A public-key based authentication and key establishment protocol coupled with a client puzzle

Journal of the American Society for Information Science and Technology

Volumn 54, Issue 9, 2003, Pages 810-823

  Lee, M C ^a   Fung, Chun Kan ^a  

^a CHINESE UNIVERSITY OF HONG KONG   (Hong Kong)

Author keywords

[No Author keywords available]

Indexed keywords

CLIENT SERVER COMPUTER SYSTEMS; INTERNET; NETWORK PROTOCOLS; QUALITY OF SERVICE; RESOURCE ALLOCATION; SECURITY OF DATA; USER INTERFACES;

DENIAL OF SERVICE; KEY ESTABLISHMENT PROTOCOL; NETWORK BANDWIDTH; PUBLIC KEY BASED AUTHENTICATION; SERVER RESOURCE;

PUBLIC KEY CRYPTOGRAPHY;

EID: 0038479936     PISSN: 15322882     EISSN: None     Source Type: Journal    
DOI: 10.1002/asi.10253     Document Type: Article

References (24)

1. Aura, T., & Nikander, P. (1997). Stateless connections. In Proceedings of International Conference on Information and Communications Security (ICICS'97) (pp. 87-97), Beijing, China, Lecture Notes in Computer Science, 1334, Berlin, Springer-Verlag, CA
2. Aura, T., Nikander, P., & Leiwo, J. (2000). DOS-resistant authentication with client puzzles. In Bruce Christianson, Bruno Crispo, and Mike Roe, (Eds.). Proceedings of the 8th International Workshop on Security Protocols (pp. 170-177), Cambridge, UK, Lecture Notes in Computer Science series, 2133, Berlin, Springer-Verlag.
3. Coffey, T., & Saidha, P. (1997). Logic for verifying public-key cryptographic protocols. IEE Proceedings in Computers and Digital Techniques, 144(1), 28-32.
4. Denial of Service Attacks. (2001). Tech Tips, CERT Coordination Center, June 4, 2001. Available: http://www.cert.org/tech_tips/denial_of_service.html
5. Dobbertin, H. (1996). Cryptanalysis of MD4. In Proceedings of Third International Workshop on Fast Software Encryption (pp. 53-69), Cambridge, UK, Lecture Notes in Computer Science, 1039, Berlin, Springer-Verlag.
6. Dwork, C., & Naor, M. (1992). Pricing via processing or combatting junk mail. In Proceedings of 12th Annual International Cryptology Conference (CRYPTO'92) (pp. 139-147), Santa Barbara, California, USA, Lecture Notes in Computer Science, 740, Berling, Springer-Verlag.
7. Ford, W., & Baum, M.S. (1997). Secure electronic commerce - building the infrastructure for digital signatures and encryption. Upper Saddle River, NJ, Prentice Hall, Inc.
8. Freier, A.O., Karlton, P., & Kocher, P.C. (1996). The SSL Protocol Version 3.0. Internet Draft. Available: http://home.netscape.com/eng/ssl3/ssl-toc.html
9. Garber, L. (2000). Denial-of-service attacks rip the internet. IEEE Computer, 33(4), 12-17.
10. Harbitter, A.H. & Menase, D.A. (2001). Performance of public-key-enabled Kerberos authentication in large networks. In Proceedings of 2001 IEEE Symposium on Security and Privacy, pp. 170-183.
11. Hirose, S., & Matsuura, K. (1999a). Enhancing the resistance of a provably secure key agreement protocol to a denial-of-service attack. In Proceedings of the 2nd International Conference on Information and Communication Security (ICICS'99) (pp.169-182), Sydney, Australia, Lecture Notes in Computer Science, 1726, Berlin, Springer-Verlag.
12. Hirose, S., & Matsuura, K. (1999b). Enhancing the resistance of a secure key agreement protocol to a denial-of-service attack. In Proceedings of the 1999 Symposium on Cryptography and Information Security (SCIS'99), 2, 899-904.
13. Juels, A., & Brainard, J. (1999). Client puzzles: a cryptographic counter-measure against connection depletion attacks. In Proceedings of the 1999 Network and Distributed System Security Symposium (NDSS '99) (pp. 151-165), San Diego, California.
14. Karn, P., & Simpson, W. (1999). Photuris: session-key management protocol. RFC2522, IETF Network Working Group.
15. Leiwo, J., Nikander, P. & Aura, T. (2000). Towards network denial of service resistant protocols. In Proceedings of the 15th International Information Security Conference (IFIP/SEC 2000), Beijing, China.
16. Matsuura, K., & Imai, H. (1998). Protection of authenticated key-agreement protocol against a denial-of-service attack. In Proceedings of 1998 International Symposium on Information Theory and Its Applications (ISITA '98) (pp. 466-470).
17. Matsuura, K., & Imai, H. (2000). Modified aggressive modes of internet key exchange resistant against denial-of-service attacks. IEICE Transactions on Information and Systems, E83-D(5), 972-979.
18. Maughan, D., Schertler, M., Schneider, M., & Turner, J. (1998). Internet Security Association and Key Management Protocol (ISAKMP). RFC2408, IETF Network Working Group.
19. Menezes, A.J., van Oorschot, P. C., & Vanstone, S.A. (1997). Handbook of Applied Cryptography. Boca Raton, FL, CRC Press.
20. Nash, A., Duane, W., Joseph, C. & Brink, D. (2001). PKI: implementing and managing E-security. Osborne: McGraw-Hill.
21. Ng, L.H., & Tan, D.T. (2000). A novel JavaCard-based authentication system for secured transactions on the Internet. In Proceedings of IEEE International Conference on Networks (ICON 2000) (pp. 262-266).
22. Seo, D.H., & Sweeney, P. (1999). Simple authenticated key agreement algorithm. IEE Electronics Letters, 35(13), 1073-1074.
23. Simpson, W.A. (1999). IKE/ISAKMP considered harmful.: login, 24(6), 48-58, USENIX Association.
24. TCP SYN Flooding and IP Spoofing Attacks. (1996). CERT Advisory CA-1996-21, CERT Coordination Center, September 19, 1996. Available: http://www.cert.org/advisories/CA-1996-21.html.