A new framework for efficient password-based authenticated key exchange

Proceedings of the ACM Conference on Computer and Communications Security

Volumn , Issue , 2010, Pages 516-525

  Groce, Adam ^a   Katz, Jonathan ^a  

^a UNIVERSITY OF MARYLAND   (United States)

Author keywords

Security

Indexed keywords

AUTHENTICATED KEY EXCHANGE; COMMON REFERENCE STRING MODELS; NEW APPROACHES; OFF-LINE DICTIONARY ATTACKS; SECURITY; SESSION KEY; THE STANDARD MODEL; UNIVERSAL COMPOSABILITY; WITHOUT RANDOM ORACLES;

COMPUTER CRIME; CRYPTOGRAPHY; NETWORK PROTOCOLS;

NETWORK SECURITY;

EID: 78650032056     PISSN: 15437221     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1866307.1866365     Document Type: Conference Paper

References (26)

1. M. Abdalla, D. Catalano, C. Chevalier, and D. Pointcheval. Efficient two-party password-based key exchange protocols in the UC framework. In Cryptographers' Track - RSA 2008, volume 4964 of LNCS, pages 335-351. Springer, 2008.
2. M. Abdalla, C. Chevalier, and D. Pointcheval. Smooth projective hashing for conditionally extractable commitments. In Advances in Cryptology - Crypto 2009, volume 5677 of LNCS, pages 671-689. Springer, 2009.
3. B. Barak, R. Canetti, Y. Lindell, R. Pass, and T. Rabin. Secure computation without authentication. In Advances in Cryptology - Crypto 2005, volume 3621 of LNCS, pages 361-377. Springer, 2005.
4. M. Bellare, D. Pointcheval, and P. Rogaway. Authenticated key exchange secure against dictionary attacks. In Advances in Cryptology - Eurocrypt 2000, volume 1807 of LNCS, pages 139-155. Springer, 2000.
5. M. Bellare and P. Rogaway. Entity authentication and key distribution. In Advances in Cryptology - Crypto '93, volume 773 of LNCS, pages 232-249. Springer, 1994.
6. M. Bellare and P. Rogaway. Provably secure session key distribution: The three party case. In 27th Annual ACM Symposium on Theory of Computing (STOC), pages 57-66. ACM Press, 1995.
7. S. M. Bellovin and M. Merritt. Encrypted key exchange: Password-based protocols secure against dictionary attacks. In IEEE Symposium on Security & Privacy, pages 72-84. IEEE, 1992.
8. V. Boyko, P. D. MacKenzie, and S. Patel. Provably secure password-authenticated key exchange using Di±e-Hellman. In Advances in Cryptology - Eurocrypt 2000, volume 1807 of LNCS, pages 156-171. Springer, 2000.
9. R. Canetti. Universally composable security: A new paradigm for cryptographic protocols. In 42nd Annual Symposium on Foundations of Computer Science (FOCS), pages 136-145. IEEE, 2001.
10. R. Canetti, S. Halevi, J. Katz, Y. Lindell, and P. D. MacKenzie. Universally composable password-based key exchange. In Advances in Cryptology - Eurocrypt 2005, volume 3494 of LNCS, pages 404-421. Springer, 2005.
11. R. Cramer and V. Shoup. Universal hash proofs and a paradigm for adaptive chosen ciphertext secure public-key encryption. In Advances in Cryptology - Eurocrypt 2002, volume 2332 of LNCS, pages 45-64. Springer, 2002.
12. R. Cramer and V. Shoup. Design and analysis of practical public-key encryption schemes secure against adaptive chosen ciphertext attack. SIAM Journal on Computing, 33(1):167-226, 2003.
13. R. Gennaro. Faster and shorter password-authenticated key exchange. In 5th Theory of Cryptography Conference - TCC 2008, volume 4948 of LNCS, pages 589-606. Springer, 2008.
14. R. Gennaro and Y. Lindell. A framework for password-based authenticated key exchange. ACM Trans. Information and System Security, 9(2):181-234, 2006.
15. O. Goldreich and Y. Lindell. Session-key generation using human passwords only. Journal of Cryptology, 19(3):241-340, 2006.
16. L. Gong, T. M. A. Lomas, R. M. Needham, and J. H. Saltzer. Protecting poorly chosen secrets from guessing attacks. IEEE J. Selected Areas in Communications, 11(5):648-656, 1993.
17. A. Groce and J. Katz. A new framework for efficient password-based authenticated key exchange. Available at http://eprint.iacr.org/2010/147.
18. S. Halevi and H. Krawczyk. Public-key cryptography and password protocols. ACM Trans. Information and System Security, 2(3):230-268, 1999.
19. S. Jiang and G. Gong. Password based key exchange with mutual authentication. In 11th Annual International Workshop on Selected Areas in Cryptography (SAC), volume 3357 of LNCS, pages 267-279. Springer, 2004.
20. J. Katz, P. D. MacKenzie, G. Taban, and V. D. Gligor. Two-server password-only authenticated key exchange. In 3rd Intl. Conference on Applied Cryptography and Network Security, volume 3531 of LNCS, pages 1-16. Springer, 2005.
21. J. Katz, R. Ostrovsky, and M. Yung. Efficient and secure authenticated key exchange using weak passwords. J. ACM, 57(1):78-116, 2009.
22. J. Katz and V. Vaikuntanathan. Smooth projective hashing and password-based authenticated key exchange from lattices. In Advances in Cryptology - Asiacrypt 2009, volume 5912 of LNCS, pages 636-652. Springer, 2009.
23. K. Kurosawa and Y. Desmedt. A new paradigm of hybrid encryption scheme. In Advances in Cryptology - Crypto 2004, volume 3152 of LNCS, pages 426-442. Springer, 2004.
24. P. D. MacKenzie, S. Patel, and R. Swaminathan. Password-authenticated key exchange based on RSA. In Advances in Cryptology - Asiacrypt 2000, volume 1976 of LNCS, pages 599-613. Springer, 2000.
25. M.-H. Nguyen and S. Vadhan. Simpler session-key generation from short random passwords. Journal of Cryptology, 21(1):52-96, 2008.
26. V. Shoup. A proposal for an ISO standard for public-key encryption. Cryptology ePrint Archive, Report 2001/112, 2001. http://eprint.iacr.org