行動電腦之視覺化身分鑑定研究

A Visual-based Authentication Scheme in Wireless Carry-on Mobile Device Systems

在本論文研究中，我們提出導入視覺化身分鑑定流程於行動電腦，並以Law Enforcement資訊系統為範例，實際說明鑑定流程的建置過程，並且在無線通訊傳輸環境下，進行安全性分析。而視覺化多重身份鑑定以視覺密碼學為基礎，將分享圖分別儲存於使用者的儲存設備及組織的資料庫中，當雙方持有之影像進行疊合時，即可解密取得資料，同時，並將分享圖用於結合產生時戳與隨機值，可達到確認合法使用者與存取組織真實性的雙重身分鑑定功能。相較於其他以密碼金鑰為基礎之鑑定方式，視覺化多重身分鑑定可達到減少計算成本、簡化鑑定管理、資料權限分級、及減少因人員疏忽使密碼外洩的情形發生等優點。而實際應用上，我們利用智慧卡做為媒介，並建入視覺密碼系統，做為未來連線存取資源之依據。

In this paper, we propose a visual authentication scheme that can be implemented in the mobile systems with the user identity authentication requests. In order to make clear the contributions we did in this paper, following our proposed scheme, an example with a law enforcement case presented to persuade the implementations feasible in wireless carry-on mobile device systems. In our scheme, basically, the shares are separately stored at two sides of user-end and data base of the system side. As long as the two right shared held at the two sides are stacked, the key-important secret is immediately gained. We also give the time stamp and random seed parameters when stacking the shares to succeed the authentication requests for a legitimate user. Compared to the past researches, the cost reduction, more flexible management, secret hierarchy, and easy access control in members and passwords are further offered in this paper study. Besides, the smart card is a key-bridge to make the system operation available whenever the identity authentication is requested, where pre-information is read from the smart card first, the system is then launched the next steps in our scheme.