Efficient and secure authenticated key exchange using weak passwords

Journal of the ACM

Volumn 57, Issue 1, 2009, Pages

  Katz, Jonathan ^a   Ostrovsky, Rafail ^b   Yung, Moti ^c  

^a Institute of Advanced Computer Science   (United States)

^b Engineering IV   (United States)

^c Department of Earth and Environmental Sciences   (United States)

Author keywords

Authentication; Cryptography; Passwords

Indexed keywords

AUTHENTICATED KEY EXCHANGE; CRYPTOGRAPHIC ASSUMPTIONS; CRYPTOGRAPHIC KEY; DIFFIE-HELLMAN ASSUMPTION; DIFFIE-HELLMAN KEY EXCHANGE; ENGLISH WORD; INSECURE NETWORKS; MUTUAL AUTHENTICATION; OFF-LINE DICTIONARY ATTACKS; PUBLIC KEYS; SECURE COMMUNICATIONS; SECURE PROTOCOLS;

COMPUTER CRIME; CRYPTOGRAPHY; NETWORK PROTOCOLS; NETWORK SECURITY;

AUTHENTICATION;

EID: 71449093776     PISSN: 00045411     EISSN: 1557735X     Source Type: Journal    
DOI: 10.1145/1613676.1613679     Document Type: Article

References (50)

1. BELLARE, M., CANETTI, R., AND KRAWCZYK, H. 1998. A modular approach to the design and analysis of authentication and key exchange protocols. In Proceedings of the 30th Annual ACM Symposium on Theory of Computing (STOC). ACM, New York, 419-428.
2. BELLARE, M., POINTCHEVAL, D., AND ROGAWAY, P. 2000. Authenticated key exchange secure against dictionary attacks. In Proceedings of the Advances in Cryptology (Eurocrypt'00). Lecture Notes in Computer Science, vol.1807. Springer-Verlag, Berlin, Germany, 139-155.
3. BELLARE,M., AND ROGAWAY, P. 1993. Random oracles are practical: A paradigm for designing efficient protocols. Proceedings of the 1st ACMConference on Computer and Communications Security,V. Ashby, Ed. ACM, New York, 62-73.
4. BELLARE, M., AND ROGAWAY, P. 1994. Entity authentication and key distribution. In Proceedings of Advances in Cryptology (Crypto'93). Lecture Notes in Computer Science, vol.773. Springer-Verlag, Berlin, Germany, 232-249.
5. BELLARE, M., AND ROGAWAY, P. 1995. Provably secure session key distribution: The three party case. In Proceedings of the 27th Annual ACM Symposium on Theory of Computing (STOC). ACM, New York, 57-66.
6. BELLOVIN, S. M., AND MERRITT, M. 1992. Encrypted key exchange: Password-based protocols secure against dictionary attacks. In Proceedings of the IEEE Symposium on Security & Privacy. IEEE Computer Society Press, Los Alamitos, CA, 72-84.
7. BELLOVIN, S. M., AND MERRITT, M. 1993. Augmented encrypted key exchange: A passwordbased protocol secure against dictionary attacks and password file compromise. In Proceedings of the 1st ACM Conference on Computer and Communications Security. ACM, New York, 244-250.
8. BIRD, R., GOPAL, I., HERZBERG, A., JANSON, P., KUTTEN, S., MOLVA, R., AND YUNG, M. 1993. Systematic design of two-party authentication protocols. IEEE J. Select. Areas Comm. 11, 5, 679-693.
9. BOYARSKY, M. 1999. Public-key cryptography and password protocols: The multi-user case. In Proceedings of the 6th ACM Conference on Computer and Communications Security (CCS'99). ACM, New York, 63-72.
10. BOYKO, V., MACKENZIE, P. D., AND PATEL, S. 2000. Provably secure password-authenticated key exchange using Diffie-Hellman. In Proceedings of Advances in Cryptology (Eurocrypt'00). Lecture Notes in Computer Science, vol.1807. Springer-Verlag, Berlin, Germany, 156-171.
11. CANETTI, R., GOLDREICH, O., AND HALEVI, S. 2004. The random oracle methodology, revisited. J. ACM 51, 4, 557-594.
12. CANETTI, R., HALEVI, S., KATZ, J., LINDELL, Y., AND MACKENZIE, P. D. 2005. Universally composable password-based key exchange. In Proceedings of Advances in Cryptology (Eurocrypt'05). Lecture Notes in Computer Science, vol.3494. Springer-Verlag, Berlin, Germany, 404-421.
13. CANETTI, R., AND KRAWCZYK, H. 2001. Analysis of key-exchange protocols and their use for building secure channels. In Proceedings of Advances in Cryptology (Eurocrypt'01). Lecture Notes in Computer Science, vol.2045. Springer-Verlag, Berlin, Germany, 453-474.
14. CANETTI, R., AND KRAWCZYK, H. 2002. Universally composable notions of key exchange and secure channels. In Proceedings of Advances in Cryptology (Eurocrypt'02). Lecture Notes in Computer Science, vol.2332. Springer-Verlag, Berlin, Germany, 337-351.
15. CRAMER, R., AND SHOUP, V. 2003. Design and analysis of practical public-key encryption schemes secure against adaptive chosen ciphertext attack. SIAM J. Comput. 33, 1, 167-226.
16. DAMGARD, I. 1988. Collision free hash functions and public key signature schemes. In Proceedings of Advances in Cryptology (Eurocrypt'87). Lecture Notes in Computer Science, vol.304. Springer-Verlag, New York, 203-216.
17. DI CRESCENZO, G., KATZ, J., OSTROVSKY, R., AND SMITH, A. 2001. Efficient and non-interactive nonmalleable commitment. In Proceedings of the Advances in Cryptology (Eurocrypt'01). Lecture Notes in Computer Science, vol.2045. Springer-Verlag, New York, 40-59.
18. DI RAIMONDO, M., AND GENNARO, R. 2003. Provably secure threshold password-authenticated key exchange. In Proceedings of the Advances in Cryptology (Eurocrypt'03). Lecture Notes in Computer Science, vol.2656. Springer-Verlag, New York, 507-523.
19. DIFFIE, W., AND HELLMAN, M. E. 1976. New directions in cryptography. IEEE Trans. Inf. Theory 22, 6, 644-654.
20. DIFFIE, W., VAN OORSCHOT, P. C., AND WIENER, M. J. 1992. Authentication and authenticated key exchanges. Designs, Codes Crypt. 2, 2, 107-125.
21. DOLEV, D., DWORK, C., AND NAOR, M. 2000. Nonmalleable cryptography. SIAM J. Comput. 30, 2, 391-437.
22. EVEN, S.,GOLDREICH, O., AND MICALI, S. 1996. On-line/off-line digital signatures. J. Crypt. 9, 1, 35-67.
23. GENNARO, R. 2008. Faster and shorter password-authenticated key exchange. In Proceedings of the 5th Theory of Cryptography Conference (TCC'08). Lecture Notes in Computer Science, vol.4948. Springer- Verlag, Berlin, Germany, 589-606.
24. GENNARO, R., AND LINDELL, Y. 2006. A framework for password-based authenticated key exchange. ACM Trans. Inf. Syst. Secur. 9, 2, 181-234.
25. GOLDREICH, O., AND LINDELL, Y. 2006. Session-key generation using human passwords only. J. Crypt. 19, 3, 241-340.
26. GOLDWASSER, S.,MICALI, S., AND RIVEST,R.L. 1988. Adigital signature scheme secure against adaptive chosen-message attacks. SIAM J. Comput. 17, 2, 281-308.
27. GONG, L. 1995. Optimal authentication protocols resistant to password guessing attacks. In Proceedings of the 8th IEEE Computer Security FoundationsWorkshop. IEEE Computer Society Press, Los Alamitos, CA, 24-29.
28. GONG, L., LOMAS, T. M. A., NEEDHAM, R. M., AND SALTZER, J. H. 1993. Protecting poorly chosen secrets from guessing attacks. IEEE J. Select. Areas Comm. 11, 5, 648-656.
29. HALEVI, S., AND KRAWCZYK, H. 1999. Public-key cryptography and password protocols. ACM Trans. Inf. Syst. Secur. 2, 3, 230-268.
30. JABLON, D. P. 1997. Extended password key exchange protocols immune to dictionary attacks. In Proceedings of the 6th IEEE International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises. IEEE Computer Society Press, Los Alamitos, CA, 248-255.
31. JIANG, S., AND GONG,G. 2004. Password based key exchange with mutual authentication. In Proceedings of the 11th Annual International Workshop on Selected Areas in Cryptography (SAC). Lecture Notes in Computer Science, vol.3357. Springer-Verlag, Berlin, Germany, 267-279.
32. KATZ, J. 2002. Efficient cryptographic protocols preventing "man-in-the-middle" attacks. Ph.D. dissertation, Columbia University, New York.
33. KATZ, J., AND LINDELL, Y. 2007. Introduction to Modern Cryptography. Chapman & Hall/CRC Press.
34. KATZ, J., MACKENZIE, P., TABAN, G., AND GLIGOR, V. 2005. Two-server password-only authenticated key exchange. In Proceedings of the 3rd International Conference on Applied Cryptography and Network Security (ACNS). Lecture Notes in Computer Science, vol.3531. Springer-Verlag, Berlin, Germany, 1-16.
35. KATZ, J., OSTROVSKY, R., AND YUNG, M. 2001. Efficient password-authenticated key exchange using human-memorable passwords. In Proceedings of the Advances in Cryptology (Eurocrypt'01). Lecture Notes in Computer Science, vol.2045. Springer-Verlag, Berlin, Germany, 475-494.
36. KATZ, J., OSTROVSKY, R., AND YUNG,M. 2002. Forward secrecy in password-only key exchange protocols. In Proceedings of the 3rd International Conference on Security in Communication Networks (SCN). Lecture Notes in Computer Science, vol.2576. Springer-Verlag, Berlin, Germany, 29-44.
37. KLEIN, D. V. 1990. Foiling the cracker: A survey of, and improvements to, password security. In Proceedings of the 2nd USENIX Unix Security Workshop. 5-14.
38. LOMAS, T. M. A., GONG, L., SALTZER, J. H., AND NEEDHAM, R. M. 1989. Reducing risks from poorly chosen keys. In Proceedings of the 12th ACM Symposium on Operating System Principles. ACM, New York, 14-18.
39. LUCKS, S. 1997. Open key exchange: How to defeat dictionary attacks without encrypting public keys. In Security ProtocolsWorkshop. Lecture Notes in Computer Science, vol.1361. Springer-Verlag, Berlin, Germany, 79-90.
40. MACKENZIE, P., PATEL, S., AND SWAMINATHAN, R. 2000. Password- authenticated key exchange based on RSA. In Proceedings of Advances in Cryptology (Asiacrypt'00). Lecture Notes in Computer Science, vol.1976. Springer-Verlag, Berlin, Germany, 599-613.
41. MENEZES, A. J., VANOORSCHOT, P. C., AND VANSTONE, S.A. 1996. Handbook of Applied Cryptography. CRC Press.
42. MORRIS, R., AND THOMPSON,K. 1979. Password security-a case history. Comm. ACM22, 11, 594-597.
43. NGUYEN,M.-H., AND VADHAN, S. 2008. Simpler session-key generation from short random passwords. J. Crypt. 21, 1, 52-96.
44. PATEL, S. 1997. Number theoretic attacks on secure password schemes. In Proceedings of the IEEE Symposium on Security & Privacy. IEEE Computer Society Press, Los Alamitos, CA, 236-247.
45. SHOUP, V. 1999. On formal models for secure key exchange. Tech. rep. RZ 3120, IBM. http://eprint.iacr.org/1999/012.
46. SHOUP, V. 2001. A proposal for an ISO standard for public key encryption. http://eprint.iacr.org/2001/112.
47. SPAFFORD, E. 1992. Observing reusable password choices. In Proceedings of the 3rd USENIX Security Symposium. USENIX Association, 299-312.
48. STEINER,M., TSUDIK, G., AND WAIDNER,M. 1995. Refinement and extension of encrypted key exchange. ACM SIGOPS Operat. Syst. Rev. 29, 3, 22-30.
49. WU, T. D. 1998. The secure remote password protocol. In Proceedings of the Network and Distributed System Security Symposium (NDSS'98). The Internet Society, 97-111.
50. WU, T. D. 1999. A real-world analysis of Kerberos password security. In Proceedings of the Network and Distributed System Security Symposium (NDSS'99). The Internet Society, 13-22.