A simple leakage-resilient authenticated key establishment protocol, its extensions, and applications

IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

Volumn E88-A, Issue 3, 2005, Pages 736-753

  Shin, Seonghan ^a   Kobara, Kazukuni ^a   Imai, Hideki ^a  

^a INSTITUTE OF INDUSTRIAL SCIENCE   (Japan)

Author keywords

Authentication; DDH problem; Entropy of passwords; Key establishment protocol; Leakage of stored secrets; On line and off line attacks; Proactive security; Standard model

Indexed keywords

CLIENT SERVER COMPUTER SYSTEMS; COMPUTER SIMULATION; COMPUTER SOFTWARE; DATA REDUCTION; DATA STORAGE EQUIPMENT; SECURITY OF DATA;

AUTHENTICATED KEY ESTABLISHMENT (AKE); AUTHENTICATION; DDH PROBLEM; ENTROPY OF PASSWORDS; KEY ESTABLISHMENT PROTOCOL; LEAKAGE OF STORED SECRETS; ON-LINE AND OFF-LINE ATTACKS; PROACTIVE SECURITY; STANDARD MODEL;

NETWORK PROTOCOLS;

EID: 24144480081     PISSN: 09168508     EISSN: None     Source Type: Journal    
DOI: 10.1093/ietfec/e88-a.3.736     Document Type: Article

References (41)

1. M. Abdalla, S. Miner, and C. Namprempre, "Forward-secure threshold signature schemes," Proc. Topics in Cryptology (CT-RSA 2001), LNCS 2020, pp.441-456, Springer-Verlag, 2001.
2. R. Anderson, "Two remarks on public key cryptology," Technical Report, no.549, University of Cambridge, Dec. 2002.
3. E. Bresson, O. Chevassut, and D. Pointcheval, "Group Diffie-Hellman key exchange secure against dictionary attacks," Proc. ASI-ACRYPT 2002, LNCS 2501, pp.497-514, Springer-Verlag, 2002.
4. S.M. Bellovin and M. Merritt, "Encrypted key exchange: Password-based protocols secure against dictioinary attacks," Proc. IEEE Symposium on Security and Privacy, pp.72-84, 1992.
5. M. Bellare and S. Miner, "A forward-secure digital signature scheme," Proc. CRYPTO'99, LNCS 1666, pp.431-448, Springer-Verlag, 1999.
6. V. Boyko, P. MacKenzie, and S. Patel, "Provably secure password-authenticated key exchange using Diffie-Hellman," Proc. EUROCRYPT 2000, LNCS 1807, pp.156-171, Springer-Verlag, 2000.
7. G.R. Blakley, "Safeguarding cryptographic keys," Proc. National Computer Conference 1979 (AFIPS), vol.48, pp.313-317, 1979.
8. M. Bellare, D. Pointcheval, and P. Rogaway, "Authenticated key exchange secure against dictionary attacks," Proc. EUROCRYPT 2000, LNCS 1807, pp.139-155, Springer-Verlag, 2000.
9. M. Bellare and P. Rogaway, "Random oracles are practical: A paradigm for designing efficient protocols," Proc. ACM CCS'93, pp.62-73, 1993.
10. M. Bellare and P. Rogaway, "Entity authentication and key distribution," Proc. CRYPTO'93, LNCS 773, pp.232-249, Springer-Verlag, 1993.
11. CERT Coordination Center, http://www.cert.org/
12. R. Canetti, S. Halevi, and J. Katz, "A forward-secure public-key encryption scheme," Proc. EUROCRYPT 2003, LNCS 2656, pp.255-271, Springer-Verlag, 2003.
13. W. Diffie and M. Hellman, "New directions in cryptography," IEEE Trans. Inf. Theory, vol.IT-22, no.6, pp.644-654, 1976.
14. Y. Dodis, J. Katz, S. Xu, and M. Yung, "Key-insulated public key cryptosystems," Proc. EUROCRYPT 2002, LNCS 2332, pp.65-82, Springer-Verlag, 2002.
15. A. Frier, P. Karlton, and P. Kocher, "The SSL 3.0 protocol," Netscape Communications Corp., 1996, http://wp.netscape.com/eng/ssl3/
16. O. Goldreich and Y. Lindell, "Session-key generation using human passwords only," Proc. CRYPTO 2001, LNCS 2139, pp.408-432, Springer-Verlag, 2001.
17. R. Gennaro and Y. Lindell, "A framework for password-based authenticated key exchange," Proc. EUROCRYPT 2003, LNCS 2656, pp.524-543, Springer-Verlag, 2003, A full paper is available at http://eprint.iacr.org/2003/ 032
18. N. Haller, "The S/KEY one-time password system," RFC 1760, 1995.
19. A. Herzberg, M. Jakobsson, S. Jarecki, H. Krawczyk, and M. Yung, "Proactive public key and signature systems," Proc. ACM CCS'96, pp.100-110, April 1997.
20. IEEE Std 1363-2000, "IEEE standard specifications for public key cryptography," Main Document, pp.53-57, IEEE, Aug. 2000.
21. IEEE P1363.2, "Standard specifications for password-based public key cryptographic techniques," Draft version 11, Aug. 2003.
22. IETF (Internet Engineering Task Force), "Challenge handshake authentication protocol," http://www.ietf.org/rfc/rfc1994.txt
23. IETF (Internet Engineering Task Force), "IP Security Protocol (ipsec) Charter," http://www.ietf.org/html.chaiters/ipsec-charter.html
24. IETF (Internet Engineering Task Force), "Secure Shell (secsh) Charter," http://www.ietf.org/html.charters/secsh-charter.html
25. IETF (Internet Engineering Task Force), "Transport Layer Security (tls) Charter," http://www.ietf.org/html.charters/tls-charter.html
26. G. Itkis and L. Reyzin, "SiBIR: Signer-base intrusion-resilient signatures," Proc. CRYPTO 2002, LNCS 2442, pp.499-514, Springer-Verlag, 2002.
27. H. Krawczyk, M. Bellare, and R. Canetti, "HMAC: Keyed-hashing for message authentication," IETF RFC 2104, 1997, http://www.ietf.org/rfc/ rfc2104.txt
28. K. Kobara and H. Imai, "Pretty-simple password-authenticated key-exchange under standard assumptions," IACR ePrint Archive, 2003, http://eprint.iacr.org/2003/038
29. J. Katz, R. Ostrovsky, and M. Yung, "Efficient password- authenticated key exchange using human-memorable passwords," Proc. EUROCRYPT 2001, LNCS 2045, pp.475-494, Springer-Verlag, 2001.
30. T. Kwon, "Authentication and key agreement via memorable password," Proc. NDSS 2001 Symposium, 2001.
31. P. MacKenzie, "More efficient password-authenticated key exchange," Proc. Topics in Cryptology (CT-RSA 2001), LNCS 2020, pp.361-377, Springer-Verlag, 2001.
32. P. MacKenzie, "On the security of the SPEKE password-authenticated key exchange protocol," IACR ePrint Archive, 2001, http://eprint.iacr.org/ 2001/057/
33. Microsoft Corporation, http://www.microsoft.com/
34. A.J. Menezes, P.C. Oorschot, and S.A. Vanstone, "Simultaneous multiple exponentiation," in Handbook of Applied Cryptography, pp.617-619, CRC Press, 1997.
35. P. MacKenzie, S. Patel, and R. Swaminathan, "Passwordauthenticated key exchange based on RSA," Proc. ASIACRYPT 2000, LNCS 1976, pp.599-613, Springer-Verlag, 2000.
36. P. MacKenzie, T. Shrimpton, and M. Jakobsson, "Threshold password-authenticated key exchange," Proc. CRYPTO 2002, LNCS 2442, pp.385-400, Springer-Verlag, 2002.
37. M. Naor and M. Yung, "Universal one-way hash functions and their cryptographic applications," Proc. STOC'89, pp.33-43, 1989.
38. R. Ostrovsky and M. Yung, "How to withstand mobile virus attacks," Proc. 10th Annual ACM Symposium on Principles of Distributed Computing, pp.51-59, 1991.
39. M.D. Raimondo and R. Gennaro, "Provably secure threshold password-authenticated key exchange," Proc. EUROCRYPT 2003, LNCS 2656, pp.507-523, Springer-Verlag, 2003.
40. A. Shamir, "How to share a secret," Proc. Communications of the ACM, vol.22, no. 11, pp.612-613, 1979.
41. S.H. Shin, K. Kobara, and H. Imai, "Leakage-resilient authenticated key establishment protocols," Proc. ASIACRYPT 2003, LNCS 2894, pp.155-172, Springer-Verlag, 2003.