See this document in CiteSeerX!

Secure Password-Based Cipher Suite for TLS (2000)  (Make Corrections)  (9 citations)
Peter Buhler, Thomas Eirich, Michael Steiner, Michael Waidner



  Home/Search   Context   Related

 
View or download:
ibm.com/security/pub...BuEiStWa2000.pdf
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  ibm.com/security/publicati...2000 (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: SSL is the de facto standard today for securing endto -end transport. While the protocol seems rather secure there are a number of risks which lurk in its use, e.g., in web banking. We motivate the use of passwordbased key exchange protocols by showing how they overcome some of these problems. We propose the integration of such a protocol (DH-EKE) in the TLS protocol, the standardization of SSL by IETF. The resulting protocol provides secure mutual authentication and key establishment over an... (Update)

Context of citations to this paper:   More

...informal security analysis. This protocol problem has become quite popular, with further papers suggesting solutions including [7, 10, 11, 15 18, 21, 22]. The reason for this interest is simple: password guessing attacks are a common avenue for breaking into systems, and here...

...followed. They include TH[36] AL[1] M EKE[35] Gong[16] KS[20] SPEKE[18, 19] S3P[33] SRP[38] HK[17] GXY[21] and TLS adaptation[11]. However, some of them have been broken and some are still being cryptanalyzed[2, 14, 29, 9] Most were inadequate 1 for security proof...

Cited by:   More
Prompted User Retrieval of Secret Entropy: The Passmaze.. - Dece Mb Er (2005)   (Correct)
Security Proofs for an Efficient Password-Based Key.. - Bresson, Chevassut..   (Correct)
Authenticated Key Exchange Secure Against Dictionary Attacks - Bellare, Pointcheval.. (2000)   (Correct)

Similar documents (at the sentence level):
78.6%:   Secure Password-Based Cipher Suite for TLS - Buhler, Eirich, Steiner, Waidner (2000)   (Correct)

Active bibliography (related documents):   More   All
0.5:   Software License Management With Smart Cards - Aura, Gollmann (1999)   (Correct)
0.4:   Security Extension for UNI and NNI i - Working Group Oamp   (Correct)
0.2:   Provably Secure Password-Authenticated Key Exchange Using .. - Boyko, MacKenzie, Patel (2000)   (Correct)

Similar documents based on text:   More   All
0.6:   Transport Layer Security: How much does it really cost? - Apostolopoulos, Peris, Saha (1999)   (Correct)
0.5:   Fast-Track Session Establishment for TLS - Shacham, Boneh (2002)   (Correct)
0.4:   Performance Analysis of TLS Web Servers - Coarfa, Druschel, Wallach (2002)   (Correct)

Related documents from co-citation:   More   All
9:   Provably Secure Password Authenticated Key Exchange Using Diffie Hellman - Boyko, MacKenzie et al. - 2000
9:   Encrypted Key Exchange: Password-Based Protocols Secure Against Dictionary Attac.. - Bellovin, Merritt - 1992
8:   Augmented Encrypted Key Exchange: A Password-Based Protocol Secure Against Dicti.. - Bellovin, Merritt - 1993

BibTeX entry:   (Update)

P. Buhler, T. Eirich, M. Steiner, and M. Waidner. Secure Password-Based Cipher Suite for TLS. Proceedings of Network and Distributed Systems Security Symposium. February 2000. http://citeseer.ist.psu.edu/buhler00secure.html   More

@inproceedings{ buhlersecure,
    author = "Peter Buhler and Thomas Eirich and Michael Steiner and Michael Waidner",
    title = "Secure Password-Based Cipher Suite for {TLS}",
    pages = "129--142",
    url = "citeseer.ist.psu.edu/buhler00secure.html" }
Citations (may not include all citations):
428   IEEE Transactions on Information Theory (context) - Diffie, Hellman et al. - 1976
150   Encrypted key exchange: Password-based protocols secure agai.. - Bellovin, Merrit - 1992
136   The Kerberos network authentication service - Kohl, Neuman - 1993
120   A modular approach to the design and analysis of authenticat.. (context) - Bellare, Canetti et al. - 1998
119   Chosen ciphertext attacks against protocols based on the rsa.. - Bleichenbacher - 1998
118   Optimal asymmetric encryption -- how to encrypt with RSA (context) - Bellare, Rogaway - 1994
111   The Official PGP User's Guide (context) - Zimmermann - 1995
88   Protecting poorly chosen secrets from guessing attacks - Gong, Lomas et al. - 1993
88   Protecting poorly chosen secrets from guessing attacks - Gong, Lomas et al. - 1989
82   On formal models for secure key exchange - Shoup - 1999
79   Limitations of the Kerberos authentication system - Bellovin, Merritt - 1991
69   The secure remote password protocol - Wu - 1998
68   Strong password-only authenticated key exchange - Jablon - 1996
64   CRC Press series on discrete mathematics and its application.. (context) - Menezes, van Oorschot et al. - 1997
63   Hypertext transfer protocol -- HTTP (context) - Berners-Lee, Fielding et al. - 2068
61   Password security: A case history - Morris, Thompson - 1979
58   Public-key cryptography and password protocols - Halevi, Krawczyk - 1998
54   Finite-state analysis of SSL - Mitchell, Shmatikov et al. - 1998
51   Augmented encrypted key exchange: a password-based protocol .. - Bellovin, Merrit
45   Open key exchange: How to defeat dictionary attacks without .. - Lucks - 1997
44   Refinement and extension of encrypted key exchange - Steiner, Tsudik et al. - 1995
38   A key recovery attack on discrete log-based schemes using a .. - Lim, Lee - 1997
31   Number theoretic attacks on secure password schemes - Patel - 1997
27   Analysis of the SSL (context) - Wagner, Schneier - 1996
24   Why chosen ciphertext security matters - Shoup - 1998
24   Extended password key exchange protocols immune to dictionar.. - Jablon - 1997
24   Fast generation of prime numbers and secure public-key crypt.. - Maurer - 1995
21   Password-based encryption standard (context) - PKCS - 1999
16   A real-world analysis of kerberos password security - Wu - 1999
15   Fortifying key negotiation schemes with poorly chosen passwo.. - Anderson, Lomas - 1994
8   Improving system security via proactive password checking (context) - Bishop, Klein - 1995
6   On password-based authenticated key exchange using collision.. - Bakhtiari, Safavi-Naini et al. - 1996
5   Addition of kerberos cipher suites to transport layer securi.. (context) - Medvinsky, Hur - 1999
5   Will be eventually replaced by TLS (context) - Freier, Kariton et al. - 1996
5   Random oracles are practical: A pardigm for designing effici.. (context) - Bellare, Rogaway
4   Internet Request for Comment RFC (context) - Dierks, Allen et al. - 1999
3   st ACM Conference on Computer and Communications Security (context) - Ashby - 1993
2   RSA cryptography specifications (context) - Kaliski, Staddon - 1998



The graph only includes citing articles where the year of publication is known.

Documents on the same site (http://www.zurich.ibm.com/security/publications/2000.html):   More
ACE: The Advanced Cryptographic Engine - Schweinberger, Shoup (2000)   (Correct)
Efficient Anonymous Fingerprinting with Group Signatures.. - Camenisch (2000)   (Correct)
Using EMV Smartcards for Internet Payments - Van Herreweghen, Wille (2000)   (Correct)

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC