技术视角:用预计算攻击密码密钥交换| 2019年1月| ACM通信</gydF4y2Batitle> <link href="//www.eqigeno.com/stylesheets/all.css" rel="stylesheet"> <link href="//www.eqigeno.com/stylesheets/jplayer.pink.flag.css" rel="stylesheet"> <link href="//www.eqigeno.com/stylesheets/sections/videos.css" rel="stylesheet"> <link href="//www.eqigeno.com/stylesheets/tipsy.css" rel="stylesheet"> <link href="//www.eqigeno.com/stylesheets/colorbox.css" rel="stylesheet"> <style> html{overflow: auto !important;} </style> <style> iframe body { overflow: hidden; } iframe { border: none; margin: 0; } .fav_hacker_news { background:url('https://img.icons8.com/color/48/000000/hacker-news.png') no-repeat center #FFF; background-size: 21.5px; } .fav_hacker_news:hover { background:url('https://img.icons8.com/color/48/000000/hacker-news.png') no-repeat center #e6e9ea; background-size: 21.5px; } .fav_bar a.fav_reddit { background-size: 22px; background:url('//www.eqigeno.com/images/icons/reddit.gif') no-repeat center #FFF; } .fav_bar a.fav_reddit:hover { background-color: #e6e9ea; } .fav_bar a.fav_facebook { background-size: 22px; background:url('//www.eqigeno.com/images/icons/facebook.gif') no-repeat center #FFF; } .fav_bar a.fav_facebook:hover { background-color: #e6e9ea; background:url('//www.eqigeno.com/images/icons/facebook.gif') no-repeat center #e6e9ea; } body { margin: 0 } #acmWidget.resourcesWidget .dateNews { margin-left: 10px; } </style> </head> <body id="body-main" itemscope itemtype="http://schema.org/Article"> <div id="domain-info" data-domain="www.eqigeno.com"></div> <div class="JumpLink" id="PageTop"></div> <div id="container"> <div id="layout"> <header class="topHeader"> <a href="//www.eqigeno.com/" title="ACMgydF4y2Ba" id="topLogo">ACM</gydF4y2Baa> <div id="instName"> <img src="//www.eqigeno.com/images/icons/acm_header.png" height="40" width="40" class="logo-mini" alt="acm-headergydF4y2Ba"> </div> <a href="//www.eqigeno.com/login" title="登录gydF4y2Ba" id="topSignIn">登录</gydF4y2Baa> <div id="topForm"> <form action="/search" method="get"> <div class="portaInput"> <label for="searchInput" id="labelSearchInput" class="inField"></label> <input type="text" id="searchInput" class="st-default-search-input" placeholder="Search" name="q" aria-label="Search"> </div> <button name="search submit" type="submit" id="searchSubmit">去</gydF4y2Babutton> </form> </div> <div id="topBar"> <ul> <li><a href="https://www.acm.org/" title="ACM.orggydF4y2Ba">ACM.org</gydF4y2Baa></li> <li><a href="https://campus.acm.org/public/qj/brandingqj/cacm.cfm" target="_blank" title="加入ACMgydF4y2Ba">加入ACM</gydF4y2Baa></li> <li><a href="//www.eqigeno.com/about-communications" title="vwin德赢AC米兰官网网址">vwin德赢AC米兰官网网址</a></li> <li><a href="//www.eqigeno.com/acm-resources" title="vwin德赢网页版">vwin德赢网页版</a></li> <li class="last-child"><a href="//www.eqigeno.com/alerts-and-feeds" title="提醒和订阅gydF4y2Ba">提醒和订阅</gydF4y2Baa></li> <li class="last-child"><a href="https://www.facebook.com/Communications-of-the-ACM-521319564596131/" style="margin: 0;padding: 0;margin-right: 1px;margin-top: -2px;"><img src="//www.eqigeno.com/images/icons/facebook.png" alt="脸谱网gydF4y2Ba" style="height: 18px;width: 18px;"></a><a href="https://twitter.com/cacmmag" style="margin: 0;padding: 0;margin-top: -1px;margin-right: 4px;"><img src="//www.eqigeno.com/images/icons/twitter.png" alt="推特gydF4y2Ba" style="width: 16px;height: 16px;"></a><a href="//www.eqigeno.com/alerts-and-feeds/rss-feeds" style="margin: 0;padding: 0;"><img src="//www.eqigeno.com/images/icons/rss.png" alt="rssgydF4y2Ba" style="width: 14px;height: 14px;"></a></li> </ul> </div> <hgroup> <h1><a href="//www.eqigeno.com/" title="ACM通信gydF4y2Ba">ACM通信</gydF4y2Baa></h1> </hgroup> <nav> <ul> <li class="first-child"><a href="//www.eqigeno.com/" class="menuText itemHome">首页</gydF4y2Baa></li> <li> <div class="portaDropdown"> <a class="withMenu menuText itemCurrent" href="//www.eqigeno.com/magazines/2022/11">vwin德赢AC米兰官网网址</a> <div class="menuLinks currenIssueDropdown"> <a class="menuCover" href="//www.eqigeno.com/magazines/2022/11"><img src="//www.eqigeno.com/system/assets/0004/4075/Nov-2022-Cover-1000x1338.large.jpg?1665866059&1665866058" width="145" height="192" alt="最新一期gydF4y2Ba"></a> <span class="dropDownIssueTitle">vwin德赢AC米兰官网网址当前版本:2022年11月</gydF4y2Baspan> <a href="//www.eqigeno.com/magazines/2022/11/265830-theory-research-in-india-20192022">印度理论研究:2019-2022</gydF4y2Baa> <a href="//www.eqigeno.com/magazines/2022/11/265818-rethinking-silicon-valley">对硅谷的反思</gydF4y2Baa> <a href="//www.eqigeno.com/magazines/2022/11/265840-reliability-at-multiple-stages-in-a-data-analysis-pipeline">数据分析管道中多个阶段的可靠性</gydF4y2Baa> <a class="lastLink" href="//www.eqigeno.com/magazines/2022/11">查看目录</gydF4y2Baa> </div> </div></li> <li> <div class="portaDropdown"> <a href="//www.eqigeno.com/news" class="withMenu menuText itemNews">新闻</gydF4y2Baa> <div class="menuLinks newsDropdown"> <a href="//www.eqigeno.com/news" class="lastLink">最新消息</gydF4y2Baa> <a href="//www.eqigeno.com/news/archive" class="lastLink">新闻存档</gydF4y2Baa> </div> </div></li> <li> <div class="portaDropdown"> <a href="//www.eqigeno.com/blogs/about-the-blogs" class="withMenu menuText itemBlogs">博客</gydF4y2Baa> <div class="menuLinks blogsDropdown"> <a href="//www.eqigeno.com/blogs/about-the-blogs">关于博客</gydF4y2Baa> <a href="//www.eqigeno.com/blogs/blog-cacm">BLOG@CACM</gydF4y2Baa> <a href="//www.eqigeno.com/blogs/blogroll">友情链接</gydF4y2Baa> <a href="//www.eqigeno.com/blogs/archive" class="lastLink">博客档案</gydF4y2Baa> </div> </div></li> <li> <div class="portaDropdown"> <a href="//www.eqigeno.com/opinion" class="withMenu menuText itemOpinion">的意见</gydF4y2Baa> <div class="menuLinks opinionDropdown"> <a href="//www.eqigeno.com/opinion/articles">文章</gydF4y2Baa> <a href="//www.eqigeno.com/opinion/interviews">面试</gydF4y2Baa> <a href="//www.eqigeno.com/opinion/archive" class="lastLink">意见归档</gydF4y2Baa> </div> </div></li> <li> <div class="portaDropdown"> <a href="//www.eqigeno.com/research" class="withMenu menuText itemResearch">研究</gydF4y2Baa> <div class="menuLinks researchDropdown"> <a href="//www.eqigeno.com/research">最新的研究</gydF4y2Baa> <a href="//www.eqigeno.com/research/archive" class="lastLink">研究档案</gydF4y2Baa> </div> </div></li> <li> <div class="portaDropdown"> <a href="//www.eqigeno.com/practice" class="withMenu menuText itemPractice">实践</gydF4y2Baa> <div class="menuLinks practiceDropdown"> <a href="//www.eqigeno.com/practice">最新的实践</gydF4y2Baa> <a href="//www.eqigeno.com/practice/archive" class="lastLink">实践存档</gydF4y2Baa> </div> </div></li> <li> <div id="careersNav" class="portaDropdown"> <a href="//www.eqigeno.com/careers" class="withMenu menuText itemOpinion">职业生涯</gydF4y2Baa> <div class="menuLinks opinionDropdown"> <ul> <li><a href="http://jobs.acm.org/jobs/search/results?rows=15&radius=0&view=List_Detail&sort=score+desc" target="_blank">寻找工作</gydF4y2Baa></li> <li><a href="http://jobs.acm.org/jobs/resumes/create" target="_blank">投递简历</gydF4y2Baa></li> <li><a href="http://jobs.acm.org/jobs/products" target="_blank">发布工作</gydF4y2Baa></li> <li><a href="https://www.acm.org/publications/advertising" target="_blank">与我们一起做广告</gydF4y2Baa></li> <li class="lastLink"><a href="mailto:careers@acm.org">联系我们</gydF4y2Baa></li> </ul> </div> </div></li> <li> <div class="portaDropdown"> <a href="//www.eqigeno.com/magazines" class="withMenu menuText itemPrevious on">存档</gydF4y2Baa> <div class="menuLinks previousDropdown"> <span class="previousIssueTitle">该杂志的档案包括在<gydF4y2Bai>ACM通信</gydF4y2Bai>在过去的50年里。</gydF4y2Baspan> <div class="issue"> <a href="//www.eqigeno.com/magazines/2022/11">2022年11月(第65卷第11期)</gydF4y2Baa> </div> <div class="issue"> <a href="//www.eqigeno.com/magazines/2022/10">2022年10月(第65卷第10期)</gydF4y2Baa> </div> <div class="issue"> <a href="//www.eqigeno.com/magazines/2022/9">2022年9月(第65卷第9期)</gydF4y2Baa> </div> <a href="//www.eqigeno.com/magazines" class="lastLink">查看更多问题</gydF4y2Baa> </div> </div></li> <li><a href="//www.eqigeno.com/videos" class="menuText itemVideos">视频</gydF4y2Baa></li> </ul> </nav> </header> <section> <div class="breadcrum"> <a href="//www.eqigeno.com/">首页</gydF4y2Baa> <span>/</gydF4y2Baspan> <a href="//www.eqigeno.com/magazines/decade">杂志存档</gydF4y2Baa> <span>/</gydF4y2Baspan> <a href="//www.eqigeno.com/magazines/2019/1">2019年1月(第62卷第1期)</gydF4y2Baa> <span>/</gydF4y2Baspan> <a href="//www.eqigeno.com/magazines/2019/1/233522-technical-perspective-attacking-cryptographic-key-exchange-with-precomputation">技术视角:攻击密码密钥…</gydF4y2Baa> <span>/</gydF4y2Baspan>摘要</gydF4y2Badiv> <div class="col0 floatLeft firstCol"> <span class="label">研究突出了</gydF4y2Baspan> <h2>技术角度:用预计算攻击密码密钥交换</hgydF4y2Ba2> <h6 class="subheader"></h6> </div> <hr class="dotted"> <div id="articleFullText" class="col1 floatLeft firstCol"> <span class="byline">作者:Dan Boneh<gydF4y2Babr>ACM通信，2019年1月，第62卷第1期，第105页<gydF4y2Babr>10.1145 / 3292033<gydF4y2Babr><a href="#comments">评论</gydF4y2Baa></span> <div class="fav_bar"> <span>认为:</gydF4y2Baspan> <a href="#" onclick="javascript:window.print();" class="fav_print" title="打印gydF4y2Ba">打印</gydF4y2Baa> <a href="//www.eqigeno.com/about-communications/mobile-apps/" class="mobile-apps" title="手机应用程序gydF4y2Ba">手机应用程序</gydF4y2Baa> <a href="https://dl.acm.org/citation.cfm?id=3301004.3292033&coll=portal&dl=ACM" class="fav_acm_digital" target="_blank" title="ACM数字图书馆gydF4y2Ba">ACM数字图书馆</gydF4y2Baa> <a href="https://dl.acm.org/ft_gateway.cfm?id=3292033&ftid=2026325&dwn=1" class="fav_de" target="_blank" title="数码版gydF4y2Ba">数码版</gydF4y2Baa> <span>分享:</gydF4y2Baspan> <a href="javascript:void(0);" class="fav_email" title="通过电子邮件发送gydF4y2Ba" id="sendByEmail">通过电子邮件发送</gydF4y2Baa> <a href="javascript:void(0);" class="fav_reddit" onclick="addthis_sendto('reddit');" title="在reddit上分享gydF4y2Ba">在reddit上分享</gydF4y2Baa> <a href="javascript:void(0);" class="fav_su" onclick="addthis_sendto('stumbleupon');" title="在StumbleUpon上分享gydF4y2Ba">在StumbleUpon上分享</gydF4y2Baa> <a href="https://news.ycombinator.com/" class="fav_hacker_news" title="在黑客新闻上分享gydF4y2Ba">在黑客新闻上分享</gydF4y2Baa> <a href="javascript:void(0);" class="fav_twitter" onclick="addthis_sendto('twitter');" title="在推特上分享gydF4y2Ba">在推特上分享</gydF4y2Baa> <a href="javascript:void(0);" class="fav_facebook" onclick="addthis_sendto('facebook');" title="在Facebook上分享gydF4y2Ba">在Facebook上分享</gydF4y2Baa> <div class="addthis_toolbox "> <a href="https://www.addthis.com/bookmark.php?v=250&pubid=xa-4dcbeff2515fc93c" class="addthis_button_compact fav_more no_border">分享</gydF4y2Baa> </div> </div> <div class="clearer"></div> <a name="body-1"></a> <p>Diffie-Hellman密钥交换协议是Internet上广泛使用的许多加密协议的核心。它用于在HTTPS (TLS)、SSH、IPsec和其他协议中建立会话。正如迪菲和海尔曼所描述的，最初的协议通过选择一个大素数来运行<gydF4y2Bai>p</gydF4y2Bai>然后对这个质数取模计算一定的指数。为了保证协议的安全性，至少需要对质数取模的离散对数问题<gydF4y2Bai>p</gydF4y2Bai>很难解决。这个问题很容易表述:固定一个大质数<gydF4y2Bai>p</gydF4y2Bai>，整数0 <<gydF4y2Bai>g</gydF4y2Bai><<gydF4y2Bai>p</gydF4y2Bai>(发电机)。接下来，选择一个整数0 <<gydF4y2Bai>x</gydF4y2Bai><<gydF4y2Bai>p</gydF4y2Bai>和计算<gydF4y2Bai>h</gydF4y2Bai>＝<gydF4y2Bai>g<gydF4y2Basup>x</gydF4y2Basup></i>模<gydF4y2Bai>p。</gydF4y2Bai>离散对数问题是要计算的<gydF4y2Bai>x</gydF4y2Bai>由于只有<gydF4y2Bai>p g</gydF4y2Bai>而且<gydF4y2Bai>h。</gydF4y2Bai>如果这个问题能有效解决，对大多数人来说<gydF4y2Bai>h</gydF4y2Bai>，则选择的(<gydF4y2Bai>p g</gydF4y2Bai>)会缺乏安全感。</pgydF4y2Ba> <p>以下论文的作者表明，在实践中，使用Diffie-Hellman的实现倾向于选择一个普遍固定的素数<gydF4y2Bai>p</gydF4y2Bai>(和固定<gydF4y2Bai>g</gydF4y2Bai>)．例如，许多SSH服务器和IPsec vpn使用固定的通用1024位素数<gydF4y2Bai>p。</gydF4y2Bai>HTTPS Web服务器也是如此，尽管程度较小。</pgydF4y2Ba> <div class="clearer"></div> <hr class="thick"> <a name="comments"></a> <div id="ArticleComments"> <span id="CommentHeader"></span> </div> <p class="view-all">没有找到条目</pgydF4y2Ba> <h2>登录阅读全文</hgydF4y2Ba2> <div class="col2 floatLeft widgetCols"> <h3>登录</hgydF4y2Ba3> <span class="instructional">如果您是ACM会员、通讯订阅用户或数字图书馆订阅用户，则使用ACM Web帐户用户名和密码登录以访问优质内容。</gydF4y2Baspan> <form action="//www.eqigeno.com/login" class="session_login_form" id="session_login_form" method="post"> <label class="withError" style="margin:0px"></label> <label for="userNameInPage" class="userNameInPageLabel">用户名</gydF4y2Balabel> <input id="userNameInPage" name="current_member[user]" type="text"> <label for="passwordInPage" class="passwordInPageLabel">密码</gydF4y2Balabel> <input id="passwordInPage" name="current_member[passwd]" type="password" value=""> <span class="instructional signUpInPage"><a href="//www.eqigeno.com/accounts/forgot-password">忘记了密码?</gydF4y2Baa></span> <button class="normalButton">登录</gydF4y2Babutton> </form> </div> <div class="col2 floatLeft widgetCols lastCol special1"> <h3>需要访问吗?</hgydF4y2Ba3> <span class="instructional">请选择下面的一个选项以访问高级内容和功能。</gydF4y2Baspan> <br> <h3>创建一个网上帐户</hgydF4y2Ba3> <span class="instructional">如果你已经是ACM会员，<gydF4y2Bacite>通信</gydF4y2Bacite>订阅者或数码图书馆订阅者，请设置网页帐户，以浏览本网站的优质内容。</gydF4y2Baspan> <form action="/accounts/new" method="GET"> <button class="normalButton">创建一个网上帐户</gydF4y2Babutton> </form> <hr class="solid"> <h3>加入ACM</hgydF4y2Ba3> <span class="instructional">成为ACM的会员，可以充分利用ACM卓越的计算信息资源、网络机会等优势。</gydF4y2Baspan> <form action="https://campus.acm.org/public/quickjoin/interim.cfm" method="GET"> <button class="normalButton">成为会员</gydF4y2Babutton> </form> <hr class="solid"> <h3>订阅ACM杂志通讯</hgydF4y2Ba3> <span class="instructional">获得50多年的中华中医药学会内容的完整访问权限，并每月获得杂志印刷版。</gydF4y2Baspan> <form action="https://campus.acm.org/public/qj/brandingqj/cacm.cfm" method="GET"> <button class="normalButton">订阅</gydF4y2Babutton> </form> <hr class="solid"> <h3>购买物品</hgydF4y2Ba3> <span class="instructional">非会员可以购买这篇文章或刊登这篇文章的杂志。</gydF4y2Baspan> <form action="https://dl.acm.org/purchase.cfm" method="GET"> <input type="hidden" name="id" value="3292033gydF4y2Ba"> <button class="normalButton">购买本文</gydF4y2Babutton> </form> </div> </div> <div class="col3 floatLeft lastCol"> <div class="signInWidget widget"> <span class="signInTitle">登录<gydF4y2Baspan class="noTransform">全面访问</gydF4y2Baspan></span> <form action="//www.eqigeno.com/login" method="post"> <div class="portaInputSignIn"> <label for="inputUser" class="inField">用户名</gydF4y2Balabel> <input name="current_member[user]" type="text" id="inputUser"> </div> <div class="portaInputSignIn"> <label for="inputPassword" class="inField">密码</gydF4y2Balabel> <input type="password" name="current_member[passwd]" id="inputPassword"> </div> <a href="//www.eqigeno.com/accounts/forgot-password" class="subText">忘记密码?</gydF4y2Baa> <a href="//www.eqigeno.com/accounts/new" class="subText"><strong>»创建ACM Web帐号</gydF4y2Bastrong></a> <button type="submit" class="submitSignIn">登录</gydF4y2Babutton> </form> </div> <div id="SideColumn"> <div id="related-news-opinion-widget" class="blueWidget widget noBottom" data-swiftype-index="false"> <span class="widgetName">更多新闻和观点</gydF4y2Baspan> <div class="singleNews firstNews"> <h5><a href="//www.eqigeno.com/news/261023-drones-ml-help-reveal-the-scale-of-plastic-pollution">无人机，ML有助于揭示塑料污染的规模</gydF4y2Baa></h5> <span class="dateNews">筑波大学(日本)</gydF4y2Baspan> </div> <div class="singleNews"> <h5><a href="//www.eqigeno.com/magazines/2022/9/263806-let-us-not-put-all-our-eggs-in-one-basket">不要把所有的鸡蛋放在一个篮子里</gydF4y2Baa></h5> <span class="dateNews">佛罗伦萨Maraninchi</gydF4y2Baspan> </div> <div class="singleNews"> <h5><a href="//www.eqigeno.com/blogs/blog-cacm/261060-5-often-overlooked-coding-mistakes-new-web-developers-need-to-avoid">新Web开发人员需要避免的5个经常被忽视的编码错误</gydF4y2Baa></h5> <span class="dateNews">雷Blakney</gydF4y2Baspan> </div> </div> </div> </div> <a class=" hidden video-link" href="//www.eqigeno.com/magazines/2019/1/233522-technical-perspective-attacking-cryptographic-key-exchange-with-precomputation"></a> </section> <button class="to-top"></button> <footer> <nav> <ul> <li class="first-child"><a href="//www.eqigeno.com/about-communications/author-center" title="对于作者gydF4y2Ba">对于作者</gydF4y2Baa></li> <li><a href="https://www.acm.org/publications/advertising" title="为广告客户gydF4y2Ba" target="_blank">为广告客户<gydF4y2Baimg src="//www.eqigeno.com/images/icons/new_page.png" alt="为广告客户gydF4y2Ba"></a></li> <li><a href="//www.eqigeno.com/privacy" title="隐私政策gydF4y2Ba">隐私政策</gydF4y2Baa></li> <li><a href="//www.eqigeno.com/help" title="帮助gydF4y2Ba">帮助</gydF4y2Baa></li> <li><a href="//www.eqigeno.com/about-communications/contact-us" title="联系我们gydF4y2Ba">联系我们</gydF4y2Baa></li> <li><a class="toggle-mobile" href="https://m-www.eqigeno.com/magazines/2019/1/233522-technical-perspective-attacking-cryptographic-key-exchange-with-precomputation/abstract?mobile=true" data-domain="www.eqigeno.com">手机网站</gydF4y2Baa></li> </ul> </nav> <span id="footerText">vwin德赢ac米兰合作</span> </footer> </div> </div>  <div style="text-align:center;margin-bottom:5px;"><form action="http://www.baidu.com/baidu" target="_blank"><div bgcolor="#FFFFFF" style="text-align:center;"><input name="tn" type="hidden" value="baidu"><a href="http://www.baidu.com/"><img src="http://img.baidu.com/img/logo-80px.gif" width="80px" height="29px" alt="Baidu" align="bottom" border="0"></a><input type="text" name="word" size="30" placeholder="" value=""><input type="submit" value="baidusousou"></div></form></div><div id="so360" style="text-align:center;margin-bottom:5px;"><form action="https://www.so.com/" target="_blank" id="so360form"><img src="http://p1.qhimg.com/d/_onebox/search.png" width="100px" height="25px"> <input type="text" autocomplete="off" name="q" id="so360_keyword" placeholder="" value=""> <input type="submit" id="so360_submit" value="360sousou"> <input type="hidden" name="ie" value="gbk"><input type="hidden" name="src" value="zz"> <input type="hidden" name="site" value="so.com"> <input type="hidden" name="rg" value="1"></form></div><div id="sogou" style="text-align:center;margin-bottom:5px;"><form action="https://www.sogou.com/" target="_blank" id="so360form"><img src="https://www.sogou.com/web/index/images/logo_440x140.v.4.png" width="100px" height="25px"> <input type="text" autocomplete="off" name="q" id="sogou.com_keyword" placeholder="" value=""> <input type="submit" id="sogou_submit" value="sougou"> <input type="hidden" name="ie" value="gbk"><input type="hidden" name="src" value="zz"> <input type="hidden" name="site" value="so.com"> <input type="hidden" name="rg" value="1"></form></div><div align="center"><a target="_blank" href="/sitemap.xml">map</a></div></body> </html>