Secure Password-Based Cipher Suite for TLS

Proceedings of the Symposium on Network and Distributed System Security, NDSS 2000

Volumn , Issue , 2000, Pages

  Buhler, Peter ^a   Eirich, Thomas ^a   Steiner, Michael ^b   Waidner, Michael ^a  

^a IBM RESEARCH ZURICH   (Switzerland)

^b SAARLAND UNIVERSITY   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

AUTHENTICATION; CRYPTOGRAPHY; NETWORK SECURITY; SEEBECK EFFECT;

DE FACTO STANDARD; DECISIONAL DIFFIE-HELLMAN PROBLEMS; KEY ESTABLISHMENTS; KEY EXCHANGE PROTOCOLS; MUTUAL AUTHENTICATION; NON-INTRUSIVE; PASSWORD-BASED KEY EXCHANGE; SEMANTIC SECURITY; SIDE EFFECT; TLS PROTOCOLS;

SEMANTICS;

EID: 47349130323     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (38)

1. R. J. Anderson and T. M. A. Lomas. Fortifying key negotiation schemes with poorly chosen passwords. Electronics Letters, 30(13):1040-1041, June 1994.
2. V. Ashby, editor. 1st ACM Conference on Computer and Communications Security, Fairfax, Virginia, Nov. 1993. ACM Press.
3. S. Bakhtiari, R. Safavi-Naini, and J. Pieprzyk. On password-based authenticated key exchange using collisionful hash functions. In 1st Australasian Conference on Information Security and Privacy (ACISP '96), number 1172 in Lecture Notes in Computer Science, pages 299-310. Springer-Verlag, Berlin Germany, 1996.
4. M. Bellare, R. Canetti, and H. Krawczyk. A modular approach to the design and analysis of authentication and key exchange protocols. In Proceedings of th 30th Annual Symposium on the Theory of Computing, 1998.
5. M. Bellare and P. Rogaway. Random oracles are practical: A pardigm for designing efficient protocols. In Ashby [2]. also appeared (in identical form) as IBM RC 19619 (87000) 6/22/94.
6. M. Bellare and P. Rogaway. Optimal asymmetric encryption - how to encrypt with RSA. In I. Damgard, editor, Advances in Cryptology - EUROCRYPT '94, Lecture Notes in Computer Science, pages 92-111. Springer-Verlag, Berlin Germany, 1994. Final (revised) version appeared November 19, 1995.
7. S. Bellovin and M. Merrit. Augmented encrypted key exchange: a password-based protocol secure against dictionary atttacks and password file compromise. In Ashby [2], pages 244-250.
8. S. M. Bellovin and M. Merrit. Encrypted key exchange: Password-based protocols secure against dictionary attacks. In Proceedings of the IEEE Symposium on Research in Security and Privacy, May 1992.
9. S. M. Bellovin and M. Merritt. Limitations of the Kerberos authentication system. In USENIX Conference Proceedings, pages 253-267, Dallas, TX, Winter 1991. USENIX. An earlier version of this paper was published in the October, 1990 issue of Computer Communications Review.
10. T. Berners-Lee, R. T. Fielding, H. F. Nielsen, J. Gettys, and J. Mogul. Hypertext transfer protocol - HTTP/1.1. Internet Request for Comment RFC 2068, Jan. 1997.
11. M. Bishop and D. V. Klein. Improving system security via proactive password checking. Computers & Security, 14(3):233-249, 1995.
12. D. Bleichenbacher. Chosen ciphertext attacks against protocols based on the rsa encryption standard pkcs. In H. Krawczyk, editor, Advances in Cryptology - CRYPTO '98, number 1462 in Lecture Notes in Computer Science, pages 1-12. Springer-Verlag, Berlin Germany, Aug. 1998.
13. T. Dierks and C. Allen. The TLS protocol version 1.0. Internet Request for Comment RFC 2246, Jan. 1999. Proposed Standard.
14. W. Diffie and M. Hellman. New directions in cryptography. IEEE Transactions on Information Theory, IT-22(6):644-654, Nov. 1976.
15. A. O. Freier, P. Kariton, and P. C. Kocher. The SSL protocol: Version 3.0. Technical report, Internet Draft, 1996. Will be eventually replaced by TLS.
16. L. Gong, M. Lomas, R. Needham, and J. Saltzer. Protecting poorly chosen secrets from guessing attacks. In Proceedings of the Twelth ACM Symposium on Operating Systems Principles. The Wigwam, Litchfield Park, Arizona, Dec. 1989. A revised journal version appeared as [17].
17. L. Gong, M. Lomas, R. Needham, and J. Saltzer. Protecting poorly chosen secrets from guessing attacks. IEEE Journal on Selected Areas in Communications, 11(5):648-656, June 1993.
18. S. Halevi and H. Krawczyk. Public-key cryptography and password protocols. In 5th ACM Conference on Computer and Communications Security, San Francisco, California, Nov. 1998. ACM Press. Revised version available as Theory of Cryptography Library: Record 99-04.
19. D. P. Jablon. Strong password-only authenticated key exchange. Computer Communication Review, 26(5):5-26, Sep 1996.
20. D. P. Jablon. Extended password key exchange protocols immune to dictionary attack. In Proceedings of the WETICE' 97 Workshop on Enterprise Security, Cambridge, MA, USA, June 1997.
21. B. Kaliski and J. Staddon. PKCS #1: RSA cryptography specifications. Technical report, RSA Laboratories, Sept. 1998. Version 2.0. Published in October 1998 as Internet RFC 2437.
22. J. T. Kohl and B. C. Neuman. The Kerberos network authentication service (V5). Internet Request for Comment RFC 1510, Project Athena, MIT, 1993.
23. C. H. Lim and P. J. Lee. A key recovery attack on discrete log-based schemes using a prime order subgroup. In B. S. K. Jr., editor, Advances in Cryptology - CRYPTO '97, number 1294 in Lecture Notes in Computer Science, pages 249-263. Springer-Verlag, Berlin Germany, Aug. 1997.
24. S. Lucks. Open key exchange: How to defeat dictionary attacks without encrypting public keys. In Security Protocol Workshop'97, Ecole Normale Suprieure, Paris, Apr. 1997.
25. U. M. Maurer. Fast generation of prime numbers and secure public-key cryptographic parameters. Journal of Cryptology, 8(3):123-155, 1995.
26. A. Medvinsky and M. Hur. Addition of kerberos cipher suites to transport layer security (TLS). Internet Draft, Aug. 1999. Expires January 22, 2000.
27. A. J. Menezes, P. C. van Oorschot, and S. A. Vanstone. Handbook of applied cryptography. CRC Press series on discrete mathematics and its applications. CRC Press, 1997. ISBN 0-8493-8523-7.
28. J. Mitchell, V. Shmatikov, and U. Stern. Finite-state analysis of SSL 3.0. In 7th USENIX Security Symposium, 1998.
29. R. Morris and K. Thompson. Password security: A case history. Commun. ACM, 22(11), Nov. 1979.
30. S. Patel. Number theoretic attacks on secure password schemes. In Proceedings of the IEEE Symposium on Research in Security and Privacy, Research in Security and Privacy, pages 236-247, Oakland, CA, May 1997. IEEE Computer Society Press.
31. RSA. PKCS #5: Password-based encryption standard. Technical report, RSA Laboratories, Feb. 1999. Version 2.0; Third Draft.
32. V. Shoup. Why chosen ciphertext security matters. Research Report RZ 3076 (#93122), IBM Research, Nov. 1998.
33. V. Shoup. On formal models for secure key exchange. Research Report RZ 3120 (#93166), IBM Research, Apr. 1999.
34. M. Steiner, G. Tsudik, and M. Waidner. Refinement and extension of encrypted key exchange. ACM Operating Systems Review, 29(3):22-30, July 1995.
35. D. Wagner and B. Schneier. Analysis of the SSL 3.0 protocol. In Second USENIX Workshop on Electronic Commerce, pages 29-40, Oakland, California, Nov. 1996. USENIX.
36. T. Wu. The secure remote password protocol. In Symposium on Network and Distributed Systems Security (NDSS '98), pages 97-111, San Diego, California, Mar. 1998. Internet Society.
37. T. Wu. A real-world analysis of kerberos password security. In Symposium on Network and Distributed Systems Security (NDSS '99), San Diego, CA, Feb. 1999. Internet Society.
38. P. R. Zimmermann. The Official PGP User's Guide. MIT Press, Cambridge, MA, USA, 1995. ISBN 0-262-74017-6.