Password-based authenticated key exchange in the three-party setting

IEE Proceedings: Information Security

Volumn 153, Issue 1, 2006, Pages 27-39

  Abdalla, M ^a   Fouque, P A ^a   Pointcheval, D ^a  

^a Centre National de la Recherche Scientifique   (France)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER CRIME; NETWORK PROTOCOLS; SERVERS;

HUMAN-MEMORABLE PASSWORD; PASSWORD-BASED AUTHENTICATED KEY EXCHANGE (PAKE); THREE-PARTY SETTING;

SECURITY OF DATA;

EID: 33645734992     PISSN: 17470722     EISSN: 17470730     Source Type: Conference Proceeding    
DOI: 10.1049/ip-ifs:20055073     Document Type: Article

References (27)

1. Steiner, J.G., Neuman, B.C., and Schiller, J.L.: 'Kerberos: an authentication service for open networks'. Proc. USENIX Winter Conference, Dallas, TX, 1988, pp. 191-202
2. Krawczyk, H.: 'SIGMA: The "SIGn-and-MAc" approach to authenticated Diffie-Hellman and its use in the IKE protocols'. In Boneh, D. (Ed.), Proc. Advances in Cryptology - CRYPTO 2003, Santa Barbara, CA, August 2003, LNCS 2729, pp. 400-425
3. Needham, R.M., and Schroeder, M.D.: 'Using encryption for authentication in large networks of computers', Communications of the Association for Computing Machinery, 1978, 21 (21), pp. 993-999
4. NIST: 'Advanced encryption standard (AES)'. National Institute of Standards and Technology, FIPS PUB 197, U.S. Department of Commerce, 2001
5. Bellovin, S.M., and Merritt, M.: 'Encrypted key exchange: password-based protocols secure against dictionary attacks', Proc. 1992 IEEE Symp. Security and Privacy, Oakland, CA, May 1992, pp. 72-84
6. Boyarsky, M.K.: 'Public-key cryptography and password protocols: the multi-user case', Proc. 6th Conf. Computer and Communications Security (ACM CCS 99), Kent Ridge Digital Labs, Singapore, November 1999, pp. 63-72
7. Bresson, E., Chevassut, O., and Pointcheval, D.: 'New security results on encrypted key exchange'. In Bao, F., Deng, R., and Zhou, J. (Eds), Proc. 7th Int. Workshop on Theory and Practice in Public Key Cryptography (PKC 2004), Singapore, March 2004, LNCS 2947, pp. 145-158
8. Gennaro, R., and Lindell, Y.: 'A framework for password-based authenticated key exchange'. In Biham, E. (Ed.), Advances in Cryptology-EUROCRYPT 2003, Warsaw, Poland, May 4-8,2003, LNCS 2656, pp. 524-543, http://eprint.iacr.org/2003/032.ps.gz
9. Katz, J., Ostrovsky, R., and Yung, M.: 'Efficient password-authenticated key exchange using human-memorable passwords'. In Pfitzmann, B. (Ed.), Proc. Advances in Cryptology - EUROCRYPT 2001, Innsbruck, Austria, May 2001, LNCS 2045, pp. 475-494
10. MacKenzie, P.D.: 'The PAK suite: Protocols for password-authenticated key exchange'. Contributions to IEEE P1363.2, 2002
11. Bellare, M., and Rogaway, P.: 'Entity authentication and key distribution'. In Stinson, D.R. (Ed.), Proc. Advances in Cryptology - CRYPTO'93, Santa Barbara, CA, USA, August 1994, LNCS 773, pp. 232-249
12. Bellare, M., and Rogaway, P.: 'Provably secure session key distribution - the three party case', Proc. 28th Annual ACM Symp. Theory of Computing, Philadelphia, PA, May 1996, pp. 57-66
13. Bellare, M., Pointcheval, D., and Rogaway, P.: 'Authenticated key exchange secure against dictionary attacks'. In Preneel, B. (Ed.), Proc. Advances in Cryptology - EUROCRYPT 2000, Bruges, Belgium, May 2000, LNCS 1807, pp. 139-155
14. Bellare, M., and Rogaway, P.: 'Random oracles are practical: a paradigm for designing efficient protocols', Proc. 1st Conf. Computer and Communications Security (ACM CCS 93), Fairfax, VA, November 1993, pp. 62-73
15. Diffie, W., and Hellman, M.E.: 'New directions in cryptography', IEEE Trans. Inform. Theor. 1976, 22 (6), pp. 644-654
16. Boyko, V., MacKenzie, P.D., and Patel, S.: 'Provably secure password-authenticated key exchange using Diffie-Hellman'. In Preneel, B. (Ed.), Proc. Advances in Cryptology - EUROCRYPT 2000, Bruges, Belgium, May 2000, LNCS 1807, pp. 156-171
17. Goldreich, O., and Lindell, Y.: 'Session-key generation using human passwords only'. In Kilian, J. (Ed.), Proc. Advances in Cryptology - CRYPTO 2001, Santa Barbara, CA, August 2001, LNCS 2139, pp. 408-432, http://eprint.iacr.org/2000/057
18. Byun, J.W., Jeong, I.R., Lee, D.H., and Park, C.-S.: 'Password- authenticated key exchange between clients with different passwords'. In Deng, R.H., Qing, S., Bao, F., and Zhou, J. (Eds), Proc. 4th Int. Conf. Information and Communication Security (ICICS 02), LNCS 2513, Singapore, December 2002, pp. 134-146
19. Lin, C.-L., Sun, H.-M., and Hwang, T.: 'Three-party encrypted key exchange: attacks and a solution,' ACM SIGOPS Operating Systems Review, 2000, 34 (4), pp. 12-20
20. Steiner, M., Tsudik, G., and Waidner, M.: 'Refinement and extension of encrypted key exchange', ACM SIGOPS Operating Systems Review, 1995, 29 (3), pp. 22-30
21. Bellare, M., Desai, A., Jokipii, E., and Rogaway, P.: 'A concrete security treatment of symmetric encryption'. Proc. 38th Annual Symp. Foundations of Computer Science, Miami Beach, FL, October 1997, pp. 394-403
22. Abdalla, M., Bellare, M., and Rogaway, P.: 'The oracle DiffieHellman assumptions and an analysis of DHIES'. In Naccache, D. (Ed.), Proc. Topics in Cryptology-CT-RSA 2001, San Francisco, CA, April 2001, LNCS 2020, pp. 143-158
23. Shoup, V.: 'On formal models for secure key exchange'. Technical Report RZ 3120, IBM, 1999
24. Bellare, M., Kilian, J., and Rogaway, P.: 'The security of the cipher block chaining message authentication code', J. Comput. Syst. Sci. 2000, 61(3), 362-399
25. Bellare, M., Canetti, R., and Krawczyk, H.: 'Keying hash functions for message authentication'. In Koblitz, N., (Ed.), Proc. Advances in Cryptology - CRYPTO'96, Santa Barbara, CA, August 1996, LNCS 1109, pp. 1-15
26. Shoup, V.: 'OAEP reconsidered'. In Kilian, J. (Ed.), Proc. Advances in Cryptology - CRYPTO 2001, Santa Barbara, CA, August 2001, LNCS 2139, pp. 239-259
27. Abdalla, M., Fouque, P.-A., and Pointcheval, D.: 'Password-based authenticated key exchange in the three-party setting'. In Vaudenay, S. (Ed.), Proc. 8th Int. Workshop on Theory and Practice in Public Key Cryptography (PKC 2005), Les Diablerets, Switzerland, January 2005, LNCS 3386, pp. 65-84