Abstract: As an essential to the protocol, a multicast-based logical heartbeat clock and a challenge-response authentication based on secret hopping are presented, and then the logical clock is combined with independence dual nonce chain of the messages. According to the above, the principal's secret, the authorization, and the messages are one-off effectiveness in run; the messages are also context sensitive. The formalization analysis and test result indicate that this protocol can complete the bidirectional authentication and authorization, can authenticate a member who departs from the secret communication without any statement, and can resist straight or deflective run internal replay attacks, as well as the man-in-middle attacks.