Privacy-preserving authenticated key-exchange over internet

IEEE Transactions on Information Forensics and Security

Volumn 9, Issue 1, 2014, Pages 125-140

  Yao, Andrew Chi Chih ^a   Zhao, Yunlei ^b  

^a TSINGHUA UNIVERSITY   (China)

^b FUDAN UNIVERSITY   (China)

Author keywords

Authentication; Deniability; Diffie Hellman; Key exchange; Privacy; Restricted random oracle; Security

Indexed keywords

DENIABILITY; DIFFIE HELLMAN; KEY EXCHANGE; RANDOM ORACLE; SECURITY;

AUTHENTICATION; CRYPTOGRAPHY; DATA PRIVACY; INTERNET; LEVEES; NETWORK SECURITY;

INTERNET PROTOCOLS;

EID: 84892410398     PISSN: 15566013     EISSN: None     Source Type: Journal    
DOI: 10.1109/TIFS.2013.2293457     Document Type: Article

References (46)

1. S. Al-Riyami and K. Paterson, "Certificateless public-key cryptography," in Proc. Asiacrypt 2003, pp. 452-473.
2. M. Bellare and P. Rogaway, "Entity authentication and key distribution," in Proc. CRYPTO 1993, pp. 273-289.
3. M. Bellare and P. Rogaway, "Random oracles are practical: A paradigm for designing efficient protocols," in Proc. ACM CCS 1993, pp. 62-73.
4. D. Boneh and M. Franklin, "Identity-based encryption from the weil pairing," in Proc. CRYPTO 2001, pp. 213-229.
5. C. Boyd, W. Mao, and K. G. Paterson, "Deniable authenticated key establishment for Internet protocols," in Proc. SPW 2003, pp. 255-271.
6. C. Boyd, W. Mao, and K. G. Paterson, "Key agreement using statically keyed authenticators," in Proc. ACNS 2004, pp. 248-262.
7. C. Boyd and A. Mathuria, Protocols for Authentication and Key Establishment. New York, NY, USA: Springer-Verlag, 2003.
8. C. Brzuska, N. P. Smart, B. Warinschi, and G. J. Watson, "An analysis of the EMV channel establishment protocol," in Proc. ACM CCS, 2013, pp. 373-386.
9. J. Camenisch, N. Casati, T. Gross, and V. Shoup, "Credential authenticated identification and key exchange," in Proc. CRYPTO 2010, pp. 255-276.
10. R. Canetti, "Security and composition of cryptographic protocols: A tutorial," SIGACT News, vol. 37, no. 3, pp. 67-92, 2006.
11. R. Canetti, U. Feige, O. Goldreich, and M. Naor, "Adaptively secure multi-party computation," in Proc. STOC 1996, pp. 639-648.
12. R. Canetti and H. Krawczyk, "Analysis of key-exchange protocols and their use for building secure channels," in Proc. Eurocrypt 2001, pp. 289-307.
13. R. Canetti and H. Krawczyk, "Security analysis of IKE's signature-based key-exchange protocol," in Proc. CRYPTO 2002, pp. 143-161.
14. K. K. Choo, C. Boyd, Y. Hitchcock, and G. Maitland, "On session identifiers in provably secure protocols," in Proc. SCN 2004, pp. 351-366.
15. M. C. Gorantla, R. Gangishetti, and A. Saxena, "A survey on IDbased cryptographic primitives," IACR (The International Association for Cryptologic Research), San Diego, CA, USA, Tech. Rep. 2005/094, 2005.
16. C. J. F. Cremers, "Formally and practically relating the CK, CK-HMQV, and eCK security models for authenticated key exchange," IACR (The International Association for Cryptologic Research), San Diego, CA, USA, Tech. Rep. 2009/253, 2009.
17. I. Damgård, "Towards practical public-key systems secure against chosen ciphertext attacks," in Proc. CRYPTO 1991, pp. 445-456.
18. M. Di Raimondo and R. Gennaro, "New approaches for deniable authentication," in Proc. ACM CCS 2005, pp. 112-121.
19. M. Di Raimondo, R. Gennaro, and H. Krawczyk, "Deniable authentication and key exchange," in Proc. ACM CCS 2006, pp. 466-475.
20. W. Diffie and M. Hellman, "New directions in cryptography," IEEE Trans. Inf. Theory, vol. 22, no. 6, pp. 644-654, Nov. 1976.
21. Y. Dodis, J. Katz, A. Smith, and S. Walfish, "Composability and on-line deniability of authentication," in Proc. TCC 2009, pp. 146-162.
22. D. Dolev, C. Dwork, and M. Naor, "Non-malleable cryptography," SIAM J. Comput., vol. 30, no. 2, pp. 391-437, 2000.
23. C. Dwork, M. Naor, and A. Sahai, "Concurrent zero-knowledge," in Proc. STOC 1998, pp. 409-418.
24. Digital Signature Standard (DSS), FIPS Standard 186-2, Jan. 2000.
25. S. Goldwasser, S. Micali, and C. Rackoff, "The knowledge complexity of interactive proof-systems," in Proc. STOC 1985, pp. 291-304.
26. J. Groth, "Short pairing-based non-interactive zero-knowledge arguments," in Proc. Asiacrypt 2010, pp. 321-340.
27. D. Harkins and D. Carreal, "The Internet key-exchange (IKE)," IETF (The Internet Engineering Task Force), New York, NY, USA, Tech. Rep. 2409, Nov. 1998.
28. S. Jarecki, J. Kim, and G. Tsudik, "Beyond secret handshakes: Affiliation-hiding authenticated key agreement," in Proc. CT-RSA 2008, pp. 352-369.
29. C. Kaufman, "Internet key exchange (IKEv2) protocol," The Internet Engineering Task Force, London, U.K., Tech. Rep. 4306, Dec. 2005.
30. S. Kent and R. Atkinson, "Security architecture for the Internet protocol," IACR (The International Association for Cryptologic Research), San Diego, CA, USA, Tech. Rep. 2401, 1998.
31. H. Krawczyk, "SIGMA: The 'SIGn-and-MAc' approach to authenticated Diffie-Hellman and its use in the IKE-protocols," in Proc. CRYPTO 2003, pp. 400-425.
32. H. Krawczyk, "HMQV: A high-performance secure Diffie-Hellman protocol," in Proc. CRYPTO 2005, pp. 546-566.
33. C. Kudla and K. Paterson, "Modular security proofs for key agreement protocols," in Proc. Asiacrypt 2005, pp. 549-565.
34. L. Law, A. Menezes, M. Qu, J. Solinas, and S. Vanstone, "An efficient protocol for authenticated key agreement," Des., Codes Cryptogr., vol. 28, no. 2, pp. 119-134, 2003.
35. W. Mao, Modern Cryptography: Theory and Practice. Englewood Cliffs, NJ, USA: Prentice-Hall, 2004.
36. U. Maurer and S. Wolf, "Diffie-Hellman oracles," in Proc. CRYPTO 1996, pp. 268-282.
37. A. Menezes, P. van Oorschot, and S. Vanstone, Handbook of Applied Cryptography. Boca Raton, FL, USA: CRC Press, 1996.
38. M. Naor and O. Reingold, "Number-theoretic constructions of efficient pseudo-random functions," J. ACM, vol. 1, no. 2, pp. 231-262, 2004.
39. K. Neupane, R. Steinwandt, and A. S. Corona, "Scalable deniable group key establishment," in Proc. FPS 2012, pp. 365-373.
40. J. B. Nielsen, "Separating random oracle proofs from complexity theoretic proofs: The non-committing encryption case," in Proc. CRYPTO 2002, pp. 111-126.
41. T. Okamoto and D. Pointcheval, "The gap-problems: A new class of problems for the security of cryptographic schemes," in Proc. PKC 2001, pp. 104-118.
42. R. Pass, "On deniabililty in the common reference string and random oracle models," in Proc. CRYPTO 2003, pp. 316-337.
43. R. Pass and A. Rosen, "New and improved constructions of nonmalleable cryptographic protocols," in Proc. STOC 2005, pp. 533-542.
44. A. P. Sarr and P. E. Vincent, "A complementary analysis of the (s)YZ and DIKE Protocols," in Proc. Africacrypt 2012, pp. 203-220.
45. M. Yung and Y. Zhao, "Interactive zero-knowledge with restricted random oracles," in Proc. TCC 2006, pp. 21-40.
46. A. C. Yao and Y. Zhao, "Deniable Internet key-exchange," IACR (The International Association for Cryptologic Research), San Diego, CA, USA, Tech. Rep. 2011/035, Jan. 2011.