Cryptanalysis of simple three-party key exchange protocol

Computers and Security

Volumn 27, Issue 1-2, 2008, Pages 16-21

  Guo, Hua ^a   Li, Zhoujun ^a   Mu, Yi ^b   Zhang, Xiyong ^c  

^a BEIHANG UNIVERSITY   (China)

^b UNIVERSITY OF WOLLONGONG   (Australia)

^c INFORMATION ENGINEERING UNIVERSITY   (China)

Author keywords

Cryptanalysis; Dictionary attack; Man in the middle attack; Password authenticated key exchange; Security

Indexed keywords

COMPUTER NETWORKS; CRYPTOGRAPHY; NETWORK PROTOCOLS; PERSONAL DIGITAL ASSISTANTS; SECURITY OF DATA;

(UNDETECTABLE) DICTIONARY ATTACK; AUTHENTICATED KEY EXCHANGE (AKE); ELSEVIER (CO); KEY EXCHANGE (KE) PROTOCOLS; MAN IN THE MIDDLE (MITM) ATTACKS; SECURE SESSION;

COMPUTER CRIME;

EID: 44849118543     PISSN: 01674048     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.cose.2008.03.001     Document Type: Article

References (18)

1. Abdalla M., and Pointcheval D. Interactive Diffie-Hellman assumptions with applications to password-based authentication. Financial Cryptography and Data Security - FC 2005. LNCS vol. 3570 (2005) p. 341-56
2. Abdalla M., and Pointcheval D. Simple password-based encrypted key exchange protocols. Topics in Cryptology - CT-RSA 2005. LNCS (2005), Springer-Verlag p. 191-208
3. Abdalla M., Fouque P.-A., and Pointcheval D. Password-based authenticated key exchange in the three-party setting. Public Key Cryptography - PKC 2005. LNCS vol. 3386 (2005) p. 65-84
4. Boyd C., and Mathuria A. Protocols for Authentication and Key Establishment (June 2003), Springer-Verlag
5. Byun J.W., Lee D.H., and Lim J. Efficient and Provably Secure Client-to-Client Password-Based Key Exchange Protocol. Proceedings of APWeb'06. LNCS vol. 3841 (2006) 830-836
6. Chang C.C., and Chang Y.F. A novel three-party encrypted key exchange protocol. Computer Standards and Interfaces 26 5 (2004) 471-476
7. Ding Y., and Horster P. Undetectable on-line password guessing attacks. ACM Operating Systems Review 29 4 (1995) 77-86
8. Law L., Menezes A., Qu M., Solinas J., and Vanstone S. An efficient protocol for authenticated key agreement. Designs, Codes and Cryptography 28 2 (March 2003) 119-134
9. Lee T.F., Hwang T., and Lin C.L. Enhanced three-party encrypted key exchange without server public keys. Computers and Security 23 7 (2004) 571-577
10. Lee S.W., Kim H.S., and Yoo K.Y. Efficient verifier-based key agreement protocol for three parties without server's public key. Applied Mathematics and Computation 167 2 (2005) 996-1003
11. Lin C.L., Sun H.M., and Hwang T. Three party-encrypted key exchange: attacks and a solution. ACM Operating Systems Review 34 4 (2000) 12-20
12. Lin C.L., Sun H.M., Steiner M., and Hwang T. Three-party encrypted key exchange without server public-keys. IEEE Communication Letters 5 12 (2001) 497-499
13. Lu R.X., and Cao Z.F. Simple three-party key exchange protocol. Computers and Security 26 (2007) 94-97
14. Phan R.C.-W., and Goi B.-M. Cryptanalysis of Two Provably Secure Cross-realm C2C-PAKE Protocols, INDOCRYPT'06. LNCS (2006) p. 104-17
15. Steiner M., Tsudik G., and Waidner M. Refinement and extension of encrypted key exchange. ACM Operating Systems Review 29 3 (1995) 22-30
16. Sun H.M., Chen B.C., and Hwang T. Secure key agreement protocols for three-party against guessing attacks. The Journal of Systems and Software 75 (2005) 63-68
17. Wang W.J., and Hu L. Efficient and Provably Secure Generic Construction of Three-party Password-based Authenticated Key Exchange Protocols, INDOCRYPT'06. LNCS (2006) p. 118-32
18. Yin Y., and Bao L. Secure Cross-Realm C2C-PAKE Protocol. Proceedings of ACISP'06. LNCS vol. 4058 (2006) 395-406