Compact and unforgeable key establishment over an ATM network (1998) [2 citations — 2 self]
|
Abstract:
Abstract Authenticated session key establishment is a central issue in network security. This paper addresses a question on whether we can design a compact, efficient and authenticated key establishment protocol that has the following two properties: (1) each message exchanged between two participants can be transferred in a short packet such as an ATM cell whose payload has only 384 bits, and (2) messages that carry key materials are unforgeable and nonrepudiatable without the involvement of a trusted key distribution center. We discuss why the answer to this question is negative if one follows the currently standard approach to key establishment, namely employing secret/public key encryption and, possibly, digital signature. We then present a number of protocols that represent a positive answer to the question. Our protocols are all based on a recently introduced cryptographic primitive called "signcryption " that fulfills both the functions of digital signature and public key encryption with a cost far smaller than that required by "digital signature followed by encryption".
Citations
| 1752 | New directions in cryptography – Diffie, Hellman - 1976 |
| 788 | A public key cryptosystem and a signature scheme based on discrete logarithms – Elgamal - 1985 |
| 323 | Entity Authentication and Key Distribution – Bellare, Rogaway - 1995 |
| 80 | Threshold cryptography – Desmedt - 1994 |
| 77 | Digital signcryption or how to achieve cost (signature & encryption) ≪ cost (signature) + cost(encryption),” in CRYPTO’97, LNCS 1294 – Zheng - 1997 |
| 22 | Fully-fledged two-way public key authentication and key agreement for low-cost terminals – Beller, Yacobi - 1993 |
| 15 | Asymmetric encryption: evolution and enhancements – Johnson, Matyas - 1996 |
| 6 | The KryptoKnight family of authentication and key distribution protocols – Bird, Gopal, et al. - 1995 |
