Improvement of a three-party password-based key exchange protocol with formal verification

Information Technology and Control

Volumn 42, Issue 3, 2013, Pages 231-237

  Xie, Qi ^a   Dong, Na ^a   Tan, Xiao ^b   Wong, Duncan S ^b   Wang, Guilin ^c  

^a HANGZHOU NORMAL UNIVERSITY   (China)

^b CITY UNIVERSITY OF HONG KONG   (Hong Kong)

^c UNIVERSITY OF WOLLONGONG   (Australia)

Author keywords

Key exchange; Password based authenticated key exchange (PAKE); ProVerif; Three party PAKE

Indexed keywords

EID: 84884222500     PISSN: 1392124X     EISSN: None     Source Type: Journal    
DOI: 10.5755/j01.itc.42.3.1905     Document Type: Article

References (21)

1. S. M. Bellovin, M. Merritt. Encrypted key exchange: password based protocols secure against dictionary attacks. In: Proceedings of IEEE Symposium on Research in Security and Privacy,1992, pp. 72-84.
2. C. L. Lin, H. M. Sun, M. Steiner, T. Hwang. Three-party encrypted key exchange without server public-keys. In: IEEE Communication Letters, 2001, Vol. 5, pp. 497-499.
3. Y. Ding, P. Horster. Undetectable on-line password guessing attacks. ACM Operating Systems Review, 1995, Vol. 29, 77-86.
4. R. X. Lu, Z. F. Cao. Simple three-party key exchange protocol. Computers and Security, 2007, Vol. 26, 94-97.
5. H. Guo, Z. J. Li, Y. Mu, X. Y. Zhang, Cryptanalysis of simple three-party key exchange protocol, Computers and Security, 2008, Vol. 27, 16-21.
6. Y. F. Chang. A practical three-party key exchange protocol with round efficiency. International Journal of Innovative Computing, Information and Control, 2008, Vol. 4, 953-960.
7. H. R. Chung, W. C. Ku. Three weaknesses in a simple three-party key exchange protocol. Information Sciences, 2008, Vol. 178, 220-229.
8. R. C. W. Phan, W. C. Yau, B. M. Goi. Cryptanalysis of simple three-party key exchange protocol (S-3PAKE). Information Sciences, 2008, Vol. 178, 2849-2856.
9. J. Y. Nam, J. Y. Paik, H. K. Kang, U. M. Kim, D. H. Won. An off-line dictionary attack on a simple three-party key exchange protocol. In: IEEE Communication Letters, 2009, Vol. 13, pp. 205-207.
10. H. S. Kim, J. Y. Choi. Enhanced password-based simple three-party key exchange protocol. Computers and Electrical Engineering, 2009, Vol. 35, 107-114.
11. H. F. Huang. A simple three-party password-based key exchange protocol. International Journal of Communication Systems, 2009, Vol. 22, 857-862.
12. E. J. Yoon, K. Y. Yoo. Cryptanalysis of a simple three-party password-based key exchange protocol. International Journal of Communication Systems, 2011, Vol. 24, 532-542.
13. D. C. Lou, H. F. Huang. Efficient three-party password-based key exchange scheme. International Journal of Communication Systems, 2011, Vol. 24, 504-512.
14. Cheng-Chi Lee, Chin-Ling Chen, Hsia-Hung Ou, Lung Albert Chen. Extension of an efficient 3GPP authentication and key agreement protocol. Wireless Personal Communications, 2013, Vol. 68, No. 3, 861-872.
15. Chun-Ta Li. Secure smart card based password authentication scheme with user anonymity. Information Technology and Control, 2011, Vol. 40, No. 2, 157-162.
16. Chun-Ta Li. A more secure and efficient authentication scheme with roaming service and user anonymity for mobile communications. Information Technology and Control, 2012, Vol. 41, No. 1, 69-76.
17. Bae-Ling Chen, Wen-Chung Kuo, Lih-Chyau Wuu. A secure password-based remote user authentication scheme without smart cards. Information Technology and Control, 2012, Vol. 41, No. 1, 53-59.
18. Shirisha Tallapally. Security enhancement on simple three party PAKE protocol. Information Technology and Control, 2012, Vol. 41, No. 1, 15-22.
19. Chun-Ta Li, Cheng-Chi Lee. A robust remote user authentication scheme using smart card. Information Technology and Control, 2011, Vol. 40, No. 3, 236-245.
20. M. Abadi, B. Blanchet, H. C. Lundh. Models and proofs of protocol security: A progress report. 21st International Conference on Computer Aided Verification, 2009.
21. D. Dolev, A. C. Yao. On the security of public key protocols In: IEEE Transactions on Information Theory 29, 1983, pp. 198-208.