternatives><mixed-citation xml:lang="ru">VeriChip //URL: www.positiveidcorp.com/. 2013</mixed-citation><mixed-citation xml:lang="en">VeriChip //URL: www.positiveidcorp.com/. 2013</mixed-citation></citation-alternatives></ref><ref id="cit15"><label>15</label><citation-alternatives><mixed-citation xml:lang="ru">Single point of failure //URL: www.techopedia.com/definition/4351/single-point-of-failurespof</mixed-citation><mixed-citation xml:lang="en">Single point of failure //URL: www.techopedia.com/definition/4351/single-point-of-failurespof</mixed-citation></citation-alternatives></ref><ref id="cit16"><label>16</label><citation-alternatives><mixed-citation xml:lang="ru">Kerberos: The Network Authentication Protocol //URL: http://web.mit.edu/kerberos/</mixed-citation><mixed-citation xml:lang="en">Kerberos: The Network Authentication Protocol //URL: http://web.mit.edu/kerberos/</mixed-citation></citation-alternatives></ref><ref id="cit17"><label>17</label><citation-alternatives><mixed-citation xml:lang="ru">ГОСТ Р ИСО/МЭК 17799-2005 (GOST R ISO/MEK 17799-2005 [in Russian]).</mixed-citation><mixed-citation xml:lang="en">ГОСТ Р ИСО/МЭК 17799-2005 (GOST R ISO/MEK 17799-2005 [in Russian]).</mixed-citation></citation-alternatives></ref><ref id="cit18"><label>18</label><citation-alternatives><mixed-citation xml:lang="ru">Терехов А.Н.,Тискин А.В. Криптография с открытым ключом: от теории к стандарту // Программирование. 1994. №5 (сентябрь-октябрь). С. 17–22. (Terekhov A.N.,Tiskin A.V. Kriptografiya s otkrytym klyuchom: ot teorii k standartu // Programmirovanie. 1994. No 5. S. 17–22 [in Russian]).</mixed-citation><mixed-citation xml:lang="en">Терехов А.Н.,Тискин А.В. Криптография с открытым ключом: от теории к стандарту // Программирование. 1994. №5 (сентябрь-октябрь). С. 17–22. (Terekhov A.N.,Tiskin A.V. Kriptografiya s otkrytym klyuchom: ot teorii k standartu // Programmirovanie. 1994. No 5. S. 17–22 [in Russian]).</mixed-citation></citation-alternatives></ref><ref id="cit19"><label>19</label><citation-alternatives><mixed-citation xml:lang="ru">Advanced Encryption Standard //URL: csrc.nist.gov/publications/fips/fips197/fips-197.pdf</mixed-citation><mixed-citation xml:lang="en">Advanced Encryption Standard //URL: csrc.nist.gov/publications/fips/fips197/fips-197.pdf</mixed-citation></citation-alternatives></ref><ref id="cit20"><label>20</label><citation-alternatives><mixed-citation xml:lang="ru">Xuejia Lai and James Massey. A Proposal for a New Block Encryption Standard // EUROCRYPT. 1990.</mixed-citation><mixed-citation xml:lang="en">Xuejia Lai and James Massey. A Proposal for a New Block Encryption Standard // EUROCRYPT. 1990.</mixed-citation></citation-alternatives></ref><ref id="cit21"><label>21</label><citation-alternatives><mixed-citation xml:lang="ru">WiFi Alliance //URL: http://www.wi-fi.org/</mixed-citation><mixed-citation xml:lang="en">WiFi Alliance //URL: http://www.wi-fi.org/</mixed-citation></citation-alternatives></ref><ref id="cit22"><label>22</label><citation-alternatives><mixed-citation xml:lang="ru">Wireless USB Specification //URL: http://www.businesswire.com/news/home/20100929005516/en/Wireless-USB-1.1-Specification</mixed-citation><mixed-citation xml:lang="en">Wireless USB Specification //URL: http://www.businesswire.com/news/home/20100929005516/en/Wireless-USB-1.1-Specification</mixed-citation></citation-alternatives></ref></ref-list><fn-group><fn fn-type="conflict"><p>The authors declare that there are no conflicts of interest present.</p></fn></fn-group></back></article>
