by Michel Abdalla, David Pointcheval
in A. Patrick & M. Yung, eds, ‘9th International Conference on Financial Cryptography - FC 2005
http://www.di.ens.fr/users/mabdalla/papers/AbPo05b-letter.pdf
Add To MetaCart
Abstract:
The area of password-based authenticated key exchange protocols has been the subject of a vast amount of work in the last few years due to its practical aspects. In these protocols, the goal is to enable users communicating over an unreliable channel to establish a secure session key even when the secret key that they share is drawn from a small set of values. Despite the attention given to it, it was only recently that this problem has been formally addressed in the three-party setting. In this setting, the users trying to establish a secret session key are only required to share a password with a trusted server and not directly among themselves. In this paper, we introduce a new three-party password-based authenticated key exchange protocol based on the two-party encrypted key exchange of Bellovin and Merritt. Our protocol is reasonably efficient and has a per-user computational cost that is comparable to that of the underlying two-party encrypted key exchange. The proof of security is in the random oracle model and is based on new and apparently stronger variants of the decisional Diffie-Hellman problem which are of independent interest. Keywords: password, authenticated key exchange, Diffie-Hellman assumptions, multi-party
Citations
|
1752
|
New directions in cryptography
– Diffie, Hellman
- 1976
|
|
697
|
Using encryption for authentication in large networks of computers
– Needham, Schroeder
- 1978
|
|
323
|
Entity Authentication and Key Distribution
– Bellare, Rogaway
- 1995
|
|
229
|
Encrypted Key Exchange: Password-Based Protocols Secure Against Dictionary Attacks
– Bellovin, Merritt
- 1992
|
|
189
|
Authenticated key exchange secure against dictionary attacks
– Bellare, Pointcheval, et al.
- 2000
|
|
170
|
Provably secure session key distribution: the three party case
– Bellare, Rogaway
- 1995
|
|
163
|
The Random Oracle Methodology Revisited
– Canetti, Goldreich, et al.
- 1998
|
|
148
|
bounds for discrete logarithms and related problems
– Shoup, “Lower
- 1997
|
|
94
|
Provably secure password authenticated key exchange using DiffieHellmann
– Boyko, MacKenzie, et al.
- 2000
|
|
79
|
Public-Key Cryptography and Password Protocols
– Halevi, Krawczyk
- 1999
|
|
53
|
Session-Key Generation Using Human Passwords Only
– Goldreich, Lindell
- 2001
|
|
51
|
Refinement and extension of encrypted key exchange
– Steiner, Tsudik, et al.
- 1995
|
|
37
|
Optimal authentication protocols resistant to password guessing attacks
– Gong
- 1995
|
|
37
|
The sign-and-mac approach to authenticated diffie-hellman and its use in the IKE protocols
– Sigma
- 2003
|
|
36
|
Y.: A Framework for Password-Based Authenticated Key Exchange
– Gennaro, Lindell
- 2003
|
|
34
|
R.: Password authenticated key exchange based on RSA
– MacKenzie, Patel, et al.
- 2000
|
|
28
|
The AuthA protocol for password-based authenticated key exchange. Contribution to
– Bellare, Rogaway
- 2000
|
|
23
|
Security Analysis of IKE’s Signaturebased Key-Exchange Protocol", manuscript, 2002. [IKEv2
– Canetti, Krawczyk
|
|
17
|
Password-based authenticated key exchange in the threeparty setting
– Abdalla, Fouque, et al.
- 2005
|
|
14
|
New security results on encrypted key exchange
– Bresson, Chevassut, et al.
- 2004
|
|
13
|
The PAK suite: Protocols for password-authenticated key exchange
– MacKenzie
- 2002
|
|
9
|
Three-party encrypted key exchange: Attacks and a solution
– Lin, Sun, et al.
- 2000
|
|
6
|
Password-authenticated key exchange between clients with different passwords
– Byun, Jeong, et al.
- 2002
|
|
4
|
Weakness of a password-authenticated key exchange protocol between clients with different passwords
– Wang, Wang, et al.
- 2004
|
|
3
|
Efficient three-party authentication and key agreement protocols resistant to password guessing attacks
– Yeh, Sun, et al.
- 2003
|
